Malpedia Library

2026-02-17 ⋅ ANY.RUN ⋅ ANY.RUN
LATAM Businesses Hit by XWorm via Fake Financial Receipts: Full Campaign Analysis
XWorm

2026-02-16 ⋅ kmsec ⋅ Kieran Miyamoto
Exposed DPRK reference malware and logs

2026-02-16 ⋅ Huntress Labs ⋅ Anna Pham, Michael Tigges
ClickFix Won't Die. Neither Will Matanbuchus. A New RAT and a Hands-on-Keyboard Intrusion
AstarionRAT Matanbuchus

2026-02-15 ⋅ Github (jrm360seclab) ⋅ Johny Metellus
AODIN X1BQ Projector — Pre-Installed Vo1d Botnet Malware
Void

2026-02-13 ⋅ NSFOCUS ⋅ NSFOCUS
Top Security Incidents of 2025: The Emergence of the ChainedShark APT Group
ChainedShark

2026-02-13 ⋅ kmsec ⋅ Kieran Miyamoto
VMWare artifacts left by a FAMOUS CHOLLIMA operator

2026-02-12 ⋅ SOCRadar ⋅ SOCRadar
Dark Web Profile: The Gentlemen Ransomware
Gentlemen The Gentlemen

2026-02-12 ⋅ Botcrawl ⋅ Sean Doyle
Nippon Medical School Musashi Kosugi Hospital Data Breach Claimed by NetRunnerPR
NetRunnerPR

2026-02-12 ⋅ Sekoia ⋅ Pierre Le Bourhis
OysterLoader Unmasked: The Multi-Stage Evasion Loader
Broomstick

2026-02-12 ⋅ LevelBlue ⋅ Rodel Mendrez
How ClickFix Opens the Door to Stealthy StealC Information Stealer
IClickFix Stealc

2026-02-11 ⋅ Intel 471 ⋅ Intel 471
Winter Olympics 2026: Hacktivism Surges Ahead of Protests and Suspected Sabotage
Z-Pentest Alliance

2026-02-11 ⋅ Isovalent ⋅ Jeremy Colvin
Deconstructing Voidlink: Why New AI and Cloud-Native Threats Require a New Class of Defense
VoidLink UAT-9921

2026-02-11 ⋅ Bitdefender ⋅ Bogdan Ionut Lazar, Janos Gergo Szeles, Manuel Dragomir
LummaStealer Is Getting a Second Life Alongside CastleLoader
CASTLELOADER Lumma Stealer

2026-02-10 ⋅ Google ⋅ Google Threat Intelligence Group
Beyond the Battlefield: Threats to the Defense Industrial Base
Infrastructure Destruction Squad

2026-02-10 ⋅ Cisco Talos ⋅ Aaron Boyd, Asheer Malhotra, Nick Biasini, Vitor Ventura
New threat actor, UAT-9921, leverages VoidLink framework in campaigns
VoidLink UAT-9921

2026-02-09 ⋅ Bitdefender ⋅ Jade Brown
No Encryptors, No Problem: The Coinbase Cartel Ransomware Group
Coinbase Cartel

2026-02-09 ⋅ Mandiant ⋅ Adrian Hernandez, Ross Inman
UNC1069 Targets Cryptocurrency Sector with New Tooling and AI-Enabled Social Engineering
SUGARLOADER WAVESHAPER

2026-02-09 ⋅ TRUESEC ⋅ Andreas Törnqvist, Mattias Wåhlén, Nicklas Keijser
Detecting Russian Threats to Critical Energy Infrastructure
DynoWiper

2026-02-06 ⋅ t0ast's blog ⋅ t0ast
DynoWiper: From Russia with Love
DynoWiper

2026-02-05 ⋅ Symantec ⋅ Threat Hunter Team
Reynolds: Defense Evasion Capability Embedded in Ransomware Payload
Reynolds