Right arrow
Right arrow
Close-up of a black woman with glasses examining colorful computer code on a screen. The scene is illuminated by various lights, creating a focused and analytical atmosphere.
category iconThreat Research

Novel Technique to Detect Cloud Threat Actor Operations
Pictorial representation of the shadow campaigns. Digital graphic showing a networked globe with various data points and connectivity lines, symbolizing global digital communication and information technology.
category iconThreat Actor Groups

The Shadow Campaigns: Uncovering Global Espionage
Pictorial representation of a group of individuals discussing an idea with a whiteboard.
category iconInsights

Why Smart People Fall For Phishing Attacks
Explore all the articles at the push of a button
View all articles

Access the latest threat research

View all research Right Arrow
Pictorial representation of CVE-2025-0921. Digital illustration of a map of North America with interconnected glowing lines and dots symbolizing network connections across the continent.
category iconVulnerabilities

Privileged File System Vulnerability Present in a SCADA System
Read now
Pictorial representation of runtime assembly attacks. Digital artwork of a glowing, futuristic shield disintegrating into small particles, set against a dark blue, bokeh-effect background.
category iconMalware

The Next Frontier of Runtime Assembly Attacks: Leveraging LLMs to Generate Phishing JavaScript in Real Time
Read now
Pictorial representation of Azure OpenAI DNS resolution issue. Futuristic cityscape illustration with luminous structures and floating cloud elements, showcasing advanced technology and a dynamic, digitally enhanced environment.
category iconDNS

DNS OverDoS: Are Private Endpoints Too Private?
Read now

Understand high profile cyberthreats and vulnerabilities

View high profile threats Right Arrow
Pictorial representation of MongoBleed, CVE-2025-14847. Digital image featuring a glowing padlock icon superimposed on a background of streaming blue binary code, symbolizing cybersecurity.
category iconVulnerabilities

Threat Brief: MongoDB Vulnerability (CVE-2025-14847)
Read now
Pictorial representation of CVE-2025-55182 (React) and CVE-2025-66478 (Next.js). Close-up of a digital display on electronic equipment with illuminated text reading "SYSTEM HACKED" in red, set against a blurred background of blue and red lights.
category iconVulnerabilities

Exploitation of Critical Vulnerability in React Server Components (Updated December 12)
Read now
Pictorial representation of the npm packages supply chain attack. A blurred image focusing on a person typing on a laptop with lines of code visible on the screen, illuminated in blue and red lights, suggestive of intense coding or cyber activities.
category iconMalware

"Shai-Hulud" Worm Compromises npm Ecosystem in Supply Chain Attack (Updated November 26)
Read now
Pictorial representation of CVE-2025-59287. Digital image of a glowing padlock symbol representing cybersecurity on a network grid with blue and orange lights.
category iconVulnerabilities

Microsoft WSUS Remote Code Execution (CVE-2025-59287) Actively Exploited in the Wild (Updated November 3)
Read now
Pictorial representation of F5 data theft incident. Digital illustration of a 3D globe showing network connections and data flow across continents, highlighted with red lines and glowing points, representing global communication and connectivity.
category iconVulnerabilities

Threat Brief: Nation-State Actor Steals F5 Source Code and Undisclosed Vulnerabilities
Read now
Pictorial representation of Salesforce compromised by attackers. Colorful abstract digital artwork featuring a gradient of red to blue hues with a raised, spike-like texture pattern resembling a city skyline.
category iconVulnerabilities

Threat Brief: Salesloft Drift Integration Used To Compromise Salesforce Instances
Read now

Beyond AI. Beyond Automation. Beyond the Adversary.

Save Your Spot Right Arrow

Symphony 2026: The Ultimate SOC Event

The year’s critical intel from security’s sharpest minds. Secure the insights to transform your operations and outpace your adversaries.

What you’ll gain:

  • Threat intelligence sourced directly from hundreds of incident response cases and 70,000+ customers.
  • Practical strategies from global CISOs to improve your SOC.
  • The autonomous SOC roadmap and detailed product demos from the Cortex® team.
Save Your Spot
Symphony 2026 advertisement.

Insights – Explore fresh perspectives from Unit 42

Insights Right Arrow
Ria Bhatia

Read more from Ria Bhatia
Justin Moore

Threat Intelligence, Cyberthreats

Read more from Justin Moore
Kathi Whitbey

Cyber Threat Alliance

Read more from Kathi Whitbey
Randy Stone

Social Engineering, Ransomware

Read more from Randy Stone
Michael Spisak

Read more from Michael Spisak
Kate Middagh

AI Vibe Coding

Read more from Kate Middagh
Samantha Stallings

Read more from Samantha Stallings
Unit 42

Read more from Unit 42
Recent Articles

Insights – Explore fresh perspectives from Unit 42

Pictorial representation of a group of individuals discussing an idea with a whiteboard.
category iconRia Bhatia

Why Smart People Fall For Phishing Attacks
Read now
Pictorial representation of threat groups from Russia. The silhouette of a bear and the Ursa constellation inside an orange abstract planet. Abstract, stylized cosmic setting with vibrant blue and purple shapes, representing space and distant planetary bodies.
category iconJustin Moore

Understanding the Russian Cyberthreat to the 2026 Winter Olympics
Read now
Pictorial representation of orange, wave-like lines illuminated against a navy background.
category iconKathi Whitbey

Happy 9th Anniversary, CTA: A Celebration of Collaboration in Cyber Defense
Read now
Pictorial representation of a man viewing multiple computer monitors displaying lines of code. The screens emit a blue glow against a textured pink background.
category iconRandy Stone

Anatomy of an Attack: The Payroll Pirates and the Power of Social Engineering
Read now
Pictorial representation of a laptop with various charts and graphs illuminated on the screen.
category iconKate Middagh

Securing Vibe Coding Tools: Scaling Productivity Without Scaling Risk
Read now
Pictorial representation of a woman analyzing a bright, white characters on a clear screen.
category iconSamantha Stallings

Who Does Cybersecurity Need? You!
Read now

Explore in-depth cybersecurity trend reports

View All Right Arrow
Report

Stay ahead of the trends reshaping the threat landscape.

The 2025 Unit 42 Global Incident Response Report reveals a shifting threat landscape marked by faster, more complex attacks.

Learn about:

  • The increasing speed of attacks: Understand how attackers leverage AI and advanced tactics to reach exfiltration within an hour, leaving minimal time to respond.
  • Evolving attack techniques: Discover how 70% of incidents now span three or more attack surfaces, emphasizing the need for holistic security across endpoints, networks, cloud environments and human factors.
  • Key emerging threat trends: Explore the rise of disruptive extortion, supply chain vulnerabilities, insider threats and AI-assisted attacks, and how they impact organizations across industries.

The message is clear: To combat these rising threats, organizations must prioritize rapid detection, response and comprehensive security strategies.

 

Get the report
Pictorial representation of social engineering. Digital illustration of four human profiles connected by glowing neural network lines against a dark background, symbolizing connectivity and technology.
category iconCybercrime

2025 Unit 42 Global Incident Response Report: Social Engineering Edition
Read now
Pictorial representation of the ransomware landscape. Digital artwork of a disintegrating U.S. dollar bill with pixelated effects on a cyber-inspired background.
category iconRansomware

Extortion and Ransomware Trends January-March 2025
Read now
Pictorial representation of securing GenAI. A glowing cube labeled "AI" centrally positioned on a circuit board with intricate electronic connections and blue lighting.
category iconVulnerabilities

How Prompt Attacks Exploit GenAI and How to Fight Back
Read now
A pictorial representation of AI threats. Looking over the shoulder of a man in the cockpit of a vessel in space, the window looks out on an Earth-like planet.
category iconLearning Hub

Unit 42 Looks Toward the Threat Frontier: Preparing for Emerging AI Risks
Read now

Follow the activities of threat actor groups tracked by Unit 42

All threat actor posts Right Arrow
Pictorial representation of RaaS RansomHouse. Digital representation of cybersecurity concept with a padlock superimposed over computer circuit boards, symbolizing data protection and encryption technologies.
category iconRansomware

From Linear to Complex: An Upgrade in RansomHouse Encryption
Read now
Pictorial representation of APT Ashen Lepus. The silhouette of a hare and the Lepus constellation inside an orange abstract planet. Abstract, stylized cosmic setting with vibrant blue and purple shapes, representing space and distant planetary bodies.
category iconMalware

Hamas-Affiliated Ashen Lepus Targets Middle Eastern Diplomatic Entities With New AshTag Malware Suite
Read now
Pictorial illustration of Bling Libra on a purple, starry background with orange highlights.
Hospitality Hacks and Retail Reality Checks

The Golden Scale: Bling Libra and the Evolving Extortion Economy
Read now
Pictorial representation of APT Phantom Taurus. The silhouette of a bull facing the reviewer and the Taurus constellation inside an orange abstract planet. Abstract, stylized cosmic setting with vibrant blue and purple shapes, representing space and distant planetary bodies.
category iconMalware

Phantom Taurus: A New Chinese Nexus APT and the Discovery of the NET-STAR Malware Suite
Read now
Pictorial representation of APT Stately Taurus. The silhouette of a bull and the Taurus constellation inside an orange abstract planet. Abstract, stylized cosmic setting with vibrant blue and purple shapes, representing space and distant planetary bodies.
category iconMalware

Bookworm to Stately Taurus Using the Unit 42 Attribution Framework
Read now
Constellation image representing the constellation schema used by Palo Alto Networks Unit 42 to track nation-state and cybercrime threat actor groups
category iconNation-State Cyberattacks

Threat Actor Groups Tracked by Palo Alto Networks Unit 42 (Updated Aug. 1, 2025)
Read now

Get the latest news, invites to events, and threat alerts

Default Heading

Read the article Right Arrow