Click here to download all references as Bib-File.

Enter keywords to filter the library entries below or Propose new Entry
2026-03-05eSentireeSentire Threat Response Unit (TRU)
North Korean APT Malware Analysis: DEV#POPPER RAT and OmniStealer (Everyday I'm Shufflin')
JADESNOW
2026-03-04Huntress LabsJai Minton, Ryan Dowd
"Malware, from the Outside!": How a Threat Actor Used Fake OpenClaw Installers to Infect Systems with GhostSocks and Information Stealers
GhostSocks Vidar
2026-03-04Hunt.ioHunt.io
Iranian APT Infrastructure in Focus: Mapping State-Aligned Clusters During Geopolitical Escalation
2026-03-04Ctrl-Alt-IntelCtrl-Alt-Intel
MuddyWater Exposed: Inside an Iranian APT operation
Tsundere
2026-03-04EG-FinCirtEG-FinCirt Malware Analysis team
Remcos RAT Operations: How Attackers Gain and Maintain Control
Remcos
2026-03-03RadwareRadware
Retaliatory Hacktivist DDoS Activity Following Operation Epic Fury/Roaring Lion
Conquerors Electronic Army
2026-03-03SophosSophos Counter Threat Unit Research Team
Hacktivist campaigns increase as United States, Iran, and Israel conflict intensifies
APTIran
2026-03-03GoogleGoogle Threat Intelligence Group
Coruna: The Mysterious Journey of a Powerful iOS Exploit Kit
Coruna
2026-03-03GoogleGoogle Threat Intelligence Group
Coruna: The Mysterious Journey of a Powerful iOS Exploit Kit
Coruna UNC6353 UNC6691
2026-03-03MicrosoftMicrosoft
Signed malware impersonating workplace apps deploys RMM backdoors
TrustConnect RAT
2026-03-02TalosCisco Talos
Update, March 13: Talos on the developing situation in the Middle East
Tsundere APTIran
2026-02-28Github (cocomelonc)cocomelonc
MacOS malware persistence 4: AutoLaunched Applications, Background Task Management (BTM). Simple C example
2026-02-26Cisco TalosAlex Karkins, Chetan Raghuprasad
New Dohdoor malware campaign targets education and health care
DohDoor
2026-02-26GdataJohn Dador, Karsten Hahn
HijackLoader: Free Games, Costly Consequences
HijackLoader
2026-02-26Lab52Lab52
PlugX Meeting Invitation via MSBuild and GDATA
PlugX
2026-02-25GoogleGoogle Threat Intelligence Group, Mandiant
Exposing the Undercurrent: Disrupting the GRIDTIDE Global Cyber Espionage Campaign
GRIDTIDE UNC2814
2026-02-25Cisco TalosCisco Talos
Active exploitation of Cisco Catalyst SD-WAN by UAT-8616
UAT-8616
2026-02-25Google0verfl0w_, Anton Chuvakin, Bob Mechler, Crystal Lister, Eduardo Mattos, Google, Jason Bisson, Joachim Metz, John Stone, Jorge Blanco, Keith Lunden, Lia Wertheimer, Matthew Siuda, Michael Robinson, Muhammad Muneer, Noah McDonald, Ollie Green, Seth Rosenblatt
Cloud Threat Horizons Report: H1 2026
UNC6426
2026-02-25Hive ProHive Pro
SANDWORM_MODE: npm Supply Chain Attack Targeting AI Development Tools
2026-02-25Abstract SecurityAbstract Security Threat Research Organization (ASTRO)
Contagious Interview: Evolution of VS Code and Cursor Tasks Infection Chains - Part 1
BeaverTail PylangGhost GolangGhost