Visualização normal

Antes de ontemStream principal

Threat Brief: Exploitation of PAN-OS Captive Portal Zero-Day for Unauthenticated Remote Code Execution

✇Unit 42
Por:Justin Moore and Unit 42
6 de Maio de 2026, 21:00

Unit 42 details CVE-2026-0300, a buffer overflow vulnerability in the PAN-OS User-ID Authentication Portal. Read now for details.

The post Threat Brief: Exploitation of PAN-OS Captive Portal Zero-Day for Unauthenticated Remote Code Execution appeared first on Unit 42.

Copy Fail: What You Need to Know About the Most Severe Linux Threat in Years

✇Unit 42
Por:Justin Moore
5 de Maio de 2026, 20:00

Copy Fail (CVE-2026-31431) is a critical Linux kernel LPE that allows stealthy root access. This flaw impacts millions of systems. Read our analysis.

The post Copy Fail: What You Need to Know About the Most Severe Linux Threat in Years appeared first on Unit 42.

Threat Brief: Recruiting Scheme Impersonating Palo Alto Networks Talent Acquisition Team

✇Unit 42
Por:Justin Moore
24 de Março de 2026, 19:00

Unit 42 identifies a recruitment phishing campaign targeting senior professionals via impersonation and fraudulent resume fees.

The post Threat Brief: Recruiting Scheme Impersonating Palo Alto Networks Talent Acquisition Team appeared first on Unit 42.

Iranian Cyber Threat Evolution: From MBR Wipers to Identity Weaponization

✇Unit 42
Por:Justin Moore
16 de Março de 2026, 16:15

The evolution of Iranian cyber operations in broad context: from custom wiper malware to misuse of legitimate admin tools and more.

The post Iranian Cyber Threat Evolution: From MBR Wipers to Identity Weaponization appeared first on Unit 42.

VShell and SparkRAT Observed in Exploitation of BeyondTrust Critical Vulnerability (CVE-2026-1731)

✇Unit 42
Por:Justin Moore
19 de Fevereiro de 2026, 20:00

CVE-2026-1731 is an RCE vulnerability in identity platform BeyondTrust. This flaw allows attackers control of systems without login credentials.

The post VShell and SparkRAT Observed in Exploitation of BeyondTrust Critical Vulnerability (CVE-2026-1731) appeared first on Unit 42.

Critical Vulnerabilities in Ivanti EPMM Exploited

✇Unit 42
Por:Justin Moore
17 de Fevereiro de 2026, 17:35

We discuss widespread exploitation of Ivanti EPMM zero-day vulns CVE-2026-1281 and CVE-2026-1340. Attackers are deploying web shells and backdoors.

The post Critical Vulnerabilities in Ivanti EPMM Exploited appeared first on Unit 42.

Nation-State Actors Exploit Notepad++ Supply Chain

✇Unit 42
Por:Justin Moore
11 de Fevereiro de 2026, 20:00

Unit 42 reveals new infrastructure associated with the Notepad++ attack. This expands understanding of threat actor operations and malware delivery.

The post Nation-State Actors Exploit Notepad++ Supply Chain appeared first on Unit 42.

Understanding the Russian Cyberthreat to the 2026 Winter Olympics

✇Unit 42
Por:Justin Moore
29 de Janeiro de 2026, 18:30

Russia's current isolation from the Olympics may lead to increased cyberthreats targeting the 2026 Winter Games. We discuss the potential threat picture.

The post Understanding the Russian Cyberthreat to the 2026 Winter Olympics appeared first on Unit 42.

Threat Brief: MongoDB Vulnerability (CVE-2025-14847)

✇Unit 42
Por:Justin Moore
13 de Janeiro de 2026, 17:30

Database platform MongoDB disclosed CVE-2025-14847, called MongoBleed. This is an unauthenticated memory disclosure vulnerability with a CVSS score of 8.7.

The post Threat Brief: MongoDB Vulnerability (CVE-2025-14847) appeared first on Unit 42.

❌
❌