Threat Brief: Mitigating Large-Scale Credential Attacks Unit 42 is aware of a large-scale password spraying and credential theft campaign (... 2026-6-20 02:5:33 | 阅读: 1 | 收藏 | Unit 42 - unit42.paloaltonetworks.com alto palo spraying sophos

Pickle in the Middle – Hijacking Vertex AI Model Uploads for Cross-Tenant RCE Executive SummaryWe discovered a vulnerability in the Google Cloud Vertex AI softw... 2026-6-16 10:0:29 | 阅读: 20 | 收藏 | Unit 42 - unit42.paloaltonetworks.com cloud victim attacker vertex staging

Inside the Modern SOC: The 72-Minute Race The Speed Gap: Where Strategy Meets RealityThis marks the beginning of our series,... 2026-6-15 23:0:19 | 阅读: 14 | 收藏 | Unit 42 - unit42.paloaltonetworks.com attackers security workflows gap

Tracing Digital Intent: New MacOS Tahoe 26 Artifact Discovered Surfacing a New ArtifactForensic examiners are constantly hunting for data that re... 2026-6-12 22:0:14 | 阅读: 18 | 收藏 | Unit 42 - unit42.paloaltonetworks.com artifact biome menuitem segb trash

Trust No Skill: Integrity Verification for AI Agent Supply Chains Executive SummaryAI agents now extend their capabilities by installing third-party... 2026-6-11 10:0:24 | 阅读: 26 | 收藏 | Unit 42 - unit42.paloaltonetworks.com skill biv adversarial llm chains

Blinding the Watchmen: Abusing Cloud Logging Services for Defense Evasion and Visibility Executive SummaryCloud logging services provide comprehensive visibility into acti... 2026-6-9 22:0:21 | 阅读: 21 | 收藏 | Unit 42 - unit42.paloaltonetworks.com cloud attacker cloudtrail security trail

When “Hi, This Is IT” Comes Through Microsoft Teams "Hi, IT Department Here!"It's Friday afternoon. The week has been busy, and everyo... 2026-6-8 23:0:45 | 阅读: 23 | 收藏 | Unit 42 - unit42.paloaltonetworks.com microsoft phishing chats unmanaged

Threat Brief: Active Exploitation of PAN-OS CVE-2026-0257 Palo Alto Networks Unit 42 has observed active exploitation of PAN-OS vulnerability... 2026-6-5 14:5:42 | 阅读: 25 | 收藏 | Unit 42 - unit42.paloaltonetworks.com palo 2026 alto security

Operation FlutterBridge: macOS Malvertising Campaign Spreads New FlutterShell Backdoor Executive SummaryWe are tracking an increasingly widespread malvertising campaign... 2026-6-2 10:0:31 | 阅读: 46 | 收藏 | Unit 42 - unit42.paloaltonetworks.com malicious attackers brain

2026 World Cup: Discussing The World’s Biggest Game’s Attack Surface The 2026 FIFA World Cup will be the largest sporting event ever staged. Across 39 d... 2026-5-28 10:0:53 | 阅读: 46 | 收藏 | Unit 42 - unit42.paloaltonetworks.com tournament 2026 iran nexus fifa

Out of the Crypt: The Evolving Cyber Extortion Economy Extortion Activity No Longer Requires Encryption for PaymentThis blog dives into t... 2026-5-27 22:0:46 | 阅读: 35 | 收藏 | Unit 42 - unit42.paloaltonetworks.com extortion cri 2026 tgr frontier

Tracking Iranian APT Screening Serpens’ 2026 Espionage Campaigns Executive SummaryUnit 42 researchers have observed evidence of cyberattacks by the... 2026-5-22 13:0:42 | 阅读: 27 | 收藏 | Unit 42 - unit42.paloaltonetworks.com payload 2026 miniupdate malicious

Paved With Intent: ROADtools and Nation-State Tactics in the Cloud Executive SummaryROADtools is a publicly available toolkit for offensive and defen... 2026-5-22 10:0:24 | 阅读: 24 | 收藏 | Unit 42 - unit42.paloaltonetworks.com microsoft roadtools roadtx entra attackers

Tracking TamperedChef Clusters via Certificate and Code Reuse Executive SummaryThis article documents novel activity clusters that have signific... 2026-5-20 10:0:46 | 阅读: 31 | 收藏 | Unit 42 - unit42.paloaltonetworks.com ltd unk 1090 cri

Gremlin Stealer's Evolved Tactics: Hiding in Plain Sight With Resource Files Executive SummaryThis article examines new obfuscation techniques the Gremlin stea... 2026-5-15 10:0:52 | 阅读: 372 | 收藏 | Unit 42 - unit42.paloaltonetworks.com gremlin stealer analysis cortex clipboard

Inside AD CS Escalation: Unpacking Advanced Misuse Techniques and Tools Executive SummaryActive Directory Certificate Services (AD CS) is a foundational c... 2026-5-11 22:0:43 | 阅读: 34 | 收藏 | Unit 42 - unit42.paloaltonetworks.com cortex bioc shadow privileged

Threat Brief: Exploitation of PAN-OS Captive Portal Zero-Day for Unauthenticated Remote Code Execution Executive SummaryOn May 6, 2026, Palo Alto Networks released a security advisory f... 2026-5-7 00:0:53 | 阅读: 93 | 收藏 | Unit 42 - unit42.paloaltonetworks.com 2026 alto palo 0300

Copy Fail: What You Need to Know About the Most Severe Linux Threat in Years Executive SummaryOn April 29, 2026, researchers publicly disclosed a highly reliab... 2026-5-5 23:0:33 | 阅读: 36 | 收藏 | Unit 42 - unit42.paloaltonetworks.com 2026 cortex attacker 31431 aead

Essential Data Sources for Detection Beyond the Endpoint The 2026 Unit 42 Global Incident Response Report delivers a sharp wake-up call: Thr... 2026-5-1 23:0:13 | 阅读: 31 | 收藏 | Unit 42 - unit42.paloaltonetworks.com cloud security attackers zones palo

That AI Extension Helping You Write Emails? It’s Reading Them First Executive SummaryWe found 18 AI browser extensions marketed as productivity tools... 2026-4-30 22:0:57 | 阅读: 41 | 收藏 | Unit 42 - unit42.paloaltonetworks.com chrome proxy network remote genai