Click here to download all references as Bib-File.

Enter keywords to filter the library entries below or Propose new Entry
2025-12-19cybleCyble
Stealth in Layers: Unmasking the Loader used in Targeted Email Campaigns
DCRat Katz Stealer PhantomVAI PureLogs Stealer Remcos XWorm
2025-12-18HelpNetSecurityJohn Wilson
Clipping Scripted Sparrow’s wings: Tracking a global phishing ring
Scripted Sparrow
2025-12-18AcronisAcronis Security
Acronis TRU Alliance {Hunt.io}: Hunting DPRK threats - New Global Lazarus & Kimsuky campaigns
BADCALL POOLRAT Quasar RAT
2025-12-18Gen Digital IncVojtěch Krejsa
Gen Blogs | Defeating AuraStealer: Practical Deobfuscation Workflows for Modern Infostealers
Aura Stealer
2025-12-18ESET ResearchAnton Cherepanov, Peter Strýček
LongNosedGoblin tries to sniff out governmental affairs in Southeast Asia and Japan
NosyDownloader
2025-12-18BlackPointNevan Beal, Sam Decker
New MintsLoader Variant Using Hashtable Obfuscation
MintsLoader
2025-12-17Reporters Without BordersJanik Besendor, Maximilian Paß, RESIDENT.NGO Team, Viktor Schlüter
ResidentBat: A new spyware family used by Belarusian KGB
ResidentBat
2025-12-17Recorded FutureInsikt Group
PurpleBravo’s Targeting of the IT Software Supply Chain
BeaverTail InvisibleFerret PylangGhost GolangGhost
2025-12-17Crystal IntelligenceCrystal Intelligence
How we proved North Korea’s blockchain malware campaign
JADESNOW
2025-12-17XLabAcey9, Alex.Turing, RootKiter, Wang Hao
Kimwolf Exposed: The Massive Android Botnet with 1.8 Million Infected Devices
Kimwolf Aisuru
2025-12-17Recorded FutureInsikt Group
BlueDelta’s Persistent Campaign Against UKR.NET
2025-12-16sysdigSysdig Threat Research Team
EtherRAT dissected: How a React2Shell implant delivers 5 payloads through blockchain C2
EtherRAT
2025-12-15Rapid7Milan Spinka
SantaStealer is Coming to Town: A New, Ambitious Infostealer Advertised on Underground Forums
SantaStealer
2025-12-15SquiblydooSquiblydoo
SolarMarker: Actions-On-Target
solarmarker
2025-12-15StrikeReadyStrikeReady Labs
Russian APT actor phishes the Baltics and the Balkans
2025-12-15Bleeping ComputerSergiu Gatlan
French Interior Ministry confirms cyberattack on email servers
2025-12-12Cyfirmacyfirma
Weekly Intelligence Report – 12 December 2025
BreachLaboratory
2025-12-12GoogleAragorn Tseng, Austin Larsen, CASEY CHARRIER, Genevieve Stark, Robert Weiner, Zander Work
Multiple Threat Actors Exploit React2Shell (CVE-2025-55182)
ANGRYREBEL MINOCAT SNOWLIGHT Earth Lamia
2025-12-12TagesschauMarkus Sambale, Philipp Eckstein
German government summons Russian ambassador
2025-12-11Trend MicroDaniel Lunghi, Feike Hacquebord, Ian Kenefick
SHADOW-VOID-042 Targets Multiple Industries with Void Rabisu-like Tactics
ROMCOM RAT SHADOW-VOID-042