Malware News

前往频道在 Telegram

The latest NEWS about malwares, DFIR, hacking, security issues, thoughts and ... Partner channel: @cveNotify For ads: https://telega.io/c/malwr

显示更多

美国2 657 技术与应用8 964...

📈 Telegram 频道 Malware News 的分析概览

频道 Malware News (@malwr) 英语语言赛道中的是活跃参与者。目前社区聚集了 14 431 名订阅者，在 技术与应用 类别中位列第 8 964，并在美国地区排名第 2 657 位。

📊 受众指标与增长动态

自 невідомо 创建以来，项目保持高速增长，吸引了 14 431 名订阅者。

根据 09 六月, 2026 的最新数据，频道保持稳定运转。过去 30 天订阅人数变化为 584，过去 24 小时变化为 20，整体触达仍然可观。

认证状态： 未认证
互动率 (ER)： 平均受众互动率为 8.07%。内容发布后 24 小时内通常能获得 2.89% 的反应，占订阅者总量。
帖子覆盖： 每篇帖子平均可获得 1 162 次浏览，首日通常累积 416 次浏览。
互动与反馈： 受众积极参与，单帖平均反应数为 9。
主题关注点： 内容集中在 threat, kernel, cve-2025, actor, attack 等核心主题上。

📝 描述与内容策略

作者将该频道定位为表达主观观点的平台：
“The latest NEWS about malwares, DFIR, hacking, security issues, thoughts and ... Partner channel: @cveNotify For ads: https://telega.io/c/malwr”

凭借高频更新（最新数据采集于 10 六月, 2026），频道始终保持新鲜度与高覆盖。分析显示受众积极互动，使其成为 技术与应用 类别中的关键影响点。

14 431

订阅者

+2024 小时

+1477 天

+58430 天

1 162

帖子浏览量

~ 41624 小时

~ 50148 小时

8.07%

参与率

~ 2

每日帖子数

Ads index

beta

数据加载中...

相似频道

更多频道

标签云

进出提及

---

吸引订阅者

六月 '26

+218

在0个频道中

五月 '26

+637

在0个频道中

Get PRO

四月 '26

+476

在1个频道中

Get PRO

三月 '26

+257

在0个频道中

Get PRO

二月 '26

+324

在1个频道中

Get PRO

一月 '26

+348

在0个频道中

Get PRO

十二月 '25

+397

在0个频道中

Get PRO

十一月 '25

+412

在0个频道中

Get PRO

十月 '25

+188

在0个频道中

Get PRO

九月 '25

+95

在2个频道中

Get PRO

八月 '25

+45

在0个频道中

Get PRO

七月 '25

+51

在0个频道中

Get PRO

六月 '25

+46

在1个频道中

Get PRO

五月 '25

+31

在1个频道中

Get PRO

四月 '25

+56

在0个频道中

Get PRO

三月 '25

+22

在0个频道中

Get PRO

二月 '25

+36

在0个频道中

Get PRO

一月 '25

+34

在1个频道中

Get PRO

十二月 '24

+457

在0个频道中

Get PRO

十一月 '24

+1 858

在3个频道中

Get PRO

十月 '24

+980

在0个频道中

Get PRO

九月 '24

+1 070

在1个频道中

Get PRO

八月 '24

+957

在2个频道中

Get PRO

七月 '24

+611

在1个频道中

Get PRO

六月 '24

+483

在0个频道中

Get PRO

五月 '24

+637

在0个频道中

Get PRO

四月 '24

+640

在1个频道中

Get PRO

三月 '24

+806

在2个频道中

Get PRO

二月 '24

+521

在1个频道中

Get PRO

一月 '24

+293

在0个频道中

Get PRO

十二月 '23

+361

在2个频道中

Get PRO

十一月 '23

+85

在2个频道中

Get PRO

十月 '23

+86

在1个频道中

Get PRO

九月 '23

+97

在0个频道中

Get PRO

八月 '23

+85

在0个频道中

Get PRO

七月 '23

+63

在0个频道中

Get PRO

六月 '23

+77

在0个频道中

Get PRO

五月 '23

+65

在0个频道中

Get PRO

四月 '23

+75

在0个频道中

Get PRO

三月 '23

+75

在0个频道中

Get PRO

二月 '23

+38

在0个频道中

Get PRO

一月 '23

+63

在0个频道中

Get PRO

十二月 '22

+99

在0个频道中

Get PRO

十一月 '22

+70

在0个频道中

Get PRO

十月 '22

+101

在0个频道中

Get PRO

九月 '22

+165

在0个频道中

Get PRO

八月 '22

+986

在0个频道中

Get PRO

七月 '22

+27

在0个频道中

Get PRO

六月 '22

+31

在0个频道中

Get PRO

五月 '22

+63

在0个频道中

Get PRO

四月 '22

+72

在0个频道中

Get PRO

三月 '22

+74

在0个频道中

Get PRO

二月 '22

+43

在0个频道中

Get PRO

一月 '22

+112

在0个频道中

Get PRO

十二月 '21

+99

在0个频道中

Get PRO

十一月 '21

+42

在0个频道中

Get PRO

十月 '21

+34

在0个频道中

Get PRO

九月 '21

+36

在0个频道中

Get PRO

八月 '21

+48

在0个频道中

Get PRO

七月 '21

+95

在0个频道中

Get PRO

六月 '21

+77

在0个频道中

Get PRO

五月 '21

+11

在0个频道中

Get PRO

四月 '21

+39

在0个频道中

Get PRO

三月 '21

+28

在0个频道中

Get PRO

二月 '21

+40

在0个频道中

Get PRO

一月 '21

+54

在0个频道中

Get PRO

十二月 '20

+938

在0个频道中

日期	订阅者增长	提及	频道
10 六月	+24
09 六月	+20
08 六月	+23
07 六月	+13
06 六月	+24
05 六月	+40
04 六月	+11
03 六月	+24
02 六月	+26
01 六月	+13

频道帖子

The shift from an “N-day” world toward an “N-hour” reality. The shift is happening because advanced AI can automate the expert reverse-engineering and exploit-development work that used to take skilled humans days or weeks, reducing the time from patch release to working exploit to mere hours. @SirMalware

2	The shift from from an “N-day” world toward an “N-hour” reality. The shift is happening because advanced AI can automate the expert reverse-engineering and exploit-development work that used to take skilled humans days or weeks, reducing the time from patch release to working exploit to mere hours. @SirMalware	1
3	N-days \ red.anthropic.com https://red.anthropic.com/2026/n-days/ Modern frontier LLMs are dramatically accelerating the exploitation of N-day vulnerabilities (publicly disclosed bugs that many systems have not yet patched). In controlled experiments, Anthropic found that advanced models could autonomously analyze software patches, reconstruct the underlying vulnerability, and build working proof-of-concept exploits in minutes to hours. On both open-source Firefox bugs and closed-source Windows kernel vulnerabilities, their strongest model generated successful exploits at a speed that far outpaced typical enterprise patch deployment timelines. 🎖@malwr	91
4	IDA 9.4 Beta \| Hex-Rays Docs. https://docs.hex-rays.com/release-notes/9_4beta 🎖@malwr	150
5	Turning Up the Heat: Hacking Trane HVAC Controllers Team82 identified a chain of severe, highly exploitable vulnerabilities in the widely deployed Trane Tracer SC+ HVAC controller affecting up to version v5.20.1362. These vulnerabilities could allow an unauthenticated remote attacker to gain complete control over a critical building management system. Trane has patched ... https://claroty.com/team82/research/turning-up-the-heat-hacking-trane-hvac-controllers 🎖@malwr	259
6	JeanExtreme002/PyMemoryEditor: A pure-Python library that lets you inspect, modify and search the memory of any running process in a few lines of Python . https://github.com/JeanExtreme002/PyMemoryEditor 🎖@malwr	383
7	Whoops! I did it again. I patched Windows Kernel at Milan0day 2026 https://zer0matt.blogspot.com/2026/05/whoops-i-did-it-again-i-patched-windows.html 🎖@malwr	393
8	How to Detect PowerShell Encoded Commands in Microsoft Sentinel (KQL) A working SOC analyst's guide to detecting PowerShell -EncodedCommand abuse using KQL in Microsoft Sentinel. Production-ready detection rules with tuning notes. http://socauthority.com/blog/how-to-detect-powershell-encoded-commands-sentinel-kql/ 🎖@malwr	395
9	matheusht/redthread: An autonomous red-teaming engine for LLMs. RedThread manages the full security lifecycle: generating adversarial attacks, executing precision evaluations, and synthesizing validated guardrails for safe self-improvement. https://github.com/matheusht/redthread 🎖@malwr	378
10	2026-06-09: Atomic macOS (AMOS) Stealer infection https://www.malware-traffic-analysis.net/2026/06/09/index.html 🎖@malwr	331
11	Reminder: We accept ads @SirMalware	456
12	dmtrKovalenko/lofree-hypace-reverse-engineer: Reverse engineered firmware flashing protocol for lofree hypace mouse https://github.com/dmtrKovalenko/lofree-hypace-reverse-engineer 🎖@malwr	472
13	NightCity Tracer NightCity Tracer — a cyberpunk network intrusion simulation game. Hack, trace, and outmaneuver corporate security in real-time tactical scenarios. https://thomassimmer.github.io/nightcity-tracer/ 🎖@malwr	391
14	Synthetic APTs: the Collapse of TTP-Based Attribution Cyber Threat Intelligence CTI attribution relies on identifying the Tactics, Techniques, and Procedures TTPs that distinguish one threat actor from another. This approach presupposes that each adversary leaves a recognizable operational fingerprint. This work investigates whether AI driven adversary emulation challenges that presupposition. We deploy agents from our Cybersecurity SuperIntelligence CSI framework, configured as five Advanced Persistent Threat APT groups, APT28, APT29, APT41, APT44, and Lazarus Group, against AI driven Defender agents across two cyber ranges provided by CYBER RANGES, equipped with defensive software Wazuh, Velociraptor, Elasticsearch and active AI driven defenders: an enterprise network and a military infrastructure. Across 20 experiments using two defender models, a binary pattern emerges: all 10 Enterprise range experiments resulted in compromise 2 to 12 hosts per experiment, while all 10 Military range experiments were successfully defended or resulted in stalemates, regardless of APT profile or defender model. In 8 of 10 Enterprise experiments, attackers independently weaponized the defender's own Velociraptor endpoint management platform as a command and control channel, a convergent behavior not encoded in any threat intelligence profile. We argue that in the AI era, wherein agents can be deployed provided the right models are available and subject to the right scaffolding and agentic configuration, the entry barrier for operating like a nation state APT collapses: beyond nation states, individuals can now act like commonly identified threat actors, and with it, fundamentally undermine TTP based attribution. https://arxiv.org/abs/2606.07158 🎖@malwr	402
15	analysis/pure_basic_640 at main · 4next-re/analysis https://github.com/4next-re/analysis/tree/main/pure_basic_640 🎖@malwr	498
16	Inside SStar Agent, a cross-platform RAT with an unfinished macOS toolkit Deep dive into SStar Agent: a cross-platform RAT with Chrome extension harvesting, full filesystem exfiltration, and Windows-only keylogging delivered via npm supply chain attack. https://www.iru.com/blog/sstar-agent 🎖@malwr	492
17	Old WinRAR Flaw Fuels Attacks on Ukraine: How Unmanaged Software Keeps the Door Open Two separate Russia-aligned campaigns are still exploiting the WinRAR flaw CVE-2025-8088 against Ukrainian organizations nearly a year after it was patched, showing how unmanaged software keeps an exploited entry point open long after the fix ships. https://www.trendmicro.com/en_us/research/26/f/old-winrar-flaw-fuels-attacks-on-ukraine.html 🎖@malwr	613
18	Take these AIs seriously. Get familiar with them, engage with them professionally, and definitely use them. That's the true future you should be prepared for. Believe me!	664
19	Is Claude Mythos Killing Cybersecurity Careers? https://osintteam.blog/is-claude-mythos-killing-cybersecurity-careers-01ef96311ab2 🎖@malwr	665
20	About ETW Internals: Architecture, Hooking, Tampering, and Detection Event Tracing for Windows is the telemetry fabric behind a large part of modern Windows security work. EDRs, anti-cheats, forensic tools, WPR, Sysmon-adjacent pipelines, and many Microsoft components all lean on it. Attackers know that too, so ETW ends up being both a signal source and a target. This post walks through ETW from the inside: how providers reach sessions, where buffers and enable slots live, which parts are public API, which parts are private kernel state, and where tampering actually changes what a defender sees. The reference target is Windows 11 25H2 (ntoskrnl 10.0.26200.x) with 24H2 deltas called out.… https://kernullist.github.io/kernullist-blog/posts/etw-internals-deep-dive/ 🎖@malwr	629

查看所有帖子