Logo
Unit42 Logo
  • Tools
  • ATOMs
  • Security Consulting
  • About Us
  • Under Attack?

Posts created by: Unit 42

Threat Group Assessment: Turla (aka Pensive Ursa)A pictorial representation of an APT such as Turla or Pensive Ursa.
3,254
people reacted

Threat Group Assessment: Turla (aka Pensive Ursa)

  • By Unit 42
  • September 15, 2023 at 6:00 AM

12

14 min. read

Unit 42 Attack Surface Threat Research: Constant Change in Cloud Contributes to 45% of New High/Critical Exposures Per MonthCortex logo. Palo Alto Networks and Unit 42 logo lockup. 2023. Unit 42 Attack Surface Threat Report. EXPOSURE in a stylized format on a black background.
2,539
people reacted

Unit 42 Attack Surface Threat Research: Constant Change in Cloud Contributes to 45% of New High/Critical Exposures Per Month

  • By Unit 42
  • September 14, 2023 at 3:00 AM

3

4 min. read

Trending

  • Unit 42 Attack Surface Threat Research: Constant Change in Cloud Contributes to 45% of New High/Critical Exposures Per Month by Unit 42
  • Threat Group Assessment: Muddled Libra (Updated) by Unit 42
  • Wireshark Tutorial: Display Filter Expressions by Brad Duncan
  • Wireshark Tutorial: Changing Your Column Display by Brad Duncan
  • Threat Group Assessment: Turla (aka Pensive Ursa) by Unit 42
Threat Brief: Multiple Vulnerabilities Including Zero-Day Remote Unauthenticated API Access – CVE-2023-35078 – in Ivanti Endpoint Manager Mobile (Updated)A pictorial representation of a vulnerability such as CVE-2023-35078
5,576
people reacted

Threat Brief: Multiple Vulnerabilities Including Zero-Day Remote Unauthenticated API Access – CVE-2023-35078 – in Ivanti Endpoint Manager Mobile (Updated)

  • By Unit 42
  • July 28, 2023 at 5:42 PM

13

8 min. read

Threat Brief: RCE Vulnerability CVE-2023-3519 on Customer-Managed Citrix ServersA pictorial representation of a vulnerability such as CVE-2023-3519 affecting Citrix NetScaler.
6,163
people reacted

Threat Brief: RCE Vulnerability CVE-2023-3519 on Customer-Managed Citrix Servers

  • By Unit 42
  • July 28, 2023 at 4:00 PM

3

5 min. read

CVE-2023-36884 - Microsoft Office and Windows HTML Remote Code Execution: Threat Brief (Updated)Standard image for Unit 42 Threat Brief format, in this case covering CVE-2023-36884, Microsoft Office and Windows HTML Remote Code Execution
22,086
people reacted

CVE-2023-36884 - Microsoft Office and Windows HTML Remote Code Execution: Threat Brief (Updated)

  • By Unit 42
  • July 12, 2023 at 11:45 AM

29

4 min. read

Diplomats Beware: Cloaked Ursa Phishing With a TwistA pictorial representation of threat group Cloaked Ursa as a bear head within a circle, overlaid by the Ursa constellation
10,999
people reacted

Diplomats Beware: Cloaked Ursa Phishing With a Twist

  • By Unit 42
  • July 12, 2023 at 3:00 AM

19

15 min. read

Threat Brief - MOVEit Transfer SQL Injection Vulnerabilities: CVE-2023-34362, CVE-2023-35036 and CVE-2023-35708 (Updated July 7)A pictorial representation of a vulnerability like CVE-2023-34362
45,513
people reacted

Threat Brief - MOVEit Transfer SQL Injection Vulnerabilities: CVE-2023-34362, CVE-2023-35036 and CVE-2023-35708 (Updated July 7)

  • By Unit 42
  • June 6, 2023 at 2:30 PM

35

7 min. read

Threat Brief: Attacks on Critical Infrastructure Attributed to Insidious Taurus (aka Volt Typhoon)A pictorial representation of threat actor Volt Typhoon
50,064
people reacted

Threat Brief: Attacks on Critical Infrastructure Attributed to Insidious Taurus (aka Volt Typhoon)

  • By Unit 42
  • May 26, 2023 at 2:30 PM

15

7 min. read

It’s All in the Name: How Unit 42 Defines and Tracks Threat AdversariesA pictorial representation of threat actor tracking showing a blackboard and books.
58,701
people reacted

It’s All in the Name: How Unit 42 Defines and Tracks Threat Adversaries

  • By Unit 42
  • May 15, 2023 at 6:00 AM

5

4 min. read

Chinese Alloy Taurus Updates PingPull MalwareA pictorial representation of Alloy Taurus with a bull's head against the Taurus constellation in a night sky.
78,664
people reacted

Chinese Alloy Taurus Updates PingPull Malware

  • By Unit 42
  • April 26, 2023 at 3:00 AM

18

6 min. read

Unit 42 Unveils Most ‘Expansive’ Cloud Threat Research Yet: Cloud Threat Report Volume 7 Examines the Expanding Attack SurfaceA graphic element with the Unit 42 and Prisma Cloud logos
72,607
people reacted

Unit 42 Unveils Most ‘Expansive’ Cloud Threat Research Yet: Cloud Threat Report Volume 7 Examines the Expanding Attack Surface

  • By Unit 42
  • April 18, 2023 at 3:00 AM

28

4 min. read

Threat Brief - CVE-2023-23397 - Microsoft Outlook Privilege EscalationA pictorial representation of an email vulnerability like CVE-2023-23397
83,117
people reacted

Threat Brief - CVE-2023-23397 - Microsoft Outlook Privilege Escalation

  • By Unit 42
  • March 31, 2023 at 12:06 AM

18

5 min. read

Unit 42 Ransomware and Extortion Report Highlights: Multi-Extortion Tactics Continue to RiseThe covers of the Ransomware and Extortion Report and the MITRE ATT&CK Framework
61,550
people reacted

Unit 42 Ransomware and Extortion Report Highlights: Multi-Extortion Tactics Continue to Rise

  • By Unit 42
  • March 21, 2023 at 2:00 AM

11

3 min. read

Chinese Playful Taurus Activity in IranA pictorial representation of the threat actor group Playful Taurus showing an illustration of an orange bull’s head against the background of a blue night sky. Included is the constellation of Taurus.
75,282
people reacted

Chinese Playful Taurus Activity in Iran

  • By Unit 42
  • January 18, 2023 at 3:00 AM

67

9 min. read

Russia’s Trident Ursa (aka Gamaredon APT) Cyber Conflict Operations Unwavering Since Invasion of UkraineA pictorial representation of Trident Ursa showing a purple bear and trident
79,041
people reacted

Russia’s Trident Ursa (aka Gamaredon APT) Cyber Conflict Operations Unwavering Since Invasion of Ukraine

  • By Unit 42
  • December 20, 2022 at 3:00 AM

36

15 min. read

Popular Resources

  • Resource Center
  • Blog
  • Communities
  • Tech Docs
  • Unit 42
  • Sitemap

Legal Notices

  • Privacy
  • Terms of Use
  • Documents

Account

  • Manage Subscriptions
  •  
  • Report a Vulnerability

© 2023 Palo Alto Networks, Inc. All rights reserved.