Latest Blogs

POPULAR BLOGS

Popular Topics

SOC
Code to Cloud
Runtime Protection
Real-time cloud security
Cortex Cloud
Agentic AI

Unit 42 Threat Research

company article
Malware Threat Research

Cracks in the Bedrock: Agent God Mode

Unit 42 reveals "Agent God Mode" in Amazon Bedrock AgentCore. Broad IAM permissions lead to privilege escalation and data exfiltration risks....
April 8, 2026
By  Ori Hadad
company article
Malware Threat Research

Cracks in the Bedrock: Escaping the AWS AgentCore Sandbox

Unit 42 uncovers critical vulnerabilities in Amazon Bedrock AgentCore's sandbox, demonstrating DNS tunneling and credential exposure. ...
April 7, 2026
By  Ori Hadad
company article
Malware Threat Research

Understanding Current Threats to Kubernetes Environments

Unit 42 uncovers escalating Kubernetes attacks, detailing how threat actors exploit identities and critical vulnerabilities to compromise cloud environments....
April 6, 2026
By  Eyal Rafian , Bill Batchelor
company article
Malware Threat Research

When an Attacker Meets a Group of Agents: Navigating Amazon Bedro...

Unit 42 research on multi-agent AI systems on Amazon Bedrock reveals new attack surfaces and prompt injection risks. Learn how to secure your AI applications....
April 3, 2026
By  Jay Chen , Royce Lu
company article
High Profile Threats Malware

Threat Brief: Widespread Impact of the Axios Supply Chain Attack

Unit 42 discusses the supply chain attack targeting Axios. Learn about the full attack chain, from the dropper to forensic cleanup....
April 1, 2026
By  Unit 42
company article
High Profile Threats Malware

Weaponizing the Protectors: TeamPCP’s Multi-Stage Supply Chain At...

TeamPCP continues its string of supply chain attacks, and announces a partnership with Vect ransomware group....
March 31, 2026
By  Unit 42
company article
Malware Threat Research

Double Agents: Exposing Security Blind Spots in GCP Vertex AI

Unit 42 uncovers a "double agent" flaw in Google Cloud's Vertex AI, demonstrating how overprivileged AI agents can compromise cloud environments....
March 31, 2026
By  Ofir Shaty
company article
Hacktivism High Profile Threats Malware Ransomware

Threat Brief: March 2026 Escalation of Cyber Risk Related to Iran...

Unit 42 details recent Iranian cyberattack activity, sharing direct observations of phishing, hacktivist activity and cybercrime. We include recommendations for...
March 26, 2026
By  Unit 42
See all Unit 42 threat research

Subscribe to the Newsletter!

Sign up to receive must-read articles, Playbooks of the Week, new feature announcements, and more.

By submitting this form, you agree to our Terms of Use and acknowledge our Privacy Statement. Please look for a confirmation email from us. If you don't receive it in the next 10 minutes, please check your spam folder.

This site is protected by reCAPTCHA and the Google Privacy Policy and Terms of Service apply.

Get the latest news, invites to events, and threat alerts

Get the latest news, invites to events, and threat alerts