Threat Landscape

Discussion List

• Russian Threat Actor Uses European Security Events Lures in Targeted Phishing Attacks

  1 view 0 comments 0 points Most recent by Du'aine Davis December 2025Daily Threat Briefing
• Critical RSC Vulnerability in React and Next.js Allows Unauthenticated Remote Code Execution

  22 views 1 comment 0 points Most recent by Du'aine Davis December 2025Daily Threat Briefing
• Threat Actors Leverage Velociraptor DFIR Tool for Stealthy C2 & Ransomware Delivery

  1 view 0 comments 0 points Most recent by Du'aine Davis December 2025Daily Threat Briefing
• ValleyRat Campaign repackages installers for popular tools

  1 view 0 comments 0 points Most recent by Du'aine Davis December 2025Daily Threat Briefing
• Calendly-themed phishing campaign targets businesses

  11 views 0 comments 0 points Most recent by Du'aine Davis December 2025Daily Threat Briefing
• Tomiris APT Campaign Exploits Telegram and Discord for Stealthy Attacks

  11 views 0 comments 0 points Most recent by Du'aine Davis December 2025Daily Threat Briefing
• New Malware Packer TangleCrypt Discovered in Qilin Ransomware Campaign

  1 view 0 comments 0 points Most recent by Du'aine Davis December 2025Daily Threat Briefing
• 4.3 Million Browsers Compromised via Malicious Extensions

  11 views 0 comments 0 points Most recent by Du'aine Davis December 2025Daily Threat Briefing
• Weaponised Google Meet Page Exploits ClickFix Technique

  2 views 0 comments 0 points Most recent by Du'aine Davis December 2025Daily Threat Briefing
• French Football Federation experiences data breach following cyberattack

  1 view 0 comments 0 points Most recent by Du'aine Davis December 2025Daily Threat Briefing
• Credential Abuse and Domain Spoofing Spike Ahead of Festive Shopping

  2 views 0 comments 0 points Most recent by Du'aine Davis December 2025Daily Threat Briefing
• Oracle Identity Manager Pre-Auth RCE: CVE-2025-61757 Explained

  1 view 0 comments 0 points Most recent by Du'aine Davis November 2025Daily Threat Briefing
• Scattered Lapsus$ Hunters Target Zendesk in New Supply-Chain Campaign

  1 view 0 comments 0 points Most recent by Du'aine Davis November 2025Daily Threat Briefing
• Microsoft Teams Guest Access allows attackers to bypass Defender for Office 365 protections

  11 views 0 comments 0 points Most recent by Du'aine Davis November 2025Daily Threat Briefing
• Several London councils targeted in cyber-attacks within the past few days

  1 view 0 comments 1 point Most recent by Du'aine Davis November 2025Daily Threat Briefing
• Gainsight Expands Impacted Customer List Following Salesforce Security Alert

  12 views 0 comments 0 points Most recent by Du'aine Davis November 2025Daily Threat Briefing
• Shai-Hulud malware infects 500 npm packages, leaks secrets on GitHub

  11 views 1 comment 1 point Most recent by Du'aine Davis November 2025Daily Threat Briefing
• Threat Actors Actively Attacking Telecommunications & Media Industry to Deploy Malicious Payloads

  2 views 0 comments 0 points Most recent by Du'aine Davis November 2025Daily Threat Briefing
• Credential Harvesting Through Public Code Beautifiers

  2 views 0 comments 0 points Most recent by Du'aine Davis November 2025Daily Threat Briefing
• RomCom Uses SocGholish Fake Update Attacks to Deliver Mythic Agent Malware

  1 view 0 comments 0 points Most recent by Du'aine Davis November 2025Daily Threat Briefing
• Matrix Push C2 Uses Browser Notifications for Fileless, Cross-Platform Phishing Attacks

  1 view 0 comments 0 points Most recent by Du'aine Davis November 2025Daily Threat Briefing
• ToddyCat APT Accessing Organisations Internal Communications of Employees at Target Companies

  2 views 0 comments 0 points Most recent by Du'aine Davis November 2025Daily Threat Briefing
• North Korean Kimsuky and Lazarus Join Forces to Exploit Zero-Day Vulnerabilities Targeting Critical

  2 views 0 comments 0 points Most recent by Du'aine Davis November 2025Daily Threat Briefing
• Xillen Stealer Updates to Version 5 with New Detection Evasion Techniques

  1 view 0 comments 0 points Most recent by Du'aine Davis November 2025Daily Threat Briefing
• SonicOS SSLVPN Vulnerability Allows Attackers To Crash the Firewall Remotely (CVE-2025-40601)

  1 view 0 comments 0 points Most recent by Du'aine Davis November 2025Daily Threat Briefing
• Recent 7-Zip Vulnerability Exploited in Attacks (CVE-2025-11001)

  2 views 0 comments 0 points Most recent by Du'aine Davis November 2025Daily Threat Briefing
• Cloudflare outage caused by bug, not malicious activity

  22 views 1 comment 0 points Most recent by Rafi Mahmood November 2025Daily Threat Briefing
• Researchers identify ShinySp1d3r as a new ransomware-as-a-service platform in active development

  1 view 0 comments 0 points Most recent by Du'aine Davis November 2025Daily Threat Briefing
• GreyNoise Flags 90-Day High in Brute-Force Attempts on Palo Alto Portals

  1 view 0 comments 0 points Most recent by Du'aine Davis November 2025Daily Threat Briefing