Right arrow
Right arrow
category iconHigh Profile Threats

Critical Vulnerabilities in Ivanti EPMM Exploited
Pictorial repressentation of QR code attacks. A smartphone displays a glowing red warning symbol resembling an envelope. The background features an out-of-focus high-tech circuit board with various blue and red lights.
category iconThreat Research

Phishing on the Edge of the Web and Mobile Using QR Codes
Pictorial representation of Notepad++ supply chain compromise. A digital rendering of Earth from space, focusing on North and South America. The continents are illuminated in blue, with red lines and dots indicating data connections across various locations. Dark background highlights the vibrant network representation.
category iconHigh Profile Threats

Nation-State Actors Exploit Notepad++ Supply Chain
Explore all the articles at the push of a button
View all articles

Access the latest threat research

View all research Right Arrow
Close-up of a black woman with glasses examining colorful computer code on a screen. The scene is illuminated by various lights, creating a focused and analytical atmosphere.
category iconCloud Cybersecurity Research

Novel Technique to Detect Cloud Threat Actor Operations
Read now
Pictorial representation of CVE-2025-0921. Digital illustration of a map of North America with interconnected glowing lines and dots symbolizing network connections across the continent.
category iconVulnerabilities

Privileged File System Vulnerability Present in a SCADA System
Read now
Pictorial representation of runtime assembly attacks. Digital artwork of a glowing, futuristic shield disintegrating into small particles, set against a dark blue, bokeh-effect background.
category iconMalware

The Next Frontier of Runtime Assembly Attacks: Leveraging LLMs to Generate Phishing JavaScript in Real Time
Read now

Understand high profile cyberthreats and vulnerabilities

View high profile threats Right Arrow
Pictorial representation of MongoBleed, CVE-2025-14847. Digital image featuring a glowing padlock icon superimposed on a background of streaming blue binary code, symbolizing cybersecurity.
category iconVulnerabilities

Threat Brief: MongoDB Vulnerability (CVE-2025-14847)
Read now
Pictorial representation of CVE-2025-55182 (React) and CVE-2025-66478 (Next.js). Close-up of a digital display on electronic equipment with illuminated text reading "SYSTEM HACKED" in red, set against a blurred background of blue and red lights.
category iconVulnerabilities

Exploitation of Critical Vulnerability in React Server Components (Updated December 12)
Read now
Pictorial representation of the npm packages supply chain attack. A blurred image focusing on a person typing on a laptop with lines of code visible on the screen, illuminated in blue and red lights, suggestive of intense coding or cyber activities.
category iconMalware

"Shai-Hulud" Worm Compromises npm Ecosystem in Supply Chain Attack (Updated November 26)
Read now
Pictorial representation of CVE-2025-59287. Digital image of a glowing padlock symbol representing cybersecurity on a network grid with blue and orange lights.
category iconVulnerabilities

Microsoft WSUS Remote Code Execution (CVE-2025-59287) Actively Exploited in the Wild (Updated November 3)
Read now
Pictorial representation of F5 data theft incident. Digital illustration of a 3D globe showing network connections and data flow across continents, highlighted with red lines and glowing points, representing global communication and connectivity.
category iconVulnerabilities

Threat Brief: Nation-State Actor Steals F5 Source Code and Undisclosed Vulnerabilities
Read now
Pictorial representation of Salesforce compromised by attackers. Colorful abstract digital artwork featuring a gradient of red to blue hues with a raised, spike-like texture pattern resembling a city skyline.
category iconVulnerabilities

Threat Brief: Salesloft Drift Integration Used To Compromise Salesforce Instances
Read now

Beyond AI. Beyond automation. Beyond the adversary.

Save Your Spot Right Arrow

Symphony 2026: The Agentic SOC Summit

The game has changed. As adversaries move 100x faster with AI, traditional SOCs are hitting a wall. Winning at this velocity requires a total shift in strategy.

Symphony 2026 is your blueprint to outpace the machine. Join Unit 42® researchers, elite CISOs and the visionaries behind Cortex® to experience the evolution from human-led defense to the agentic SOC of the future.

  • Anticipate the impossible: Weaponize Unit 42 frontline research to see the moves others miss.
  • Scale that’s undeniable: Deploy an autonomous workforce to secure everything from code to cloud to SOC.
  • Architect the unstoppable: Learn how world-class security leaders transformed their operations for unprecedented speed and scale.
Save Your Spot
Symphony 2026 advertisement.

Insights – Explore fresh perspectives from Unit 42

Insights Right Arrow
Ria Bhatia

Read more from Ria Bhatia
Justin Moore

Threat Intelligence, Cyberthreats

Read more from Justin Moore
Kathi Whitbey

Cyber Threat Alliance

Read more from Kathi Whitbey
Randy Stone

Social Engineering, Ransomware

Read more from Randy Stone
Michael Spisak

Read more from Michael Spisak
Kate Middagh

AI Vibe Coding

Read more from Kate Middagh
Samantha Stallings

Read more from Samantha Stallings
Unit 42

Read more from Unit 42
Recent Articles

Insights – Explore fresh perspectives from Unit 42

Pictorial representation of a group of individuals discussing an idea with a whiteboard.
category iconRia Bhatia

Why Smart People Fall For Phishing Attacks
Read now
Pictorial representation of threat groups from Russia. The silhouette of a bear and the Ursa constellation inside an orange abstract planet. Abstract, stylized cosmic setting with vibrant blue and purple shapes, representing space and distant planetary bodies.
category iconJustin Moore

Understanding the Russian Cyberthreat to the 2026 Winter Olympics
Read now
Pictorial representation of orange, wave-like lines illuminated against a navy background.
category iconKathi Whitbey

Happy 9th Anniversary, CTA: A Celebration of Collaboration in Cyber Defense
Read now
Pictorial representation of a man viewing multiple computer monitors displaying lines of code. The screens emit a blue glow against a textured pink background.
category iconRandy Stone

Anatomy of an Attack: The Payroll Pirates and the Power of Social Engineering
Read now
Pictorial representation of a laptop with various charts and graphs illuminated on the screen.
category iconKate Middagh

Securing Vibe Coding Tools: Scaling Productivity Without Scaling Risk
Read now
Pictorial representation of a woman analyzing a bright, white characters on a clear screen.
category iconSamantha Stallings

Who Does Cybersecurity Need? You!
Read now

Frontline insights defining the next era of cyber risk.

View All Right Arrow
Report

Explore the findings.

The 2026 Unit 42 Global Incident Response Report confirms it: The adversary isn’t just smarter; they are faster.

Your new threat reality? AI allows threat actors to move from initial access to exfiltration in minutes, effortlessly bypassing traditional defenses.

In the report, you will learn how:

  • Speed now defines risk: Attacks are 4X faster, with data exfiltration in <1 hour in some cases.
  • Identity accelerates impact: 65% of initial access is driven by identity-based techniques allowing unauthorized access, privilege escalation and lateral movement.
  • Sprawl expands exposure: 87% of attacks unfolded across multiple attack surfaces, making it harder to correlate attack signals.
Get the report
Laptop screen showing Global Incident Response Report by Unit 42.
Pictorial representation of social engineering. Digital illustration of four human profiles connected by glowing neural network lines against a dark background, symbolizing connectivity and technology.
category iconCybercrime

2025 Unit 42 Global Incident Response Report: Social Engineering Edition
Read now
Pictorial representation of the ransomware landscape. Digital artwork of a disintegrating U.S. dollar bill with pixelated effects on a cyber-inspired background.
category iconRansomware

Extortion and Ransomware Trends January-March 2025
Read now
Pictorial representation of securing GenAI. A glowing cube labeled "AI" centrally positioned on a circuit board with intricate electronic connections and blue lighting.
category iconVulnerabilities

How Prompt Attacks Exploit GenAI and How to Fight Back
Read now
A pictorial representation of AI threats. Looking over the shoulder of a man in the cockpit of a vessel in space, the window looks out on an Earth-like planet.
category iconLearning Hub

Unit 42 Looks Toward the Threat Frontier: Preparing for Emerging AI Risks
Read now

Follow the activities of threat actor groups tracked by Unit 42

All threat actor posts Right Arrow
Pictorial representation of Muddled Libra, aka Scattered Spider. A vibrant illustration of the Libra zodiac sign, featuring a stylized balance scale overlaid with a prominent Libra symbol. The background is a starry night sky with shades of purple and blue, suggesting a cosmic theme.
category iconCybercrime

A Peek Into Muddled Libra’s Operational Playbook
Read now
Pictorial representation of the shadow campaigns. Digital graphic showing a networked globe with various data points and connectivity lines, symbolizing global digital communication and information technology.
category iconNation-State Cyberattacks

The Shadow Campaigns: Uncovering Global Espionage
Read now
Pictorial representation of RaaS RansomHouse. Digital representation of cybersecurity concept with a padlock superimposed over computer circuit boards, symbolizing data protection and encryption technologies.
category iconRansomware

From Linear to Complex: An Upgrade in RansomHouse Encryption
Read now
Pictorial representation of APT Ashen Lepus. The silhouette of a hare and the Lepus constellation inside an orange abstract planet. Abstract, stylized cosmic setting with vibrant blue and purple shapes, representing space and distant planetary bodies.
category iconMalware

Hamas-Affiliated Ashen Lepus Targets Middle Eastern Diplomatic Entities With New AshTag Malware Suite
Read now
Pictorial illustration of Bling Libra on a purple, starry background with orange highlights.
Hospitality Hacks and Retail Reality Checks

The Golden Scale: Bling Libra and the Evolving Extortion Economy
Read now
Pictorial representation of APT Phantom Taurus. The silhouette of a bull facing the reviewer and the Taurus constellation inside an orange abstract planet. Abstract, stylized cosmic setting with vibrant blue and purple shapes, representing space and distant planetary bodies.
category iconMalware

Phantom Taurus: A New Chinese Nexus APT and the Discovery of the NET-STAR Malware Suite
Read now

Get the latest news, invites to events, and threat alerts

Default Heading

Read the article Right Arrow