Fast Feed

❯

❯

unit42

Feb 03, 20262 min read

Privileged File System Vulnerability Present in a SCADA System
Jan 30, 11:00 PM
Understanding the Russian Cyber Threat to the 2026 Winter Olympics
Jan 29, 09:30 PM
Happy 9th Anniversary, CTA: A Celebration of Collaboration in Cyber Defense
Jan 24, 12:00 AM
The Next Frontier of Runtime Assembly Attacks: Leveraging LLMs to Generate Phishing JavaScript in Real Time
Jan 22, 11:00 AM
DNS OverDoS: Are Private Endpoints Too Private?
Jan 20, 05:23 PM
Anatomy of an Attack: The Payroll Pirates and the Power of Social Engineering
Jan 17, 12:00 AM
Threat Brief: MongoDB Vulnerability (CVE-2025-14847)
Jan 13, 08:30 PM
Remote Code Execution With Modern AI/ML Formats and Libraries
Jan 13, 11:00 AM
Securing Vibe Coding Tools: Scaling Productivity Without Scaling Risk
Jan 08, 11:00 AM
VVS Discord Stealer Using Pyarmor for Obfuscation and Detection Evasion
Jan 02, 11:00 AM
Who Does Cybersecurity Need? You!
Dec 24, 12:00 AM
From Linear to Complex: An Upgrade in RansomHouse Encryption
Dec 17, 11:00 AM
Stay Secure: Why Cyber Hygiene Should Be Part of Your Personal Hygiene
Dec 17, 12:00 AM
Hamas-Affiliated Ashen Lepus Targets Middle Eastern Diplomatic Entities With New AshTag Malware Suite
Dec 11, 11:00 AM
01flip: Multi-Platform Ransomware Written in Rust
Dec 10, 11:00 AM
New Prompt Injection Attack Vectors Through MCP Sampling
Dec 05, 11:00 PM
Critical Vulnerabilities in React Server Components and Next.js
Dec 04, 08:30 PM
The Browser Defense Playbook: Stopping the Attacks That Start on Your Screen
Dec 03, 12:00 AM
The Golden Scale: ‘Tis the Season for Unwanted Gifts
Nov 26, 11:00 AM
The Dual-Use Dilemma of AI: Malicious LLMs
Nov 25, 11:00 AM

70 items under this folder.

Jan 30, 2026
Privileged File System Vulnerability Present in a SCADA System
Jan 29, 2026
Understanding the Russian Cyber Threat to the 2026 Winter Olympics
Jan 24, 2026
Happy 9th Anniversary, CTA: A Celebration of Collaboration in Cyber Defense
Jan 22, 2026
The Next Frontier of Runtime Assembly Attacks: Leveraging LLMs to Generate Phishing JavaScript in Real Time
Jan 20, 2026
DNS OverDoS: Are Private Endpoints Too Private?
Jan 17, 2026
Anatomy of an Attack: The Payroll Pirates and the Power of Social Engineering
Jan 13, 2026
Threat Brief: MongoDB Vulnerability (CVE-2025-14847)
Jan 13, 2026
Remote Code Execution With Modern AI/ML Formats and Libraries
Jan 08, 2026
Securing Vibe Coding Tools: Scaling Productivity Without Scaling Risk
Jan 02, 2026
VVS Discord Stealer Using Pyarmor for Obfuscation and Detection Evasion
Dec 24, 2025
Who Does Cybersecurity Need? You!
Dec 17, 2025
From Linear to Complex: An Upgrade in RansomHouse Encryption
Dec 17, 2025
Stay Secure: Why Cyber Hygiene Should Be Part of Your Personal Hygiene
Dec 11, 2025
Hamas-Affiliated Ashen Lepus Targets Middle Eastern Diplomatic Entities With New AshTag Malware Suite
Dec 10, 2025
01flip: Multi-Platform Ransomware Written in Rust
Dec 05, 2025
New Prompt Injection Attack Vectors Through MCP Sampling
Dec 04, 2025
Critical Vulnerabilities in React Server Components and Next.js
Dec 03, 2025
The Browser Defense Playbook: Stopping the Attacks That Start on Your Screen
Nov 26, 2025
The Golden Scale: 'Tis the Season for Unwanted Gifts
Nov 25, 2025
The Dual-Use Dilemma of AI: Malicious LLMs
Nov 19, 2025
Anatomy of an Akira Ransomware Attack: When a Fake CAPTCHA Led to 42 Days of Compromise
Nov 14, 2025
Digital Doppelgangers: Anatomy of Evolving Impersonation Campaigns Distributing Gh0st RAT
Nov 11, 2025
You Thought It Was Over? Authentication Coercion Keeps Evolving
Nov 07, 2025
LANDFALL: New Commercial-Grade Android Spyware in Exploit Chain Targeting Samsung Devices
Nov 05, 2025
Know Ourselves Before Knowing Our Enemies: Threat Intelligence at the Expense of Asset Management
Oct 31, 2025
When AI Agents Go Rogue: Agent Session Smuggling Attack in A2A Systems
Oct 29, 2025
Suspected Nation-State Threat Actor Uses New Airstalk Malware in a Supply Chain Attack
Oct 28, 2025
Bots, Bread and the Battle for the Web
Oct 27, 2025
Microsoft WSUS Remote Code Execution (CVE-2025-59287) Actively Exploited in the Wild
Oct 24, 2025
Cloud Discovery With AzureHound
Oct 23, 2025
The Smishing Deluge: China-Based Campaign Flooding Global Text Messages
Oct 22, 2025
Jingle Thief: Inside a Cloud-Based Gift Card Fraud Campaign
Oct 20, 2025
The Golden Scale: Notable Threat Updates and Looking Ahead
Oct 16, 2025
Threat Brief: Nation-State Actor Steals F5 Source Code and Undisclosed Vulnerabilities
Oct 15, 2025
PhantomVAI Loader Delivers a Range of Infostealers
Oct 14, 2025
Anatomy of an Attack: The BlackSuit Blitz at a Global Equipment Manufacturer
Oct 10, 2025
The Golden Scale: Bling Libra and the Evolving Extortion Economy
Oct 09, 2025
When AI Remembers Too Much – Persistent Behaviors in Agents’ Memory
Oct 08, 2025
The ClickFix Factory: First Exposure of IUAM ClickFix Generator
Oct 07, 2025
Responding to Cloud Incidents A Step-by-Step Guide from the 2025 Unit 42 Global Incident Response Report
Oct 01, 2025
TOTOLINK X6000R: Three New Vulnerabilities Uncovered
Sep 30, 2025
Phantom Taurus: A New Chinese Nexus APT and the Discovery of the NET-STAR Malware Suite
Sep 26, 2025
Threat Insights: Active Exploitation of Cisco ASA Zero Days
Sep 24, 2025
Bookworm to Stately Taurus Using the Unit 42 Attribution Framework
Sep 22, 2025
Operation Rewrite: Chinese-Speaking Threat Actors Deploy BadIIS in a Wide Scale SEO Poisoning Campaign
Sep 17, 2025
Shai-Hulud Worm Compromises npm Ecosystem in Supply Chain Attack
Sep 16, 2025
Myth Busting: Why Innocent Clicks Don't Exist in Cybersecurity
Sep 15, 2025
The Risks of Code Assistant LLMs: Harmful Content, Misuse and Deception
Sep 12, 2025
Trusted Connections, Hidden Risks: Token Management in the Third-Party Supply Chain
Sep 10, 2025
AdaptixC2: A New Open-Source Framework Leveraged in Real-World Attacks
Sep 09, 2025
Data Is the New Diamond: Latest Moves by Hackers and Defenders
Sep 03, 2025
Model Namespace Reuse: An AI Supply-Chain Attack Exploiting Model Name Trust
Sep 02, 2025
Why Threat Intelligence: A Conversation With Unit 42 Interns
Sep 02, 2025
Threat Brief: Salesloft Drift Integration Used To Compromise Salesforce Instances
Aug 26, 2025
Data Is the New Diamond: Heists in the Digital Age
Aug 25, 2025
Insights: Telling You What We Really Think
Aug 21, 2025
Your Connection, Their Cash: Threat Actors Misuse SDKs to Sell Your Bandwidth
Aug 20, 2025
Logit-Gap Steering: A New Frontier in Understanding and Probing LLM Safety
Aug 19, 2025
Fashionable Phishing Bait: GenAI on the Hook
Aug 14, 2025
A Mega Malware Analysis Tutorial Featuring Donut-Generated Shellcode
Aug 12, 2025
Muddled Libra’s Strike Teams: Amalgamated Evil
Aug 11, 2025
Keys to the Kingdom: Erlang/OTP SSH Vulnerability Analysis and Exploits Observed in the Wild
Aug 07, 2025
New Infection Chain and ConfuserEx-Based Obfuscation for DarkCloud Stealer
Aug 06, 2025
Muddled Libra: Why Are We So Obsessed With You?
Aug 06, 2025
When Good Accounts Go Bad: Exploiting Delegated Managed Service Accounts in Active Directory
Aug 05, 2025
Project AK47: Uncovering a Link to the SharePoint Vulnerability Attacks
Aug 01, 2025
Threat Actor Groups Tracked by Palo Alto Networks Unit 42 (Updated Aug. 1, 2025)
Jul 31, 2025
Introducing Unit 42’s Attribution Framework
Jul 30, 2025
2025 Unit 42 Global Incident Response Report: Social Engineering Edition
Jul 29, 2025
The Covert Operator's Playbook: Infiltration of Global Telecom Networks

Created By Quantlight © 2026

GitHub