Latest Blogs

POPULAR BLOGS

Popular Topics

SOC
Cortex XDR
Code to Cloud
Runtime Protection
Real-time cloud security
Cortex Cloud

Unit 42 Threat Research

company article
High Profile Threats Vulnerabilities

Threat Brief: Operation Lunar Peek, Activity Related to CVE-2024-...

We detail the observed limited activity regarding authentication bypass vulnerability CVE-2024-0012 affecting specific versions of PAN-OS software, and include ...
November 22, 2024
By  Unit 42
company article
General Insights

Trusted Connections, Hidden Risks: Token Management in the Third-...

Effective OAuth token management is crucial for supply chain security, preventing breaches caused by dormant integrations, insecure storage or lack of rotation....
September 12, 2025
By  Bill Batchelor , Eyal Rafian , Nathaniel Quist
company article
Malware Threat Research

AdaptixC2: A New Open-Source Framework Leveraged in Real-World At...

AdaptixC2, an open-source C2 framework, is increasingly used in attacks. We discuss its features and potential use case scenarios....
September 10, 2025
By  Ofek Lahiani , Itay Cohen
company article
Hospitality Hacks and Retail Reality Checks Insights Unit 42

Data Is the New Diamond: Latest Moves by Hackers and Defenders

Unit 42 delves into how cybercriminals are treating stolen data like digital diamonds amid rising attacks and evolving extortion tactics....
September 9, 2025
By  Matt Brady
company article
Cloud Cybersecurity Research Threat Research

Model Namespace Reuse: An AI Supply-Chain Attack Exploiting Model...

Model namespace reuse is a potential security risk in the AI supply chain. Attackers can misuse platforms like Hugging Face for remote code execution....
September 3, 2025
By  Itay Saraf , Ofir Balassiano
company article
Insights Interview

Why Threat Intelligence: A Conversation With Unit 42 Interns

Discover what it’s like to be a Threat Intelligence intern at Unit 42, from diving into research to tackling real-world cyber threats....
September 2, 2025
By  Ria Bhatia
company article
High Profile Threats Vulnerabilities

Threat Brief: Salesloft Drift Integration Used To Compromise Sale...

This Threat Brief discusses observations on a campaign leveraging Salesloft Drift integration to exfiltrate data via compromised OAuth credentials....
September 2, 2025
By  Unit 42
company article
Hospitality Hacks and Retail Reality Checks Insights

Data Is the New Diamond: Heists in the Digital Age

Unit 42 explores the similarities between the social engineering and reconnaissance tactics used by financially motivated criminals. ...
August 26, 2025
By  Matt Brady
See all Unit 42 threat research

Subscribe to the Newsletter!

Sign up to receive must-read articles, Playbooks of the Week, new feature announcements, and more.

By submitting this form, you agree to our Terms of Use and acknowledge our Privacy Statement. Please look for a confirmation email from us. If you don't receive it in the next 10 minutes, please check your spam folder.

Get the latest news, invites to events, and threat alerts

Get the latest news, invites to events, and threat alerts