Click here to download all references as Bib-File.•
| 2026-06-08
⋅
SYGNIA
⋅
Velvet Ant’s Operation Highland: How a China-Nexus Actor Infiltrated an Internal Network Undetected |
| 2026-06-08
⋅
Proofpoint
⋅
Don't Fear the Repo: UNK_DeadDrop Phishing Campaign Targets Developers to Steal Cryptocurrency Overlord RAT |
| 2026-06-08
⋅
StepSecurity
⋅
The Hades Campaign: Graph ML PyPI Packages Deploy Cross-Platform Memory Scrapers, AI Analyst Misdirection, and a Wiper Deterrent Shai-Hulud |
| 2026-06-07
⋅
Socket
⋅
Shai-Hulud Descends to Hades: Miasma Worm Campaign Spreads with New PyPI Wave Shai-Hulud |
| 2026-06-03
⋅
Proofpoint
⋅
TA4922: The Suspected Chinese Crime Group is Going Global Atlas RAT RomulusLoader SilentRunLoader TA4922 |
| 2026-06-03
⋅
sonatype
⋅
Lazarus Group's Latest: Brandjacking Campaign on npm |
| 2026-06-03
⋅
Fortinet
⋅
Inside the Cross-Platform Propagation of a New Gafgyt Variant C0XMO Bashlite C0XMO |
| 2026-06-02
⋅
Qualys
⋅
The HazyBeacon Protocol – How Malware Weaponizes Amazon Web Services (AWS) Lambda Function URLs CL-STA-1020 |
| 2026-06-02
⋅
The Register
⋅
Russian spy agency says foreign spies turned officials' smartphones into surveillance devices |
| 2026-06-01
⋅
ExaTrack
⋅
Tracking APT28 PixyNetLoader: Evolutions from 2024 to 2026 PixyNetLoader |
| 2026-06-01
⋅
Nextron Systems
⋅
Detecting Nimbus Manticore and their sideloading infection chains MiniFast |
| 2026-05-31
⋅
Gridinsoft
⋅
DriveSurge Turns Trusted Websites Into ClickFix Malware Traps DriveSurge |
| 2026-05-31
⋅
Socket
⋅
Famous Chollima Targets PHP Developers Through Compromised Packagist Package JADESNOW |
| 2026-05-28
⋅
eSentire
⋅
Nimbus RAT: How Threat Actors Are Abusing Microsoft Teams and Google Drive to Deploy a Java RAT |
| 2026-05-28
⋅
ESET Research
⋅
ESET APT Activity Report Q4 2025–Q1 2026 WAVESHAPER BirdCall BLINDINGCAN RokRAT Rook Tiger RAT |
| 2026-05-28
⋅
GREYVIBE: A Russia-nexus group leveraging AI across state-aligned operations LegionRelay PhantomRelay |
| 2026-05-28
⋅
WithSecure
⋅
GREYVIBE: A Russia-nexus group leveraging AI across state-aligned operations GreyVibe |
| 2026-05-28
⋅
LevelBlue
⋅
Sapphire Sleet Targets macOS in Multi-Stage Intrusion Campaign |
| 2026-05-27
⋅
Straiker
⋅
Fake Claude Code, Real Malware: Inside the Campaign Targeting AI Developers ACR Stealer Amatera |
| 2026-05-27
⋅
Group-IB
⋅
The GHOST STADIUM Score: Billions At Stake At The World’s Largest Football Tournament GHOST STADIUM |