Malpedia Library

2025-10-18 ⋅ Koi Security ⋅ Idan Dardikman
GlassWorm: First Self-Propagating Worm Using Invisible Code Hits OpenVSX Marketplace
GlassWorm

2025-10-18 ⋅ Medium 0xzyadelzyat ⋅ Zyad Elzyat
PureLogs Stealer: Complete Malware Analysis & CTF Walkthrough
PureLogs Stealer

2025-10-16 ⋅ Trendmicro ⋅ Junestherry Dela Cruz
Shifts in the Underground: The Impact of Water Kurita’s (Lumma Stealer) Doxxing
Lumma Stealer

2025-10-16 ⋅ Hunt.io ⋅ Hunt.io
Odyssey Stealer and AMOS Campaign Targets macOS Developers Through Fake Tools
AMOS

2025-10-16 ⋅ Mandiant ⋅ Blas Kojusner, Joseph Dobson, Robert Wallace
DPRK Adopts EtherHiding: Nation-State Malware Hiding on Blockchains
JADESNOW

2025-10-16 ⋅ Cisco Talos ⋅ Michael Kelley, Vanja Svajcer
BeaverTail and OtterCookie evolve with a new Javascript module
BeaverTail OtterCookie InvisibleFerret

2025-10-15 ⋅ David Dodda ⋅ Dvaid Dodda
How I Almost Got Hacked By A 'Job Interview'
OtterCookie

2025-10-15 ⋅ Kaspersky ⋅ Noushin Shabab, Ye Jin
Mysterious Elephant: a growing threat
Remcos

2025-10-15 ⋅ NTT ⋅ Rintaro Koike
OtterCandy, malware used by WaterPlum
OtterCandy

2025-10-15 ⋅ Trend Micro ⋅ Dove Chiu, Lucien Chuang
Operation Zero Disco: Attackers Exploit Cisco SNMP Vulnerability to Deploy Rootkits

2025-10-14 ⋅ Synacktiv ⋅ Theo Letailleur
LinkPro: eBPF rootkit analysis
LinkPro

2025-10-14 ⋅ ⋅ Synacktiv ⋅ Theo Letailleur
LinkPro: analysis of an eBPF rootkit
LinkPro vGet

2025-10-14 ⋅ Gatewatcher ⋅ Gatewatcher, Gatewatcher's purple team
Data Breach: the operations of "Charming Kitten" revealed

2025-10-13 ⋅ ⋅ Logpresso ⋅ Hwang Min-kyung
[Threat Analysis] Lazarus Group Analyzes Malware for Windows and MacOS

2025-10-13 ⋅ NCSC UK ⋅ NCSC UK
Malware Analysis Report: RayInitiator & LINE VIPER

2025-10-13 ⋅ Proofpoint ⋅ Kyle Cucci, Proofpoint Threat Research Team, Selena Larson, Tommy Madjar
When the monster bytes: tracking TA585 and its arsenal
MonsterV2

2025-10-10 ⋅ KrebsOnSecurity ⋅ Brian Krebs
DDoS Botnet Aisuru Blankets US ISPs in Record DDoS
Aisuru

2025-10-10 ⋅ Socket ⋅ Kirill Boychenko
North Korea’s Contagious Interview Campaign Escalates: 338 Malicious npm Packages, 50,000 Downloads
BeaverTail InvisibleFerret

2025-10-10 ⋅ ⋅ Gatewatcher ⋅ Gatewatcher's purple team
Fuite de données: les opérations de "Charming Kitten" révélées

2025-10-09 ⋅ Red Canary ⋅ Chris Brook, Tony Lambert
A taxonomy of Mac stealers: Distinguishing Atomic, Odyssey, and Poseidon
AMOS Odyssey Stealer Poseidon Stealer