Malpedia Library

2025-12-04 ⋅ CrowdStrike ⋅ CrowdStrike Counter Adversary Operations
Unveiling WARP PANDA: A New Sophisticated China-Nexus Adversary
BRICKSTORM WARP PANDA

2025-12-04 ⋅ CISA ⋅ Canadian Centre for Cyber Security, CISA, NSA
Malware Analysis Report (MAR) BRICKSTORM Backdoor
BRICKSTORM

2025-12-03 ⋅ Hunt.io ⋅ Hunt.io
Malicious VSCode Extension Launches Multi-Stage Attack Chain with Anivia Loader and OctoRAT
OctoRAT

2025-12-02 ⋅ Trend Micro ⋅ Byron Gelera, Emmanuel Panopio, Ian Kenefick, Jeffrey Francis Bonaobra, Joe Soares, Sarah Pearl Camiling
Unraveling Water Saci's New Multi-Format, AI-Enhanced Attacks Propagated via WhatsApp
Water Saci

2025-12-02 ⋅ ⋅ Positive Technologies ⋅ Igor Shiryaev, Kirill Navoshchik, Maxim Shamanov, Stanislav Pyzhov, Vladislav Lunin
(Ex)Cobalt. A review of the group's tools in attacks for 2024-2025
PUMAKIT

2025-12-02 ⋅ Zscaler ⋅ Atinderpal Singh
Shai-Hulud V2 Poses Risk To NPM Supply Chain
Shai-Hulud

2025-12-02 ⋅ Synthient ⋅ Synthient
IPCola: A Tangled Mess
Gaganode Gaganode Gaganode

2025-12-01 ⋅ LinkedIn (Microsoft) ⋅ Microsoft Threat Intelligence
Post about Phishing Campaign pushing XWorm
XWorm TA584

2025-12-01 ⋅ FORTRA ⋅ John Wilson
Unknown
Scripted Sparrow

2025-12-01 ⋅ NetAskari Substack ⋅ NetAskari
Critical strike: China's hacking training grounds (PART 2)

2025-12-01 ⋅ Koi Security ⋅ Tuval Admoni
4.3 Million Browsers Infected: Inside ShadyPanda's 7-Year Malware Campaign
ShadyPanda

2025-11-30 ⋅ Twitter (@ClearskySec) ⋅ ClearSky
Tweet about GamaWiper
GamaWiper

2025-11-28 ⋅ SOCRadar ⋅ SOCRadar
AI-Powered Cyber Espionage: Inside the GTG-1002 Campaign
GTG-1002

2025-11-28 ⋅ OpenSourceMalware ⋅ OpenSourceMalware
"Contagious Interview" campaign abuses Microsoft VSCode tasks to drop malware and gain persistence
BeaverTail InvisibleFerret

2025-11-27 ⋅ Positive Technologies ⋅ Alexander Badayev, Klimentiy Galkin, Vladislav Lunin
Dragons in Thunder
KrustyLoader Sliver

2025-11-26 ⋅ FortiGuard Labs ⋅ Vincent Li
ShadowV2 Casts a Shadow Over IoT Devices
ShadowV2

2025-11-26 ⋅ Intrinsec ⋅ CTI Intrinsec, David Sardinha
Trouble in the air: A spree of campaigns targeting the aerospace industry in Russia
DarkWatchman CloudEyE Formbook PhantomCore Remcos

2025-11-26 ⋅ CERT-FR ⋅ CERT-FR
Mobile phones: Threat landscape since 2015

2025-11-25 ⋅ DeXpose ⋅ M4lcode
Inside Valkyrie Stealer: Capabilities, Evasion Techniques, and Operator Profile
Valkyrie Stealer

2025-11-25 ⋅ Universita Pegaso ⋅ Luigi Martire, Pierluigi Paganini
Dissecting a new malspam chain delivering Purelogs infostealer
PureLogs Stealer