Latest Blogs

POPULAR BLOGS

Popular Topics

SOC
Code to Cloud
Runtime Protection
Real-time cloud security
Cortex Cloud
Agentic AI

Unit 42 Threat Research

company article
General Insights

Insights: Increased Risk of Wiper Attacks

We are observing an increase of wiper attacks by the Iran-linked Handala Hack group (aka Void Manticore) through phishing and misuse of Microsoft Intune....
March 12, 2026
By  Andy Piazza , Eric Goldstrom , Steve Elovitz
company article
Malware Nation-State Cyberattacks Threat Research

Suspected China-Based Espionage Operation Against Military Target...

An espionage operation demonstrated strategic operational patience against targets in Southeast Asia, deploying custom backdoors....
March 12, 2026
By  Lior Rochberger , Yoav Zemah
company article
Malware Threat Research

Auditing the Gatekeepers: Fuzzing "AI Judges" to Bypass Security ...

Unit 42 research reveals AI judges are vulnerable to stealthy prompt injection. Benign formatting symbols can bypass security controls....
March 10, 2026
By  Tony Li , Hongliang Liu , Yuhao Wu
company article
Malware Threat Research

An Investigation Into Years of Undetected Operations Targeting Hi...

In-depth analysis of threat activity we call CL-UNK-1068. We discuss their toolset, including tunneling, reconnaissance and credential theft....
March 6, 2026
By  Tom Fakterman
company article
Malware Threat Research

Fooling AI Agents: Web-Based Indirect Prompt Injection Observed i...

Uncover real-world indirect prompt injection attacks and learn how adversaries weaponize hidden web content to exploit LLMs for high-impact fraud....
March 3, 2026
By  Beliz Kaleli , Shehroze Farooqi , Oleksii Starov , Nabeel Mohamed
company article
Hacktivism High Profile Threats Malware Ransomware

Threat Brief: March 2026 Escalation of Cyber Risk Related to Iran

Unit 42 details recent Iranian cyberattack activity, sharing direct observations of phishing, hacktivist activity and cybercrime. We include recommendations for...
March 2, 2026
By  Unit 42
company article
Malware Threat Research

Taming Agentic Browsers: Vulnerability in Chrome Allowed Extensio...

A high-severity CVE-2026-0628 in Chrome's Gemini allowed local file access and privacy invasion. Google quickly patched the flaw....
March 2, 2026
By  Gal Weizman
company article
General Insights

Bring the Fight to the Edge: Turning Time Into an Advantage in OT...

Unit 42 research reveals most OT attacks begin in IT. Learn how edge-driven defense stops threats early and turns dwell time into advantage....
February 24, 2026
By  Adam Robbie
See all Unit 42 threat research

Subscribe to the Newsletter!

Sign up to receive must-read articles, Playbooks of the Week, new feature announcements, and more.

By submitting this form, you agree to our Terms of Use and acknowledge our Privacy Statement. Please look for a confirmation email from us. If you don't receive it in the next 10 minutes, please check your spam folder.

This site is protected by reCAPTCHA and the Google Privacy Policy and Terms of Service apply.

Get the latest news, invites to events, and threat alerts

Get the latest news, invites to events, and threat alerts