en
Feedback
Malware News

Malware News

Open in Telegram

The latest NEWS about malwares, DFIR, hacking, security issues, thoughts and ... Partner channel: @cveNotify For ads: https://telega.io/c/malwr

Show more

๐Ÿ“ˆ Analytical overview of Telegram channel Malware News

Channel Malware News (@malwr) in the English language segment is an active participant. Currently, the community unites 14 993 subscribers, ranking 8 580 in the Technologies & Applications category and 2 535 in the USA region.

๐Ÿ“Š Audience metrics and dynamics

Since its creation on ะฝะตะฒั–ะดะพะผะพ, the project has demonstrated rapid growth, gathering an audience of 14 993 subscribers.

According to the latest data from 03 July, 2026, the channel demonstrates stable activity. Although there has been a change in the number of participants by 695 over the last 30 days and by 31 over the last 24 hours, overall reach remains high.

  • Verification status: Not verified
  • Engagement rate (ER): The average audience engagement rate is 4.35%. Within the first 24 hours after publication, content typically collects 2.39% reactions from the total number of subscribers.
  • Post reach: On average, each post receives 651 views. Within the first day, a publication typically gains 358 views.
  • Reactions and interaction: The audience actively supports content: the average number of reactions per post is 1.
  • Thematic interests: Content is focused on key topics such as threat, kernel, cve-2025, actor, attack.

๐Ÿ“ Description and content policy

The author describes the resource as a platform for expressing subjective opinions:
โ€œThe latest NEWS about malwares, DFIR, hacking, security issues, thoughts and ... Partner channel: @cveNotify For ads: https://telega.io/c/malwrโ€

Thanks to the high frequency of updates (latest data received on 04 July, 2026), the channel maintains relevance and a high level of publication reach. Analytics show that the audience actively interacts with content, making it an important point of influence in the Technologies & Applications category.

14 993
Subscribers
+3124 hours
+1657 days
+69530 days
Attracting Subscribers
July '26
July '26
+96
in 0 channels
June '26
+700
in 0 channels
Get PRO
May '26
+637
in 0 channels
Get PRO
April '26
+476
in 1 channels
Get PRO
March '26
+257
in 0 channels
Get PRO
February '26
+324
in 1 channels
Get PRO
January '26
+348
in 0 channels
Get PRO
December '25
+397
in 0 channels
Get PRO
November '25
+412
in 0 channels
Get PRO
October '25
+188
in 0 channels
Get PRO
September '25
+95
in 2 channels
Get PRO
August '25
+45
in 0 channels
Get PRO
July '25
+51
in 0 channels
Get PRO
June '25
+46
in 1 channels
Get PRO
May '25
+31
in 1 channels
Get PRO
April '25
+56
in 0 channels
Get PRO
March '25
+22
in 0 channels
Get PRO
February '25
+36
in 0 channels
Get PRO
January '25
+34
in 1 channels
Get PRO
December '24
+457
in 0 channels
Get PRO
November '24
+1 858
in 3 channels
Get PRO
October '24
+980
in 0 channels
Get PRO
September '24
+1 070
in 1 channels
Get PRO
August '24
+957
in 2 channels
Get PRO
July '24
+611
in 1 channels
Get PRO
June '24
+483
in 0 channels
Get PRO
May '24
+637
in 0 channels
Get PRO
April '24
+640
in 1 channels
Get PRO
March '24
+806
in 2 channels
Get PRO
February '24
+521
in 1 channels
Get PRO
January '24
+293
in 0 channels
Get PRO
December '23
+361
in 2 channels
Get PRO
November '23
+85
in 2 channels
Get PRO
October '23
+86
in 1 channels
Get PRO
September '23
+97
in 0 channels
Get PRO
August '23
+85
in 0 channels
Get PRO
July '23
+63
in 0 channels
Get PRO
June '23
+77
in 0 channels
Get PRO
May '23
+65
in 0 channels
Get PRO
April '23
+75
in 0 channels
Get PRO
March '23
+75
in 0 channels
Get PRO
February '23
+38
in 0 channels
Get PRO
January '23
+63
in 0 channels
Get PRO
December '22
+99
in 0 channels
Get PRO
November '22
+70
in 0 channels
Get PRO
October '22
+101
in 0 channels
Get PRO
September '22
+165
in 0 channels
Get PRO
August '22
+986
in 0 channels
Get PRO
July '22
+27
in 0 channels
Get PRO
June '22
+31
in 0 channels
Get PRO
May '22
+63
in 0 channels
Get PRO
April '22
+72
in 0 channels
Get PRO
March '22
+74
in 0 channels
Get PRO
February '22
+43
in 0 channels
Get PRO
January '22
+112
in 0 channels
Get PRO
December '21
+99
in 0 channels
Get PRO
November '21
+42
in 0 channels
Get PRO
October '21
+34
in 0 channels
Get PRO
September '21
+36
in 0 channels
Get PRO
August '21
+48
in 0 channels
Get PRO
July '21
+95
in 0 channels
Get PRO
June '21
+77
in 0 channels
Get PRO
May '21
+11
in 0 channels
Get PRO
April '21
+39
in 0 channels
Get PRO
March '21
+28
in 0 channels
Get PRO
February '21
+40
in 0 channels
Get PRO
January '21
+54
in 0 channels
Get PRO
December '20
+938
in 0 channels
Date
Subscriber Growth
Mentions
Channels
04 July+16
03 July+31
02 July+29
01 July+20
Channel Posts
CodeXTF2/OpenUDC2: open source implementation of the UDC2 spec used in Cobalt Strike https://github.com/CodeXTF2/OpenUDC2 ๐ŸŽ–@malwr

2
The Gentlemen RaaS: rapid growth and a new ransomware variant Kaspersky researchers analyze incidents related to The Gentlemen RaaS group, disclose their tools and TTPs, and find a new ransomware variant. https://securelist.com/the-gentlemen-raas/120447/ ๐ŸŽ–@malwr
208
3
Accelerating EDR Evasion with LLM-Driven Analysis SpecterOps reverse engineered Cortex XDR with LLMs to extract YARA rules, ML models, and behavioral detections. https://specterops.io/blog/2026/06/29/llm-powered-edr-analysis/ ๐ŸŽ–@malwr
322
4
Silent Swap: A Crypto Clipper Extension Campaign https://www.mcafee.com/blogs/other-blogs/mcafee-labs/crypto-clipper-wallet-swapping-browser-extension-malware/ ๐ŸŽ–@malwr
302
5
Donโ€™t eat the ChocoPoCs! Vulnerability researchers were targeted by trojanised exploits A suspicious contribution request led YesWeHack and Sekoia researchers to uncover sophisticated malware targeting the vulnerability research supply chain. https://www.yeswehack.com/news/chocopocs-vulnerability-researchers-trojanised-exploits?utm_source=reddit&utm_medium=social&utm_campaign=chocopocs-vulnerability-researchers ๐ŸŽ–@malwr
428
6
Rhacknarok/hacksguard: A blazingly fast, multi-threaded TUI malware analysis tool built in Rust. Features deep PE parsing, YARA scanning, and heuristic risk scoring. https://github.com/Rhacknarok/hacksguard ๐ŸŽ–@malwr
497
7
How I broke Rhysida ransomware encryption Rhysida derives every per-file AES key from a PRNG seeded with the encryption timestamp. Recover the timestamp and you regenerate every key. A reverse-engineering walkthrough and a minimal decryptor. https://sigreturn.com/blog/rhysida-analysis-decryption/ ๐ŸŽ–@malwr
445
8
Win x64 Shellcode รขย€ย“ Part 2: TEB, PEB and List of Loaded Modules In the previous part, we explained why shellcode cannot use statically written addresses of Windows API functions. The solution lies in the structures that Windows maintains directly in the memory of each process. Today we will look at them closely. Prerequisites Before reading this part, it is advisable to read and understand the previous part. At the same time, it is highly advisable to have at least a basic understanding of what virtual memory and a pointer are. https://proteqtum.com/posts/02-win-x64-shellcode-teb-peb_en/ ๐ŸŽ–@malwr
385
9
Fake Google and Cloudflare verification pages spread multiple malware families https://www.malwarebytes.com/blog/threat-intel/2026/07/fake-google-and-cloudflare-verification-pages-spread-multiple-malware-families ๐ŸŽ–@malwr
347
10
Reverse Engineering Warframeโ€™s Anti-Cheat System Warframe is the hit MMO game by Digital Extremes which is adored by many, being a curious Reverse Engineer I thought why not have a go atโ€ฆ https://medium.com/@ssushruth2003/reverse-engineering-warframes-anti-cheat-system-aae5e6272a4b ๐ŸŽ–@malwr
373
11
Context Engineering | Compaction & Agent Memory for Automated Malware Analysis Compaction cut input tokens 86% across long-running agent evals with no quality loss. Context discipline matters as much as model selection. https://www.sentinelone.com/labs/context-engineering-compaction-agent-memory-for-automated-malware-analysis/ ๐ŸŽ–@malwr
404
12
greit0n/malwarebazaar-downloader: Pull MalwareBazaar samples into an isolated AV-testing lab โ€” safe-by-design CLI + glassmorphic desktop GUI (mbdl). https://github.com/greit0n/malwarebazaar-downloader ๐ŸŽ–@malwr
562
13
Iran-Nexus TAG-182 Disseminates MarkiRAT Surveillance Tool Discover how Iranian-nexus threat cluster TAG-182 uses MarkiRAT malware and fake VPN/media apps to conduct cyber surveillance operations against domestic targets. https://www.recordedfuture.com/research/nexus-tag182-disseminates-markirat https://assets.recordedfuture.com/insikt-report-pdfs/2026/cta-ir-2026-0701.pdf ๐ŸŽ–@malwr
586
14
Doctor Webโ€™s Q2 2026 virus activity review https://news.drweb.com/show/?i=15275&lng=en&c=5 ๐ŸŽ–@malwr+2
Doctor Webโ€™s Q2 2026 virus activity review https://news.drweb.com/show/?i=15275&lng=en&c=5 ๐ŸŽ–@malwr
555
15
Doctor Webโ€™s Q2 2026 review of virus activity on mobile devices https://news.drweb.com/show/?i=15274&lng=en&c=5 ๐ŸŽ–@malwr+3
Doctor Webโ€™s Q2 2026 review of virus activity on mobile devices https://news.drweb.com/show/?i=15274&lng=en&c=5 ๐ŸŽ–@malwr
488
16
RadonCoding/binsafe: Obfuscator for compiled 64-bit portable executables. https://github.com/RadonCoding/binsafe ๐ŸŽ–@malwr
395
17
youssefnoob003/SindriKit: A foundational C library for building operationally credible offensive capabilities https://github.com/youssefnoob003/SindriKit ๐ŸŽ–@malwr
373
18
CitrixBleed To Infinity And Beyond (Citrix NetScaler Pre-Auth Memory Overread CVE-2026-8451) Well, well, well - once again, the cat has dragged us in and spat us out. Today, we find ourselves questioning the reality we sit within. Must it be so predictable, and why us? โ€œBut watchTowr, what do you mean?โ€ Well, if youโ€™re here, you likely fit into one of https://labs.watchtowr.com/citrixbleed-to-infinity-and-beyond-citrix-netscaler-pre-auth-memory-overread-cve-2026-8451/ ๐ŸŽ–@malwr
477
19
TuncorReUnion/TLAC-MODERN-LOCAL-ANTI-CHEAT-REUNIONED: This Anti-Cheat is local server based and fully open source. it's user space https://github.com/TuncorReUnion/TLAC-MODERN-LOCAL-ANTI-CHEAT-REUNIONED ๐ŸŽ–@malwr
542
20
Chaelsoo/Hollow https://github.com/Chaelsoo/Hollow hollow is a shellcode loader generator. You give it a raw shellcode binary and a profile, and it spits out a compiled Windows PE loader with your shellcode encrypted inside. ๐ŸŽ–@malwr
494