Malpedia Library

Click here to download all references as Bib-File.•

2026-01-13 ⋅ Security Alliance ⋅ Security Alliance
VS Code Tasks Abuse by Contagious Interview (DPRK)
BeaverTail InvisibleFerret

2026-01-12 ⋅ ⋅ Cert-UA ⋅ Cert-UA
"Unreliable Fund": targeted cyberattacks UAC-0190 against SOU using PLUGGYAPE (CERT-UA#19092)
PLUGGYAPE Void Blizzard

2025-12-18 ⋅ Acronis ⋅ Acronis Security
Acronis TRU Alliance {Hunt.io}: Hunting DPRK threats - New Global Lazarus & Kimsuky campaigns
BADCALL POOLRAT Quasar RAT

2025-12-17 ⋅ Reporters Without Borders ⋅ Janik Besendor, Maximilian Paß, RESIDENT.NGO Team, Viktor Schlüter
ResidentBat: A new spyware family used by Belarusian KGB
ResidentBat

2025-12-08 ⋅ Trend Micro ⋅ Aliakbar Zahravi
AI-Automated Threat Hunting Brings GhostPenguin Out of the Shadows
GhostPenguin

2025-11-21 ⋅ K7 Security ⋅ Dhanush, Srinivasan E
Brazilian Campaign: Spreading the Malware via WhatsApp

2025-11-18 ⋅ DataBreaches.net ⋅ Dissent
From bad to worse: Doctor Alliance hacked again by same threat actor (2)
Kazu

2025-11-17 ⋅ The HIPAA Journal ⋅ Steve Alder
Doctor Alliance Investigating 353 GB Data Theft Claim
Kazu

2025-10-21 ⋅ Elastic ⋅ Andrew Pease, Braxton Williams, Daniel Stepanic, Jia Yu Chan, Salim Bitam, Seth Goodwin
TOLLBOOTH: What's yours, IIS mine
TOLLBOOTH

2025-10-14 ⋅ Reliaquest ⋅ RELIAQUEST THREAT RESEARCH TEAM
SOE-phisticated Persistence: Inside Flax Typhoon's ArcGIS Compromise

2025-10-08 ⋅ Volexity ⋅ Callum Roxan, Killian Raimbaud, Steven Adair
APT Meets GPT: Targeted Operations with Untamed LLMs
UTA0388

2025-07-14 ⋅ Arda Büyükkaya ⋅ EclecticIQ Threat Research Team
GLOBAL GROUP: Emerging Ransomware-as-a-Service, Supporting AI Driven Negotiation and Mobile Control Panel for Their Affiliates
Global

2025-06-17 ⋅ Trend Micro ⋅ Ahmed Mohamed Ibrahim, Aliakbar Zahravi, Shubham Singh, Sunil Bharti
Critical Langflow Vulnerability (CVE-2025-3248) Actively Exploited to Deliver Flodrix Botnet
Flodrix

2025-06-05 ⋅ Reliaquest ⋅ RELIAQUEST THREAT RESEARCH TEAM
Scattered Spider Targets Tech Companies for Help-Desk Exploitation

2025-05-27 ⋅ Microsoft ⋅ Microsoft Threat Intelligence
New Russia-affiliated actor Void Blizzard targets critical sectors for espionage
Void Blizzard

2025-04-17 ⋅ Kaspersky Labs ⋅ GReAT
IronHusky updates the forgotten MysterySnail RAT to target Russia and Mongolia
MysterySnail

2025-04-12 ⋅ CyberSecurity88 ⋅ CyberSecurity88
Algeria’s Ministry of Pharmaceutical Industry Data Leaked in Retaliatory Cyberattack
MORH4x

2025-04-11 ⋅ Reliaquest ⋅ RELIAQUEST THREAT RESEARCH TEAM
Threat Spotlight: Hijacked and Hidden: New Backdoor and Persistence Technique

2025-04-02 ⋅ BushidoToken ⋅ BushidoToken
Tracking Adversaries: EvilCorp, the RansomHub affiliate
RansomHub

2025-03-28 ⋅ Trend Micro ⋅ Ahmed Mohamed Ibrahim, Aliakbar Zahravi
A Deep Dive into Water Gamayun’s Arsenal and Infrastructure
DarkWisp SilentPrism Kematian Stealer Rhadamanthys Stealc Water Gamayun