Malpedia Library

Click here to download all references as Bib-File.•

2025-12-09 ⋅ Huntress Labs ⋅ Jonathan Semon, Stuart Ashenbrenner
AMOS Stealer Exploits AI Trust: Malware Delivered Through ChatGPT and Grok
AMOS

2025-12-08 ⋅ sysdig ⋅ Sysdig Threat Research Team
EtherRAT: DPRK uses novel Ethereum implant in React2Shell attacks
EtherRAT

2025-12-08 ⋅ Kroll ⋅ Alessio Ragazzi, Dave Waugh, Mikesh Nagar
New AMOS Infection Vector Highlights Risks around AI Adoption
AMOS

2025-12-08 ⋅ Trend Micro ⋅ Aliakbar Zahravi
AI-Automated Threat Hunting Brings GhostPenguin Out of the Shadows
GhostPenguin

2025-12-08 ⋅ Swisscom B2B CSIRT ⋅ Matthieu Gras, Swisscom B2B CSIRT
Swisscom B2B CSIRT - TDR Intel Brief: Unmasking Amadey 5
Amadey

2025-12-07 ⋅ Reverse The Malware ⋅ Diyar Saadi
From Pixels to Payloads: Understanding Malicious BMP Files

2025-12-04 ⋅ Controlware ⋅ Serkan Sirmaci
Beyond Potentially Unwanted Apps
TamperedChef

2025-12-04 ⋅ Amazon ⋅ CJ Moses
China-nexus cyber threat groups rapidly exploit React2Shell vulnerability (CVE-2025-55182)

2025-12-04 ⋅ Aryaka Networks ⋅ bikash dash, varadharajan krishnasamy
Scam in the Cloud How Fraudsters Exploit Google Cloud Storage (GCS) for Deceptive Campaigns

2025-12-04 ⋅ CrowdStrike ⋅ CrowdStrike Counter Adversary Operations
Unveiling WARP PANDA: A New Sophisticated China-Nexus Adversary
BRICKSTORM

2025-12-04 ⋅ CISA ⋅ Canadian Centre for Cyber Security, CISA, NSA
Malware Analysis Report (MAR) BRICKSTORM Backdoor
BRICKSTORM

2025-12-02 ⋅ ⋅ Positive Technologies ⋅ Igor Shiryaev, Kirill Navoshchik, Maxim Shamanov, Stanislav Pyzhov, Vladislav Lunin
(Ex)Cobalt. A review of the group's tools in attacks for 2024-2025
PUMAKIT

2025-12-02 ⋅ Zscaler ⋅ Atinderpal Singh
Shai-Hulud V2 Poses Risk To NPM Supply Chain
Shai-Hulud

2025-12-02 ⋅ Synthient ⋅ Synthient
IPCola: A Tangled Mess
Gaganode Gaganode Gaganode

2025-12-01 ⋅ NetAskari Substack ⋅ NetAskari
Critical strike: China's hacking training grounds (PART 2)

2025-12-01 ⋅ Koi Security ⋅ Tuval Admoni
4.3 Million Browsers Infected: Inside ShadyPanda's 7-Year Malware Campaign

2025-11-30 ⋅ Twitter (@ClearskySec) ⋅ ClearSky
Tweet about GamaWiper
GamaWiper

2025-11-28 ⋅ OpenSourceMalware ⋅ OpenSourceMalware
"Contagious Interview" campaign abuses Microsoft VSCode tasks to drop malware and gain persistence
BeaverTail InvisibleFerret

2025-11-27 ⋅ Positive Technologies ⋅ Alexander Badayev, Klimentiy Galkin, Vladislav Lunin
Dragons in Thunder
KrustyLoader Sliver

2025-11-26 ⋅ FortiGuard Labs ⋅ Vincent Li
ShadowV2 Casts a Shadow Over IoT Devices
ShadowV2