Right arrow
Right arrow
Pictorial representation of vulnerabilities like CVE-2025-0282, CVE-2025-0283. Digital representation of a global network with interconnected lines and nodes over a map, highlighting global connectivity and data exchange.
category iconHigh Profile Threats

Threat Brief: CVE-2025-0282 and CVE-2025-0283 (Updated Jan. 17)
Pictorial representation of graph neural networks. Digital representation of a human eye with binary code superimposed over it, emphasizing concepts of cybersecurity and digital surveillance.
category iconThreat Research

One Step Ahead in Cyber Hide-and-Seek: Automating Malicious Infrastructure Discovery With Graph Neural Networks
A pictorial representation of a jailbreaking technique. Abstract digital tunnel with glowing blue lights and intricate patterns, representing data or technology.
category iconThreat Research

Bad Likert Judge: A Novel Multi-Turn Technique to Jailbreak LLMs by Misusing Their Evaluation Capability

Access the latest threat research

View all research Right Arrow
Pictorial representation of using LLMs to obfuscate malicious JavaScript detection. A man wearing glasses, looking intently at a screen with reflections visible in the glasses of computer code.
category iconMalware

Now You See Me, Now You Don’t: Using LLMs to Obfuscate Malicious JavaScript
Read now
Pictorial representation of a European phishing campaign. A digital artwork depicting a glowing, futuristic shield disintegrating into small fragments against a shimmering blue background.
category iconBusiness Email Compromise

Effective Phishing Campaign Targeting European Companies and Organizations
Read now
Pictorial representation of attackers leveraging Active Directory or LDAP. Close-up view of a server rack panel with illuminated lights and a digital display reading 'SYSTEM HACKED'.
category iconMalware

LDAP Enumeration: Unveiling the Double-Edged Sword of Active Directory
Read now

Experience the ultimate cybersecurity transformation event.

Register Now Right Arrow

Symphony: The Ultimate Cybersecurity Transformation Event of 2025

This 1-hour virtual summit is your VIP pass to the future of security innovation, packed with exclusive insights, live demos and stories from pros who are already conquering the toughest threats with Cortex®.

  • Get insights from world-class Unit 42® experts that help you anticipate and shut down threats before they strike.
  • Hear transformation stories from SecOps leaders who’ve achieved breakthrough security outcomes with Cortex XSIAM®, so you can too.
  • Get a first look into the bold new future of cloud security unified with the world’s leading SecOps platform.
Register Now
Promotional image for 'Symphony 25,' a virtual summit by Palo Alto Networks and Cortex, featuring an individual with blonde hair against a neon-lit city background. Text reads 'Undermine Adversaries, Unleash SecOps,' event date February 19-20.
Pictorial representation of using LLMs to obfuscate malicious JavaScript detection. A man wearing glasses, looking intently at a screen with reflections visible in the glasses of computer code.
category iconMalware

Now You See Me, Now You Don’t: Using LLMs to Obfuscate Malicious JavaScript
Read now
Pictorial representation of a European phishing campaign. A digital artwork depicting a glowing, futuristic shield disintegrating into small fragments against a shimmering blue background.
category iconBusiness Email Compromise

Effective Phishing Campaign Targeting European Companies and Organizations
Read now
Pictorial representation of attackers leveraging Active Directory or LDAP. Close-up view of a server rack panel with illuminated lights and a digital display reading 'SYSTEM HACKED'.
category iconMalware

LDAP Enumeration: Unveiling the Double-Edged Sword of Active Directory
Read now
Pictorial representation of vulnerabilities in Azure Data Factory Airflow. Illustration of a digital cloud with a padlock symbol, set against a background of neon circuit board lines.
category iconCloud Cybersecurity Research

Dirty DAG: New Vulnerabilities in Azure Data Factory’s Apache Airflow Integration
Read now

Understand high profile cyberthreats and vulnerabilities

View high profile threats Right Arrow
A pictorial representation of Akira ransomware, distributed by Howling Scorpius. A person's hand typing on a keyboard with a digital screen displaying the word "password" highlighted in blue, set against a backdrop of various cybersecurity interface graphics.
category iconRansomware

Threat Assessment: Howling Scorpius (Akira Ransomware)
Read now
Pictorial representation of vulnerabilities such as CVE-2024-0012 and CVE-2024-9474. A panoramic nighttime view of city skyline with illuminated high-rise buildings and vibrant lights.
category iconVulnerabilities

Threat Brief: Operation Lunar Peek, Activity Related to CVE-2024-0012 and CVE-2024-9474 (Updated Nov. 22)
Read now
Pictorial representation of a threat like BlackSuit ransomware. An illustration of a modern workspace with a laptop displaying cybersecurity icons, surrounded by stacks of coins and a credit card, all depicted in a neon, digital art style.
category iconRansomware

Threat Assessment: Ignoble Scorpius, Distributors of BlackSuit Ransomware
Read now
Pictorial representation of Lynx ransomware. A digital illustration of glowing chains with broken links, set against a background of binary code in blue and red.
category iconRansomware

Lynx Ransomware: A Rebranding of INC Ransomware
Read now
A pictorial representation of Cicada3301 ransomware. Digital rendering of a transparent padlock superimposed with programming code and placed on a network of connected databases, symbolizing cybersecurity and data protection.
category iconRansomware

Threat Assessment: Repellent Scorpius, Distributors of Cicada3301 Ransomware
Read now
Illustrative image featuring two fish and the Pisces constellation superimposed on a stylized, abstract background with flowing purple waves and a starry night sky.
category iconMalware

Threat Assessment: North Korean Threat Groups
Read now

Watch, listen and learn about cybersecurity topics

View All Right Arrow

Follow the activities of threat actor groups tracked by Unit 42

All threat actor posts Right Arrow
Pictorial representation of attackers leveraging Active Directory or LDAP. Close-up view of a server rack panel with illuminated lights and a digital display reading 'SYSTEM HACKED'.
category iconMalware

LDAP Enumeration: Unveiling the Double-Edged Sword of Active Directory
Read now
Pictorial representation of a threat like BlackSuit ransomware. An illustration of a modern workspace with a laptop displaying cybersecurity icons, surrounded by stacks of coins and a credit card, all depicted in a neon, digital art style.
category iconRansomware

Threat Assessment: Ignoble Scorpius, Distributors of BlackSuit Ransomware
Read now
A pictorial representation of a campaign like BeaverTail. Digital globe with interconnected network lines and data streams on a futuristic interface, symbolizing global connectivity and information technology advancements.
category iconBusiness Email Compromise

Fake North Korean IT Worker Linked to BeaverTail Video Conference App Phishing Attack
Read now
A pictorial represntation of cybercrime like Silent Skimmer. A glowing red padlock on a wet surface with red particles floating in a misty, dark blue background.
category iconCybercrime

Silent Skimmer Gets Loud (Again)
Read now
A representation of a threat group like Jumpy Pisces. Illustrative image featuring two fish and the Pisces constellation superimposed on a stylized, abstract background with flowing purple waves and a starry night sky.
category iconRansomware

Jumpy Pisces Engages in Play Ransomware
Read now
Pictorial representation of a campaign like Contagious Interview. Digital graphic of a glowing globe with network connections and data streams, symbolizing global connectivity and technology advancements.
category iconMalware

Contagious Interview: DPRK Threat Actors Lure Tech Industry Job Seekers to Install New Variants of BeaverTail and InvisibleFerret Malware
Read now

Explore in-depth cybersecurity trend reports

View All Right Arrow
Report

The Unit 42 Threat Frontier: Prepare for Emerging AI Risks

Strengthen your grasp of generative AI (GenAI) and learn how attackers can go about compromising GenAI tools to support their efforts.

Identify critical capabilities

  • Learn why conventional cybersecurity tactics are still relevant when defending against AI-enabled attackers.

Real examples

  • We describe how Unit 42 red teams are using AI in our proactive security engagements.

Extend your current understanding to the likely future and keep up with, or perhaps even outpace, attackers using AI.

 

Get the report
Threat Frontier Report cover.
A pictorial representation of AI threats. Looking over the shoulder of a man in the cockpit of a vessel in space, the window looks out on an Earth-like planet.
category iconSecurity Technology

Unit 42 Looks Toward the Threat Frontier: Preparing for Emerging AI Risks
Read now
Pictorial representation of attack surface management. Close-up of a person wearing glasses with computer code reflections on the lenses.
category iconSecurity Technology

Unit 42 Attack Surface Threat Research: Over 23% of Internet-Connected Exposures Involve Critical IT and Security Infrastructure
Read now
Pictorial representation of ransomware activity in the first half of 2024. A digitial illustration of a lock made up of nodes glowing against a background of bokeh points.
category iconRansomware

Ransomware Review: First Half of 2024
Read now
category iconCloud Cybersecurity Research

Attack Paths Into VMs in the Cloud
Read now

Default Heading

Read the article Right Arrow