Threat Research - Cybersecurity News Everyday

Search Post related with “Threat Research”

*Total Collection : 5285 Threat Research (auto update every day)

Last 100 Threat Research

Revolutionizing XDR with Gen AI: Next-Level Security Analysis for Advanced Threat ProtectionMay 16, 2025
Backdoor implant discovered on PyPI posing as debugging utilityMay 16, 2025
Scams and Malicious Domains Emerging from Breaking NewsMay 16, 2025
Emulating the Terrorizing VanHelsing RansomwareMay 15, 2025
APT PROFILE : Transparent Tribe aka APT36May 15, 2025
Technical Analysis of TransferLoaderMay 15, 2025
CVE-2025-32756 Exploited in the Wild, Affecting Multiple Fortinet ProductsMay 15, 2025
The Landscape of Malicious Open Source Packages: 2025 Mid‑Year Threat ReportMay 15, 2025
Introducing WizOS: Securing Wiz from the ground up with hardened, near-zero-CVE container base images.May 15, 2025
Excel(ent) Obfuscation: Regex Gone RogueMay 15, 2025
DarkCloud Stealer: Comprehensive Analysis of a New Attack Chain That Employs AutoItMay 14, 2025
APT GROUP123May 14, 2025
April 2025 Threat Trend Report on RansomwareMay 14, 2025
Post-Exploitation Activities Observed from the Samsung MagicINFO 9 Server FlawMay 14, 2025
Tales from the cloud trenches: The Attacker doth persist too much, methinksMay 14, 2025
Evolution of Tycoon 2FA Defense Evasion Mechanisms: Analysis and TimelineMay 14, 2025
Misbehaving Modalities: Detecting Tools, Not TechniquesMay 14, 2025
TA406 Pivots to the FrontMay 13, 2025
Earth Ammit Disrupts Drone Supply Chains Through Coordinated Multi-Wave Attacks in TaiwanMay 13, 2025
Same name, different hack: PyPI package targets Solana developersMay 13, 2025
ChineseGroupExploitingSAPVulnerabilityMay 13, 2025
Finding Malware: Unveiling LUMMAC.V2 with Google S… – Google Cloud CommunityMay 13, 2025
HuntingMaliciousDesktop_FilesMay 13, 2025
Marbled Dust Leverages Zero-Day in Output Messenger for Regional EspionageMay 13, 2025
Rounding Up the DNS Traces of RA World RansomwareMay 13, 2025
Analysis of the APT37 Attack Case Under the Guise of a South Korean National Security Strategy Think Tank (Operation Name: Toybox Story)May 12, 2025
Unveiling Swan Vector APT Targeting Taiwan and Japan with varied DLL ImplantsMay 12, 2025
April 2025 Trends Report on Phishing EmailsMay 12, 2025
Brief Disruptions, Bold Claims: The Tactical Reality Behind the India-Pakistan Hacktivist SurgeMay 12, 2025
North Korea Hacking Group Kimsuky Disguised NDA Document Malware Distribution – NDA.pdf.msc File Warning (2025.5.4)May 12, 2025
COLDRIVER_Using_LOSTKEYS_MalwareMay 11, 2025
Threat Brief: CVE-2025-31324May 10, 2025
TheWizards APT group uses SLAAC spoofing to perform adversary-in-the-middle attacksMay 10, 2025
Stealthy .NET Malware: Hiding Malicious Payloads as Bitmap ResourcesMay 10, 2025
Lumma Stealer, coming and goingMay 10, 2025
Lumma Infostealer Continues Its GitHub Social Engineering CampaignMay 9, 2025
PupkinStealer : A .NET-Based Info-StealerMay 9, 2025
Multilayered Email Attack: How a PDF Invoice and Geo-Fencing Led to RAT MalwareMay 9, 2025
Emulating the Infestive Termite RansomwareMay 9, 2025
The Future Has Arrived: Defining Preemptive Data SecurityMay 9, 2025
AhnLab Detection Information on BPFDoor Exploited in Recent Hacking Attacks and KISA Hash NoticeMay 9, 2025
Malicious npm Packages Use Telegram to Exfiltrate BullX CredentialsMay 9, 2025
Pure Crypter Malware Analysis: 99 Problems but Detection Ain’t OneMay 9, 2025
Tricked by trust: How OAuth and device code flows get abusedMay 9, 2025
Cyber criminals impersonate payroll, HR and benefits platforms to steal information and fundsMay 9, 2025
Finding Minhook in a sideloading attack – and Sweden tooMay 9, 2025
Unmasking the FreeDrain NetworkMay 9, 2025
Weaponizing Facebook Ads: Inside the Multi-Stage Malware Campaign Exploiting Cryptocurrency BrandsMay 9, 2025
FreeDrain Unmasked | Uncovering an Industrial-Scale Crypto Theft NetworkMay 9, 2025
Measuring the US-China AI GapMay 9, 2025
New Finance Scam Discovered Abusing Niche X/Twitter Advertising LoopholeMay 8, 2025
Backdooring the IDE: Malicious npm Packages Hijack Cursor Editor on macOSMay 8, 2025
RedisRaider: Weaponizing misconfigured Redis to mine cryptocurrency at scaleMay 8, 2025
New Noodlophile Stealer Distributes Via Fake AI Video Generation PlatformsMay 8, 2025
Industry InsightsAnomaly-based threat hunting: Darktrace’s approach in actionbyNathaniel JonesMay 8, 2025
Multiple vulnerabilities in SonicWall SMA 100 series (FIXED)May 8, 2025
Inferno Drainer Reloaded: Deep Dive into the Return of the Most Sophisticated Crypto DrainerMay 8, 2025
Iranian Cyber Actors Impersonate Model Agency in Suspected Espionage OperationMay 8, 2025
New MintsLoader Campaign Spreads Stealc Malware Through Compromised PEC MailboxesMay 7, 2025
Ransomware Attackers Leveraged Privilege Escalation Zero-dayMay 7, 2025
Nitrogen Ransomware Exposed: How ANY.RUN Helps Uncover Threats to Finance May 7, 2025
Distribution of IIS Malware Targeting Web Servers (Larva-25003)May 7, 2025
Malicious PyPI Package Targets Discord Developers with Remote Access TrojanMay 7, 2025
Agenda Ransomware Group Adds SmokeLoader and NETXLOADER to Their ArsenalMay 7, 2025
Telegram Tango: Dancing with a ScammerMay 7, 2025
SKT Telecommunications Hacking File Analysis of Smartadm Key PointsMay 7, 2025
Defending Against UNC3944: Cybercrime Hardening Guidance from the FrontlinesMay 7, 2025
Mamona: Technical Analysis of a New Ransomware StrainMay 7, 2025
Atomic Stealer Malware Disguised as Crack Program (macOS)May 7, 2025
Do Tigers Really Change Their Stripes?May 7, 2025
Uroboros Revisited: Tracing PatchGuard-Evasive Techniques Beyond SSDT HookingMay 7, 2025
Tempering Tax Season Troubles with DNS IntelMay 7, 2025
Bit ByBit – emulation of the DPRK’s largest cryptocurrency heistMay 7, 2025
Phishing Campaign Targeting SPID via Fake AgID DomainMay 7, 2025
Exposed APIs, Leaked Tokens: How a Semiconductor Giant Almost Got BreachedMay 6, 2025
CoGUI Phish Kit Targets Japan with Millions of MessagesMay 6, 2025
Lampion Is Back With ClickFix LuresMay 6, 2025
APT36-Style ClickFix Attack Spoofs Indian Ministry to Target Windows & LinuxMay 6, 2025
Kimsuky Malware Alert! USSC Research Center Impersonation Malware Discovered – Deceptive Attack Posing as Korea-Australia-Japan Cooperation Dialogue (2025.4.16)May 6, 2025
Before the Packages Arrive: How SVigil Protected 375K+ Shoppers From a Data Leak DisasterMay 6, 2025
North Korea Hacking Organization Konni Malicious Code Distribution Exploiting Fake Document for VAT Payment (National Tax Collection Act Enforcement Rules) (2025.4.28)May 5, 2025
Likely Chinese Threat Actor Uses Low Detection Linux Backdoor and NHAS Reverse SSHMay 4, 2025
Gunra Ransomware – A Brief AnalysisMay 3, 2025
macOS Vulnerabilities: A Year of Security Research at KandjiMay 3, 2025
NPM targeted by malware campaign mimicking familiar library namesMay 3, 2025
Venom Spider Uses Server-Side Polymorphism to Weave a Web Around Victims – Arctic WolfMay 3, 2025
Decrypting the Inner DNS Workings of EncryptHubMay 3, 2025
How a Leading Fintech Firm Was Exposed by Simple Security OversightsMay 3, 2025
Retail Under Fire: Inside the DragonForce Ransomware Attacks on Industry GiantsMay 3, 2025
I StealC You: Tracking the Rapid Changes To StealCMay 2, 2025
wget to Wipeout: Malicious Go Modules Fetch Destructive PayloadMay 2, 2025
Campaign TrailSocGholish: From loader and C2 activity to RansomHub deploymentbyChristina KrezaMay 2, 2025
Inside the Security Gaps of a Digital Lending Firm—And What You Can LearnMay 2, 2025
What’s New In The Cado Platform Q4 24/25May 2, 2025
TerraStealerV2 and TerraLogger: Golden Chickens’ New Malware Families DiscoveredMay 2, 2025
Level-up Splunk with Silent Push IOFA™ data May 1, 2025
Using Trusted Protocols Against You: Gmail as a C2 MechanismMay 1, 2025
Top 10 Malware Q1 2025May 1, 2025
Exploring the State of AI in Cyber Security: Past, Present, and FutureMay 1, 2025
Advisory: Pahalgam Attack themed decoys used by APT36 to target the Indian GovernmentMay 1, 2025

>> Access All Threat Research

Reference for Threat Research

This Threat Research category section will FILTER and FETCH the POST (related with Analysis Report only) from the following sites:

For the sites below, automatic FETCH cannot be performed
(i need to monitor it manual, will be delay 3-7 days)

Bellow are other reference, but for some reason i’m not fetching it automatically
(i need to review the article manually, will be delay 3-5 days)

cleafy.com/labs (update 1-2 months)
guidepointsecurity.com/blog/ > category: threat advisory
research.openanalysis.net
blog.phylum.io/tag/research/
shadowstackre.com/analysis/
mssplab.github.io
farghlymal.github.io
asec.ahnlab.com/ko/
blog.bushidotoken.net
kroll.com/en/insights/publications/cyber
Sentinelone.com
blog.lumen.com

Update

December, 2024: securonixblog – Fixed (xpath error)
December, 2024: huntress – Fixed (xpath error)
December, 2024: nccgroup – Failed (Incapsula)
December, 2024: Mandiant – Removed (now part of Google Cloud)
December, 2024: antiy.cn – Failed (curl or xpath error)
December, 2024: sonicwall.com – Failed (curl error)
January, 2025: team-cymru.com (RSS Feed Removed)

Update January, 2025

“Due to copyright reasons, starting January 2025, this site will no longer display the full content of sourced articles. Only Summaries, Key Points, MITRE Tactics for Threat Research, and selected IoCs will be provided. To read the full article, please click on the ‘source’ link to view it on the original website.”