Malpedia Library

Click here to download all references as Bib-File.•

2025-10-22 ⋅ Trend Micro ⋅ Daniel Lunghi, Joseph C Chen, Lenart Bermejo, Leon M Chang, Vickie Su
The Rise of Collaborative Tactics Among China-aligned Cyber Espionage Campaigns
Cobalt Strike DracuLoader ShadowPad

2025-10-20 ⋅ Darktrace ⋅ Nathaniel Jones, Sam Lister
Salty Much: Darktrace’s view on a recent Salt Typhoon intrusion
SNAPPYBEE

2025-10-20 ⋅ Ransom-ISAC ⋅ Ellis Stannard
Cross-Chain TxDataHiding Crypto Heist: A Very Chainful Process (Part 1)
JADESNOW

2025-10-19 ⋅ ⋅ CNCERT ⋅ CNCERT
Technical Analysis Report on National Timing Center's National Security Agency Cyberattacks
DanderSpritz

2025-10-18 ⋅ Koi Security ⋅ Idan Dardikman
GlassWorm: First Self-Propagating Worm Using Invisible Code Hits OpenVSX Marketplace
GlassWorm

2025-10-16 ⋅ Hunt.io ⋅ Hunt.io
Odyssey Stealer and AMOS Campaign Targets macOS Developers Through Fake Tools
AMOS

2025-10-16 ⋅ Swisscom B2B CSIRT ⋅ Matthieu Gras, Swisscom B2B CSIRT
Swisscom TDR Intel Brief - Acreed: On-Chain C2 Evolution
ACR Stealer

2025-10-16 ⋅ Mandiant ⋅ Blas Kojusner, Joseph Dobson, Robert Wallace
DPRK Adopts EtherHiding: Nation-State Malware Hiding on Blockchains
JADESNOW

2025-10-15 ⋅ Symantec ⋅ Threat Hunter Team
Jewelbug: Chinese APT Group Widens Reach to Russia

2025-10-15 ⋅ David Dodda ⋅ Dvaid Dodda
How I Almost Got Hacked By A 'Job Interview'
OtterCookie

2025-10-15 ⋅ Trend Micro ⋅ Dove Chiu, Lucien Chuang
Operation Zero Disco: Attackers Exploit Cisco SNMP Vulnerability to Deploy Rootkits

2025-10-14 ⋅ ⋅ Synacktiv ⋅ Theo Letailleur
LinkPro: analysis of an eBPF rootkit
LinkPro vGet

2025-10-14 ⋅ Gatewatcher ⋅ Gatewatcher, Gatewatcher's purple team
Data Breach: the operations of "Charming Kitten" revealed

2025-10-13 ⋅ ⋅ Logpresso ⋅ Hwang Min-kyung
[Threat Analysis] Lazarus Group Analyzes Malware for Windows and MacOS

2025-10-13 ⋅ Proofpoint ⋅ Kyle Cucci, Proofpoint Threat Research Team, Selena Larson, Tommy Madjar
When the monster bytes: tracking TA585 and its arsenal
MonsterV2

2025-10-10 ⋅ Socket ⋅ Kirill Boychenko
North Korea’s Contagious Interview Campaign Escalates: 338 Malicious npm Packages, 50,000 Downloads
BeaverTail InvisibleFerret

2025-10-07 ⋅ Cybernews ⋅ Ernestas Naprys
Steam, Riot Games hit by disruptions: massive DDoS attack suspected
Aisuru

2025-10-06 ⋅ Microsoft ⋅ Microsoft Threat Intelligence
Investigating active exploitation of CVE-2025-10035 GoAnywhere Managed File Transfer vulnerability
MedusaLocker

2025-10-06 ⋅ BlackPoint ⋅ Caden Toellner, Nevan Beal, Sam Decker
Malicious Node Package Deploys OtterCookie
OtterCookie

2025-10-03 ⋅ Techzine ⋅ Erik van Klinken
What we know so far about Red Hat’s GitLab instance breach
Crimson Collective