◉ Threat Intelligence
Apr 04, 2026
MuddyWater Targets MENA Organizations with GhostFetch, CHAR, and HTTP_VIP - The Hacker News
MuddyWater Targets MENA Organizations with GhostFetch, CHAR, and HTTP_VIP The Hacker News
◉ Threat Intelligence
Apr 04, 2026
APT28 Uses Microsoft Office CVE-2026-21509 in Espionage-Focused Malware Attacks - The Hacker News
APT28 Uses Microsoft Office CVE-2026-21509 in Espionage-Focused Malware Attacks The Hacker News
◉ Threat Intelligence
Apr 04, 2026
When an Attacker Meets a Group of Agents: Navigating Amazon Bedrock's Multi-Agent Applications
Unit 42 research on multi-agent AI systems on Amazon Bedrock reveals new attack surfaces and prompt injection risks. Learn how to secure your AI applications. The post When an Attacker Meets a Group o…
◉ Threat Intelligence
Apr 03, 2026
TeamPCP Supply Chain Campaign: Update 006 - CERT-EU Confirms European Commission Cloud Breach, Sportradar Details Emerge, and Mandiant Quantifies Campaign at 1,000+ SaaS Environments, (Fri, Apr 3rd)
This is the sixth update to the TeamPCP supply chain campaign threat intelligence report,&#;x26;#;xc2;&#;x26;#;xa0;"When the Security Scanner Became the Weapon"&#;x26;#;xc2;&#;x26;#;xa0;(v3.0, March 2…
◉ Threat Intelligence
Apr 03, 2026
New "Cavalry Werewolf" Attack Hits Russian Agencies with FoalShell and StallionRAT - The Hacker News
New "Cavalry Werewolf" Attack Hits Russian Agencies with FoalShell and StallionRAT The Hacker News
◉ Threat Intelligence
Apr 03, 2026
ODNI reforms to disband cyber threat intel unit - Federal News Network
ODNI reforms to disband cyber threat intel unit Federal News Network
◉ Threat Intelligence
Apr 03, 2026
World’s first large-scale cyberattack executed by AI - Information Age | ACS
World’s first large-scale cyberattack executed by AI Information Age | ACS
◉ Threat Intelligence
Apr 03, 2026
HONG KONG CYBERSECURITY THREAT INTELLIGENCE REPORT - cyfirma
HONG KONG CYBERSECURITY THREAT INTELLIGENCE REPORT cyfirma
◉ Threat Intelligence
Apr 03, 2026
ISC Stormcast For Friday, April 3rd, 2026 https://isc.sans.edu/podcastdetail/9878, (Fri, Apr 3rd)
◉ Threat Intelligence
Apr 03, 2026
Russian APT28 Deploys “NotDoor” Outlook Backdoor Against Companies in NATO Countries - The Hacker News
Russian APT28 Deploys “NotDoor” Outlook Backdoor Against Companies in NATO Countries The Hacker News
◉ Threat Intelligence
Apr 03, 2026
DoNot APT Expands Operations, Targets European Foreign Ministries with LoptikMod Malware - The Hacker News
DoNot APT Expands Operations, Targets European Foreign Ministries with LoptikMod Malware The Hacker News
◉ Threat Intelligence
Apr 03, 2026
China-Linked UAT-8099 Targets IIS Servers in Asia with BadIIS SEO Malware - The Hacker News
China-Linked UAT-8099 Targets IIS Servers in Asia with BadIIS SEO Malware The Hacker News
◉ Threat Intelligence
Apr 02, 2026
Cookie-controlled PHP webshells: A stealthy tradecraft in Linux hosting environments
Cookie-gated PHP webshells use obfuscation, php-fpm execution, and cron-based persistence to evade detection in Linux hosting environments. This post examines how this tradecraft conceals execution be…
◉ Threat Intelligence
Apr 02, 2026
Threat actor abuse of AI accelerates from tool to cyberattack surface
Generative AI is upgrading cyberattacks, from 450% higher phishing click‑through rates to industrialized MFA bypass. The post Threat actor abuse of AI accelerates from tool to cyberattack surface appe…
◉ Threat Intelligence
Apr 02, 2026
People's Republic of China State-Sponsored Cyber Actor Living off the Land to Evade Detection - CISA (.gov)
People's Republic of China State-Sponsored Cyber Actor Living off the Land to Evade Detection CISA (.gov)
◉ Threat Intelligence
Apr 02, 2026
Resecurity and AfricaCERT Forge Strategic Partnership to Advance Cybersecurity Across the African Continent - Business Wire
Resecurity and AfricaCERT Forge Strategic Partnership to Advance Cybersecurity Across the African Continent Business Wire
◉ Threat Intelligence
Apr 02, 2026
Iranian Infy APT Resurfaces with New Malware Activity After Years of Silence - The Hacker News
Iranian Infy APT Resurfaces with New Malware Activity After Years of Silence The Hacker News
◉ Threat Intelligence
Apr 02, 2026
vSphere and BRICKSTORM Malware: A Defender's Guide
Written by: Stuart Carrera Introduction Building on recent BRICKSTORM research from Google Threat Intelligence Group (GTIG), this post explores the evolving threats facing virtualized environments. Th…
◉ Threat Intelligence
Apr 02, 2026
Latin America and the Caribbean Cybercrime Landscape
This report provides an overview of trends and developments in the cybercriminal ecosystem of Latin America and the Caribbean (LAC) in 2025.
◉ Threat Intelligence
Apr 02, 2026
Attempts to Exploit Exposed "Vite" Installs (CVE-2025-30208), (Thu, Apr 2nd)
From its GitHub repo: "Vite (French word for "quick", pronounced /vi?t/, like "veet") is a new breed of frontend build tooling that significantly improves the frontend development experience" [https:/…
◉ Threat Intelligence
Apr 02, 2026
CloudSEK warns Muddy Water APT using Rust implants in spearphishing on Middle East critical infrastructure - Industrial Cyber
CloudSEK warns Muddy Water APT using Rust implants in spearphishing on Middle East critical infrastructure Industrial Cyber
◉ Threat Intelligence
Apr 02, 2026
Falcon for IT Supports Windows Secure Boot Certificate Lifecycle Management
◉ Threat Intelligence
Apr 02, 2026
STARDUST CHOLLIMA Likely Compromises Axios npm Package
◉ Threat Intelligence
Apr 02, 2026
ISC Stormcast For Thursday, April 2nd, 2026 https://isc.sans.edu/podcastdetail/9876, (Thu, Apr 2nd)