Back to Blog

Threat Hunting & Intel

26 posts
DAEMON Tools supply-chain attack turns trusted installers into a malware delivery path
Threat Hunting & Intel
Supply Chain
Malware

DAEMON Tools supply-chain attack turns trusted installers into a malware delivery path

DAEMON Tools supply-chain attack turns trusted installers into a malware delivery path The most important part of the DAEMON Tools incident is not that malware...

May 6, 2026
5 min read
Lucas Oliveira
CVE-2026-41940 turns exposed cPanel and WHM servers into control-plane takeover targets
Threat Hunting & Intel
CVE
Authentication Bypass

CVE-2026-41940 turns exposed cPanel and WHM servers into control-plane takeover targets

CVE-2026-41940 turns exposed cPanel and WHM servers into control-plane takeover targets CVE-2026-41940 is a critical authentication bypass in cPanel and WHM, an...

April 30, 2026
5 min read
Lucas Oliveira
Firestarter leaves patched Cisco firewalls at continued risk
Threat Hunting & Intel
Incident
Threat Intel

Firestarter leaves patched Cisco firewalls at continued risk

Firestarter leaves patched Cisco firewalls at continued risk A newly detailed persistence mechanism called Firestarter changes the defender story around last ye...

April 26, 2026
5 min read
Lucas Oliveira
AgingFly campaign hits Ukrainian government and hospital networks
Threat Hunting & Intel
Incident
Threat Intel

AgingFly campaign hits Ukrainian government and hospital networks

AgingFly campaign hits Ukrainian government and hospital networks A newly reported campaign centered on the AgingFly backdoor is a reminder that targeted intrus...

April 16, 2026
5 min read
Lucas Oliveira
CPUID breach turned CPU-Z and HWMonitor into a malware delivery path
Threat Hunting & Intel
Incident
Threat Intelligence

CPUID breach turned CPU-Z and HWMonitor into a malware delivery path

CPUID breach turned CPU-Z and HWMonitor into a malware delivery path Executive summary A compromise of the CPUID website briefly turned trusted download links f...

April 13, 2026
5 min read
Lucas Oliveira
Iranian PLC Attacks Disrupt U.S. Critical Infrastructure
Threat Hunting & Intel
Incident
Threat Intel

Iranian PLC Attacks Disrupt U.S. Critical Infrastructure

Iranian PLC Attacks Disrupt U.S. Critical Infrastructure Executive Summary Iranian-affiliated [advanced persistent threat](https://invaders.ie/resources/glossar...

April 9, 2026
7 min read
Lucas Oliveira
AsyncRAT SEO Poisoning Campaign Targets Software Downloads
Threat Hunting & Intel

AsyncRAT SEO Poisoning Campaign Targets Software Downloads

AsyncRAT: SEO Poisoning Hits Software Downloads | 2026 Executive Summary In March 2026, NCC Group and FOX-IT disclosed that an unknown threat actor had been run...

March 23, 2026
8 min read
Lucas Oliveira
ClayRat Android spyware collapse after arrest in Russia
Threat Hunting & Intel

ClayRat Android spyware collapse after arrest in Russia

ClayRat: Android spyware operation collapses after arrest | 2026 Executive Summary ClayRat is an Android spyware operation that targeted users in Russia and app...

March 23, 2026
7 min read
Lucas Oliveira
Namibia Airports Company breach claim raises admin-access risk
Threat Hunting & Intel
Incident
Threat Intel

Namibia Airports Company breach claim raises admin-access risk

Namibia Airports Company breach claim raises admin-access risk | 2026 Executive Summary Namibia Airports Company (NAC) disclosed that it detected a cybersecurit...

March 21, 2026
6 min read
Lucas Oliveira
GlassWorm Shifts to Transitive Open VSX Dependencies in Developer Supply-Chain Push
Threat Hunting & Intel
Incident
Threat Intel

GlassWorm Shifts to Transitive Open VSX Dependencies in Developer Supply-Chain Push

GlassWorm Shifts to Transitive Open VSX Dependencies in Developer Supply-Chain Push GlassWorm is no longer just a story about obviously malicious extensions. Th...

March 21, 2026
5 min read
Lucas Oliveira
Cline CLI 2.3.0 supply chain attack silently installed OpenClaw on developer systems
Threat Hunting & Intel
Incident
Supply Chain Security

Cline CLI 2.3.0 supply chain attack silently installed OpenClaw on developer systems

Cline CLI 2.3.0 supply chain attack silently installed OpenClaw on developer systems Executive summary The Cline CLI supply chain incident is a practical remind...

March 19, 2026
5 min read
Lucas Oliveira
FBI seizes Handala sites after destructive Stryker hack
Threat Hunting & Intel
Incident
Threat Intel

FBI seizes Handala sites after destructive Stryker hack

FBI seizes Handala sites after destructive Stryker hack | 2026 Executive Summary The FBI and U.S. Department of Justice have seized two websites linked to Handa...

March 19, 2026
6 min read
Lucas Oliveira

Categories
14

All Posts
vulnerability
36
Threat Hunting & Intel
26
Cybercrime
6
Cloud & Application Security
5
supply chain attack
4