Click here to download all references as Bib-File.•
| 2025-09-11
⋅
Trend Micro
⋅
EvilAI Operators Use AI-Generated Code and Fake Apps for Far-Reaching Attacks TamperedChef |
| 2025-09-11
⋅
DataBreaches.net
⋅
Going Dark: ShinyHunters/ScatteredSpider/LAPSUS$ Say Goodbye (2) |
| 2025-09-10
⋅
ANY.RUN
⋅
Lazarus Group Attacks in 2025: Here’s Everything SOC Teams Need to Know OtterCookie InvisibleFerret PylangGhost |
| 2025-09-10
⋅
Hunt.io
⋅
AdaptixC2 Uncovered: Capabilities, Tactics & Hunting Strategies AdaptixC2 |
| 2025-09-10
⋅
Zscaler
⋅
Technical Analysis of kkRAT kkRAT |
| 2025-09-10
⋅
Palo Alto Networks Unit 42
⋅
AdaptixC2: A New Open-Source Framework Leveraged in Real-World Attacks AdaptixC2 |
| 2025-09-09
⋅
Trend Micro
⋅
Unmasking The Gentlemen Ransomware: Tactics, Techniques, and Procedures Revealed Gentlemen The Gentlemen |
| 2025-09-09
⋅
sysdig
⋅
ZynorRAT technical analysis: Reverse engineering a novel, Turkish Go-based RAT ZynorRAT |
| 2025-09-09
⋅
Positive Technologies
⋅
Phantom pains: a large-scale cyberespionage campaign and a possible split within the PhantomCore APT group PhantomCore |
| 2025-09-09
⋅
S2W Inc.
⋅
Kimsuky’s Use of GitHub for Malware Delivery and Exfiltration RandomQuery |
| 2025-09-09
⋅
Huntress Labs
⋅
How an Attacker’s Blunder Gave Us a Rare Look Inside Their Day-to-Day Operations |
| 2025-09-09
⋅
ThreatFabric
⋅
The Rise of RatOn: From NFC heists to remote control and ATS RatOn |
| 2025-09-08
⋅
Jamf Blog
⋅
ChillyHell: A Deep Dive into a Modular macOS Backdoor UNC4487 |
| 2025-09-08
⋅
Fortinet
⋅
MostereRAT Deployed AnyDesk/TightVNC for Covert Full Access MostereRAT |
| 2025-09-08
⋅
Silent Push
⋅
Salt Typhoon and UNC4841: Silent Push Discovers New Domains; Urges Defenders to Check Telemetry and Log Data |
| 2025-09-08
⋅
Zscaler
⋅
APT37 Targets Windows with Rust Backdoor and Python Loader Rustonotto |
| 2025-09-07
⋅
PHK Knowledge Sharing
⋅
Red Shadows over Yangon: Analyzing TONESHELL Malware from Mustang Panda’s Campaign Against Myanmar TONESHELL |
| 2025-09-07
⋅
dmpdump
⋅
Unknown Malware Using Azure Functions as C2 Unidentified 124 (Azure Functions) |
| 2025-09-07
⋅
⋅
360
⋅
APT-C-53 (Gamaredon) Attacks on Ukrainian Government Functions Pteranodon |
| 2025-09-07
⋅
Hexastrike Cybersecurity
⋅
ValleyRAT Exploiting BYOVD to Kill Endpoint Security ValleyRAT |