THREATNOIR
Subscribe
Back to Feed
Threat IntelligenceMar 23, 2026

Threat actors didn’t reinvent the playbook in 2025. They refined it. From Cobalt Strike to the ri...

Threat actors refined attack tactics in 2025 using Cobalt Strike, infostealers, and as-a-service models.

Read at source

Summary

Security researchers report that threat actors in 2025 did not significantly change their attack methodologies but instead refined and scaled existing tactics. The analysis highlights continued reliance on tools like Cobalt Strike, increased use of infostealer malware, and widespread adoption of as-a-service attack models that enable attackers to blend into legitimate network environments.

Indicators of Compromise

  • malware — Cobalt Strike
  • malware — infostealers