Click here to download all references as Bib-File.

Enter keywords to filter the library entries below or Propose new Entry
2025-09-15QianxinAcey9, Alex.Turing, Wang Hao
The Most Powerful Ever? Inside the 11.5Tbps-Scale Mega Botnet AISURU
Aisuru
2025-09-14cocomelonccocomelonc
Malware development: persistence - part 28. CertPropSvc registry hijack. Simple C/C++ example
2025-09-12Medium (@zyadlzyatsoc)Zyad Elzyat
XWorm Malware Analysis: SOC & IR Perspective on Persistence, C2, and Anti-Analysis Tactics
XWorm
2025-09-11IBM X-ForceGolo Mühr, Joshua Chung
Hive0154, aka Mustang Panda, drops updated Toneshell backdoor and novel SnakeDisk USB worm
PUBLOAD SnakeDisk TONESHELL Yokai
2025-09-11Zero DayKim Zetter, Visi Stark
How the Infamous APT-1 Report Exposing China’s PLA Hackers Came to Be
2025-09-11Trend MicroArmando Nathaniel Pedragoza, Emmanuel Panopio, Emmanuel Roll, Jeffrey Francis Bonaobra, Joshua Aquino, Joshua Lijandro Tsang, Marco Dela Vega, Melvin Singwa, Mohammed Malubay
EvilAI Operators Use AI-Generated Code and Fake Apps for Far-Reaching Attacks
TamperedChef
2025-09-11DataBreaches.netDissent
Going Dark: ShinyHunters/ScatteredSpider/LAPSUS$ Say Goodbye (2)
2025-09-10Hunt.ioHunt.io
AdaptixC2 Uncovered: Capabilities, Tactics & Hunting Strategies
AdaptixC2
2025-09-10Palo Alto Networks Unit 42Itay Cohen, Ofek Lahiani
AdaptixC2: A New Open-Source Framework Leveraged in Real-World Attacks
AdaptixC2
2025-09-09Huntress LabsJamie Levy, Lindsey O'Donnell-Welch, Michael Tigges
How an Attacker’s Blunder Gave Us a Rare Look Inside Their Day-to-Day Operations
2025-09-08FortinetYurren Wan
MostereRAT Deployed AnyDesk/TightVNC for Covert Full Access
MostereRAT
2025-09-08ZscalerSeongsu Park
APT37 Targets Windows with Rust Backdoor and Python Loader
Rustonotto
2025-09-07360360
APT-C-53 (Gamaredon) Attacks on Ukrainian Government Functions
Pteranodon
2025-09-07Hexastrike CybersecurityMaurice Fielenbach
ValleyRAT Exploiting BYOVD to Kill Endpoint Security
ValleyRAT
2025-09-05Arctic WolfDmitry Kupin, Dmitry Melikov, Jacob Faires, Jon Grimm, Pavel Usatenko
GPUGate Malware: Malicious GitHub Desktop Implants Use Hardware-Specific Decryption, Abuse Google Ads to Target Western Europe
2025-09-05KrollDave Truman, Marc Messer
FANCY BEAR GONEPOSTAL – Espionage Tool Provides Backdoor Access to Microsoft Outlook
GONEPOSTAL
2025-09-04SentinelOneAleksandar Milenkoski, Kenneth Kinion, Sreekar Madabushi
Contagious Interview | North Korean Threat Actors Reveal Plans and Ops by Abusing Cyber Intel Platforms
ContagiousDrop
2025-09-04The RegisterIain Thomson
US puts $10M bounty on three Russians accused of attacking critical infrastructure
2025-09-03ProofpointKyle Cucci, Proofpoint Threat Research Team, Rob Kinner
Not Safe for Work: Tracking and Investigating Stealerium and Phantom Infostealers
Phantom Stealer
2025-09-02At-BayAaron Smith, Laurie Iacono, MC, Ricardo Vazquez, Rohit Pappali, Will Botto, Yiwei Guo
Rhysida: Evading Detection, One Service at a Time
Rhysida