Malpedia Library

Click here to download all references as Bib-File.•

2026-02-03 ⋅ Kaspersky Labs ⋅ Anton Kargin, Georgy Kucherin
The Notepad++ supply chain attack — unnoticed execution chains and new IoCs
Chrysalis Cobalt Strike

2026-02-02 ⋅ Rapid7 ⋅ Ivan Feigl
The Chrysalis Backdoor: A Deep Dive into Lotus Blossom’s toolkit
Chrysalis

2026-02-01 ⋅ ⋅ Cert-UA ⋅ Cert-UA
"Danger Bulletin": UAC-0001 (APT28) carries out cyberattacks against Ukraine and EU countries using the CVE-2026-21509 exploit (CERT-UA#19542)
GRUNT

2026-01-29 ⋅ Censys ⋅ Andrew Northern
AsyncRAT C2 Activity at Internet Scale
AsyncRAT

2026-01-29 ⋅ Sekoia ⋅ Amaury G., Quentin Bourgue, Sekoia TDR
Meet IClickFix: a widespread WordPress-targeting framework using the ClickFix tactic
IClickFix

2026-01-29 ⋅ HarfangLab ⋅ HarfangLab CTR
RedKitten: AI-accelerated campaign targeting Iranian protests
SloppyMIO

2026-01-28 ⋅ Proofpoint ⋅ Proofpoint Threat Research Team
Can’t stop, won’t stop: TA584 innovates initial access
XWorm TA584

2026-01-28 ⋅ Google ⋅ Google Threat Intelligence Group
No Place Like Home Network: Disrupting the World's Largest Residential Proxy Network

2026-01-28 ⋅ Hunt.io ⋅ Hunt.io
Exposed Open Directory Leaks a Full BYOB Deployment Across Windows, Linux, and macOS

2026-01-28 ⋅ ESET Research ⋅ Lukáš Štefanko
Love? Actually: Fake dating app used as lure in targeted spyware campaign in Pakistan
GhostChat

2026-01-27 ⋅ Zscaler ⋅ Sudeep Singh, Yin Hong Chang
APT Attacks Target Indian Government Using SHEETCREEP, FIREPOWER, and MAILCREEP | Part 2
MAILCREEP SHEETCREEP

2026-01-27 ⋅ Google ⋅ Google Threat Intelligence Group
Diverse Threat Actors Exploiting Critical WinRAR Vulnerability CVE-2025-8088

2026-01-26 ⋅ CodeCrank ⋅ Daniel Tofan
A LinkedIn Job Offer Tried to Install Malware on My Machine

2026-01-26 ⋅ Zscaler ⋅ Sudeep Singh, Yin Hong Chang
APT Attacks Target Indian Government Using GOGITTER, GITSHELLPAD, and GOSHELL | Part 1
Cobalt Strike

2026-01-23 ⋅ ESET Research ⋅ ESET Research
ESET Research: Sandworm behind cyberattack on Poland’s power grid in late 2025

2026-01-23 ⋅ Zero Day ⋅ Kim Zetter
Cyberattack Targeting Poland’s Energy Grid Used a Wiper

2026-01-23 ⋅ Bluesky (@esetresearch.bsky.social) ⋅ ESET Research
Post about DynoWiper activity

2026-01-23 ⋅ BlackPoint ⋅ Jack Patrick, Sam Decker
Novel Fake CAPTCHA Chain Delivering Amatera Stealer
ACR Stealer Amatera

2026-01-23 ⋅ Medium Ireneusz Tarnowski ⋅ Ireneusz Tarnowski
SpyNote: Comprehensive Analysis of an Android Remote Access Trojan
SpyNote

2026-01-20 ⋅ ⋅ Rostelecom-Solar ⋅ Pandora Hive Mind
ShadowRelay – a unique backdoor in the public sector
ShadowPad SNAPPYBEE