Resources > Active Threats En Es Pt Ja De Ko It Fr Ua Active Threats Explore the latest active threats being deployed by malicious actors as of Q4 2025. Each report may offer attack flows, actionable detection rules, and simulation instructions to help SOC teams stay ahead of evolving adversary techniques. 26 May 2026 19:01 Void Dokkaebi Uses Cython-Compiled InvisibleFerret Malware SOC Prime Bias: Critical Trend Micro 26 May 2026 17:55 Payload Ransomware: In-Depth Technical Analysis SOC Prime Bias: High Darkatlas 25 May 2026 19:34 DeepLoad Malware Explained: ClickFix Delivery and Credential Theft SOC Prime Bias: Medium picussecurity.com 25 May 2026 19:29 SEO Poisoning Campaign Uses Gemini and Claude Code Lures to Deliver an Infostealer SOC Prime Bias: Medium EclecticIQ 25 May 2026 19:25 NightSpire Ransomware Attack Chain, Tools and Tactics SOC Prime Bias: High picussecurity.com 22 May 2026 15:56 UAC-0057 Updates Its Toolkit with OYSTERFRESH, OYSTERSHUCK, and OYSTERBLUES SOC Prime Bias: Medium cert.gov.ua 22 May 2026 15:54 From PDB Strings to MaaS: Tracking a Commodity BadIIS Ecosystem SOC Prime Bias: Medium Cisco Talos Blog 22 May 2026 15:42 Inside SHADOW-WATER-063’s Banana RAT: From Build Server to Banking Fraud SOC Prime Bias: Medium Trend Micro 22 May 2026 15:36 durabletask: TeamPCP’s Latest PyPI Supply Chain Compromise SOC Prime Bias: Critical wiz.io 22 May 2026 10:08 Exposed RDP: The Misconfiguration That Still Pays Off for Attackers SOC Prime Bias: Critical Huntress
26 May 2026 19:01 Void Dokkaebi Uses Cython-Compiled InvisibleFerret Malware SOC Prime Bias: Critical Trend Micro
25 May 2026 19:34 DeepLoad Malware Explained: ClickFix Delivery and Credential Theft SOC Prime Bias: Medium picussecurity.com
25 May 2026 19:29 SEO Poisoning Campaign Uses Gemini and Claude Code Lures to Deliver an Infostealer SOC Prime Bias: Medium EclecticIQ
25 May 2026 19:25 NightSpire Ransomware Attack Chain, Tools and Tactics SOC Prime Bias: High picussecurity.com
22 May 2026 15:56 UAC-0057 Updates Its Toolkit with OYSTERFRESH, OYSTERSHUCK, and OYSTERBLUES SOC Prime Bias: Medium cert.gov.ua
22 May 2026 15:54 From PDB Strings to MaaS: Tracking a Commodity BadIIS Ecosystem SOC Prime Bias: Medium Cisco Talos Blog
22 May 2026 15:42 Inside SHADOW-WATER-063’s Banana RAT: From Build Server to Banking Fraud SOC Prime Bias: Medium Trend Micro
22 May 2026 15:36 durabletask: TeamPCP’s Latest PyPI Supply Chain Compromise SOC Prime Bias: Critical wiz.io
22 May 2026 10:08 Exposed RDP: The Misconfiguration That Still Pays Off for Attackers SOC Prime Bias: Critical Huntress