Latest Blogs

POPULAR BLOGS

Popular Topics

SOC
Code to Cloud
Runtime Protection
Real-time cloud security
Cortex Cloud
Agentic AI

Unit 42 Threat Research

company article
Threat Research Vulnerabilities

Privileged File System Vulnerability Present in a SCADA System

We detail our discovery of CVE-2025-0921. This privileged file system flaw in SCADA system Iconics Suite could lead to a denial-of-service (DoS) attack....
January 30, 2026
By  Asher Davila , Malav Vyas
company article
Cybercrime Insights Opinions

Understanding the Russian Cyber Threat to the 2026 Winter Olympic...

Russia's current isolation from the Olympics may lead to increased cyber threats targeting the 2026 Winter Games. We discuss the potential threat picture....
January 29, 2026
By  Justin Moore
company article
General Insights

Happy 9th Anniversary, CTA: A Celebration of Collaboration in Cyb...

Unit 42 celebrates 9 years of the Cyber Threat Alliance, tracing its journey from a bold idea to a global leader in collaborative cyber defense....
January 23, 2026
By  Kathi Whitbey
company article
Malware Threat Research

The Next Frontier of Runtime Assembly Attacks: Leveraging LLMs to...

We discuss a novel AI-augmented attack method where malicious webpages use LLM services to generate dynamic code in real-time within a browser....
January 22, 2026
By  Shehroze Farooqi , Alex Starov , Diva-Oriane Marty , Billy Melicher
company article
Cloud Cybersecurity Research DNS Threat Research

DNS OverDoS: Are Private Endpoints Too Private?

We've identified an aspect of Azure’s Private Endpoint architecture that could expose Azure resources to denial of service (DoS) attacks....
January 20, 2026
By  Golan Myers
company article
Anatomy of an Attack Insights

Anatomy of an Attack: The Payroll Pirates and the Power of Social...

Unit 42 breaks down a payroll attack fueled by social engineering. Learn how the breach happened and how to protect your organization from similar threats....
January 16, 2026
By  Randy Stone
company article
High Profile Threats Vulnerabilities

Threat Brief: MongoDB Vulnerability (CVE-2025-14847)

Database platform MongoDB disclosed CVE-2025-14847, called MongoBleed. This is an unauthenticated memory disclosure vulnerability with a CVSS score of 8.7....
January 13, 2026
By  Unit 42
company article
Threat Research Vulnerabilities

Remote Code Execution With Modern AI/ML Formats and Libraries

We identified remote code execution vulnerabilities in open-source AI/ML libraries published by Apple, Salesforce and NVIDIA. ...
January 13, 2026
By  Curtis Carmony
See all Unit 42 threat research

Subscribe to the Newsletter!

Sign up to receive must-read articles, Playbooks of the Week, new feature announcements, and more.

By submitting this form, you agree to our Terms of Use and acknowledge our Privacy Statement. Please look for a confirmation email from us. If you don't receive it in the next 10 minutes, please check your spam folder.

This site is protected by reCAPTCHA and the Google Privacy Policy and Terms of Service apply.

Get the latest news, invites to events, and threat alerts

Get the latest news, invites to events, and threat alerts