Fast Feed

❯

❯

unit42

Mar 21, 20262 min read

Who’s Really Shopping? Retail Fraud in the Age of Agentic AI
Mar 20, 11:00 PM
Analyzing the Current State of AI Use in Malware
Mar 19, 10:00 AM
Navigating Security Tradeoffs of AI Agents
Mar 18, 11:00 PM
Open, Closed and Broken: Prompt Fuzzing Finds LLMs Still Fragile Across Open and Closed Models
Mar 17, 10:00 AM
Boggy Serpens Threat Assessment
Mar 16, 10:00 PM
Iranian Cyber Threat Evolution: From MBR Wipers to Identity Weaponization
Mar 16, 07:15 PM
Insights: Increased Risk of Wiper Attacks
Mar 12, 10:10 PM
Suspected China-Based Espionage Operation Against Military Targets in Southeast Asia
Mar 12, 10:00 PM
Auditing the Gatekeepers: Fuzzing “AI Judges” to Bypass Security Controls
Mar 10, 10:00 AM
An Investigation Into Years of Undetected Operations Targeting High-Value Sectors
Mar 06, 11:00 AM
Fooling AI Agents: Web-Based Indirect Prompt Injection Observed in the Wild
Mar 03, 11:00 AM
Threat Brief: March 2026 Escalation of Cyber Risk Related to Iran
Mar 03, 01:15 AM
Taming Agentic Browsers: Vulnerability in Chrome Allowed Extensions to Hijack New Gemini Panel
Mar 02, 11:00 AM
Bring the Fight to the Edge: Turning Time Into an Advantage in OT Security
Feb 24, 02:00 PM
VShell and SparkRAT Observed in Exploitation of BeyondTrust Critical Vulnerability (CVE-2026-1731)
Feb 19, 11:00 PM
Critical Vulnerabilities in Ivanti EPMM Exploited
Feb 17, 08:35 PM
Phishing on the Edge of the Web and Mobile Using QR Codes
Feb 13, 11:00 PM
Nation-State Actors Exploit Notepad++ Supply Chain
Feb 11, 11:00 PM
A Peek Into Muddled Libra’s Operational Playbook
Feb 10, 11:00 PM
Novel Technique to Detect Cloud Threat Actor Operations
Feb 06, 11:00 PM

70 items under this folder.

Mar 20, 2026
Who’s Really Shopping? Retail Fraud in the Age of Agentic AI
Mar 19, 2026
Analyzing the Current State of AI Use in Malware
Mar 18, 2026
Navigating Security Tradeoffs of AI Agents
Mar 17, 2026
Open, Closed and Broken: Prompt Fuzzing Finds LLMs Still Fragile Across Open and Closed Models
Mar 16, 2026
Boggy Serpens Threat Assessment
Mar 16, 2026
Iranian Cyber Threat Evolution: From MBR Wipers to Identity Weaponization
Mar 12, 2026
Insights: Increased Risk of Wiper Attacks
Mar 12, 2026
Suspected China-Based Espionage Operation Against Military Targets in Southeast Asia
Mar 10, 2026
Auditing the Gatekeepers: Fuzzing AI Judges to Bypass Security Controls
Mar 06, 2026
An Investigation Into Years of Undetected Operations Targeting High-Value Sectors
Mar 03, 2026
Fooling AI Agents: Web-Based Indirect Prompt Injection Observed in the Wild
Mar 03, 2026
Threat Brief: March 2026 Escalation of Cyber Risk Related to Iran
Mar 02, 2026
Taming Agentic Browsers: Vulnerability in Chrome Allowed Extensions to Hijack New Gemini Panel
Feb 24, 2026
Bring the Fight to the Edge: Turning Time Into an Advantage in OT Security
Feb 19, 2026
VShell and SparkRAT Observed in Exploitation of BeyondTrust Critical Vulnerability (CVE-2026-1731)
Feb 17, 2026
Critical Vulnerabilities in Ivanti EPMM Exploited
Feb 13, 2026
Phishing on the Edge of the Web and Mobile Using QR Codes
Feb 11, 2026
Nation-State Actors Exploit Notepad++ Supply Chain
Feb 10, 2026
A Peek Into Muddled Libra’s Operational Playbook
Feb 06, 2026
Novel Technique to Detect Cloud Threat Actor Operations
Feb 05, 2026
The Shadow Campaigns: Uncovering Global Espionage
Feb 04, 2026
Why Smart People Fall For Phishing Attacks
Jan 30, 2026
Privileged File System Vulnerability Present in a SCADA System
Jan 29, 2026
Understanding the Russian Cyber Threat to the 2026 Winter Olympics
Jan 24, 2026
Happy 9th Anniversary, CTA: A Celebration of Collaboration in Cyber Defense
Jan 22, 2026
The Next Frontier of Runtime Assembly Attacks: Leveraging LLMs to Generate Phishing JavaScript in Real Time
Jan 20, 2026
DNS OverDoS: Are Private Endpoints Too Private?
Jan 17, 2026
Anatomy of an Attack: The Payroll Pirates and the Power of Social Engineering
Jan 13, 2026
Threat Brief: MongoDB Vulnerability (CVE-2025-14847)
Jan 13, 2026
Remote Code Execution With Modern AI/ML Formats and Libraries
Jan 08, 2026
Securing Vibe Coding Tools: Scaling Productivity Without Scaling Risk
Jan 02, 2026
VVS Discord Stealer Using Pyarmor for Obfuscation and Detection Evasion
Dec 24, 2025
Who Does Cybersecurity Need? You!
Dec 17, 2025
From Linear to Complex: An Upgrade in RansomHouse Encryption
Dec 17, 2025
Stay Secure: Why Cyber Hygiene Should Be Part of Your Personal Hygiene
Dec 11, 2025
Hamas-Affiliated Ashen Lepus Targets Middle Eastern Diplomatic Entities With New AshTag Malware Suite
Dec 10, 2025
01flip: Multi-Platform Ransomware Written in Rust
Dec 05, 2025
New Prompt Injection Attack Vectors Through MCP Sampling
Dec 04, 2025
Critical Vulnerabilities in React Server Components and Next.js
Dec 03, 2025
The Browser Defense Playbook: Stopping the Attacks That Start on Your Screen
Nov 26, 2025
The Golden Scale: 'Tis the Season for Unwanted Gifts
Nov 25, 2025
The Dual-Use Dilemma of AI: Malicious LLMs
Nov 19, 2025
Anatomy of an Akira Ransomware Attack: When a Fake CAPTCHA Led to 42 Days of Compromise
Nov 14, 2025
Digital Doppelgangers: Anatomy of Evolving Impersonation Campaigns Distributing Gh0st RAT
Nov 11, 2025
You Thought It Was Over? Authentication Coercion Keeps Evolving
Nov 07, 2025
LANDFALL: New Commercial-Grade Android Spyware in Exploit Chain Targeting Samsung Devices
Nov 05, 2025
Know Ourselves Before Knowing Our Enemies: Threat Intelligence at the Expense of Asset Management
Oct 31, 2025
When AI Agents Go Rogue: Agent Session Smuggling Attack in A2A Systems
Oct 29, 2025
Suspected Nation-State Threat Actor Uses New Airstalk Malware in a Supply Chain Attack
Oct 28, 2025
Bots, Bread and the Battle for the Web
Oct 27, 2025
Microsoft WSUS Remote Code Execution (CVE-2025-59287) Actively Exploited in the Wild
Oct 24, 2025
Cloud Discovery With AzureHound
Oct 23, 2025
The Smishing Deluge: China-Based Campaign Flooding Global Text Messages
Oct 22, 2025
Jingle Thief: Inside a Cloud-Based Gift Card Fraud Campaign
Oct 20, 2025
The Golden Scale: Notable Threat Updates and Looking Ahead
Oct 16, 2025
Threat Brief: Nation-State Actor Steals F5 Source Code and Undisclosed Vulnerabilities
Oct 15, 2025
PhantomVAI Loader Delivers a Range of Infostealers
Oct 14, 2025
Anatomy of an Attack: The BlackSuit Blitz at a Global Equipment Manufacturer
Oct 10, 2025
The Golden Scale: Bling Libra and the Evolving Extortion Economy
Oct 09, 2025
When AI Remembers Too Much – Persistent Behaviors in Agents’ Memory
Oct 08, 2025
The ClickFix Factory: First Exposure of IUAM ClickFix Generator
Oct 07, 2025
Responding to Cloud Incidents A Step-by-Step Guide from the 2025 Unit 42 Global Incident Response Report
Oct 01, 2025
TOTOLINK X6000R: Three New Vulnerabilities Uncovered
Sep 30, 2025
Phantom Taurus: A New Chinese Nexus APT and the Discovery of the NET-STAR Malware Suite
Sep 26, 2025
Threat Insights: Active Exploitation of Cisco ASA Zero Days
Sep 24, 2025
Bookworm to Stately Taurus Using the Unit 42 Attribution Framework
Sep 22, 2025
Operation Rewrite: Chinese-Speaking Threat Actors Deploy BadIIS in a Wide Scale SEO Poisoning Campaign
Sep 17, 2025
Shai-Hulud Worm Compromises npm Ecosystem in Supply Chain Attack
Sep 16, 2025
Myth Busting: Why Innocent Clicks Don't Exist in Cybersecurity
Sep 15, 2025
The Risks of Code Assistant LLMs: Harmful Content, Misuse and Deception

Created By Quantlight © 2026

GitHub