Active Threats

Explore the latest active threats being deployed by malicious actors as of Q4 2025. Each report may offer attack flows, actionable detection rules, and simulation instructions to help SOC teams stay ahead of evolving adversary techniques.

09 Dec 2025 18:26

LockBit Reborn: Inside the Group’s Post-Takedown Evolution

SOC Prime Bias: High

source icon

picussecurity.com

08 Dec 2025 20:57

Critical King Addons for Elementor Vulnerability Under Active Exploit

SOC Prime Bias: Critical

source icon

Wordfence

08 Dec 2025 16:27

UDPGangster Attacks Spread Across Multiple Countries

SOC Prime Bias: Critical

source icon

Fortinet Blog

05 Dec 2025 17:36

CoinMiner Malware Continues to Spread via USB Drives

SOC Prime Bias: Medium

source icon

ASEC

05 Dec 2025 16:35

CVE-2025-55182 and CVE-2025-66478: High-Fidelity Detection for RSC/Next.js RCE

SOC Prime Bias: Critical

source icon

Searchlight Cyber

04 Dec 2025 18:28

APT36 Deploys Python ELF Malware Against Indian Government Entities

SOC Prime Bias: Critical

source icon

CYFIRMA

04 Dec 2025 17:37

ValleyRAT Malware Targets Job Seekers, Abuses Foxit DLL Sideloading

SOC Prime Bias: Medium

source icon

Trend Micro

03 Dec 2025 20:12

Riddle Spider Avaddon Ransomware Analysis and Technical Overview

SOC Prime Bias: High

source icon

picussecurity.com

03 Dec 2025 19:02

Matanbuchus 3.0: Technical Analysis

SOC Prime Bias: High

source icon

Analysis of Rhadamanthy

02 Dec 2025 20:53

DIRTYBULK and Friends: USB Malware Fuelling Coinmining Ops

SOC Prime Bias: Medium

source icon

googlecloudcommunity.com