Latest Blogs

POPULAR BLOGS

Popular Topics

SOC
Code to Cloud
Runtime Protection
Real-time cloud security
Cortex Cloud
Agentic AI

Unit 42 Threat Research

company article
Malware Threat Research

VVS Discord Stealer Using Pyarmor for Obfuscation and Detection E...

VVS stealer (or VVS $tealer) is a Python-based infostealer targeting Discord users. It employs Pyarmor for obfuscation, contributing to its efficacy....
January 2, 2026
By  Pranay Kumar Chhaparwal , Lee Wei Yeong
company article
Insights Opinions

Who Does Cybersecurity Need? You!

Cybersecurity thrives on diverse skills, not just coding and engineering. From writers to designers, there’s a place for you in this field....
December 23, 2025
By  Samantha Stallings
company article
Ransomware Threat Actor Groups Threat Research

From Linear to Complex: An Upgrade in RansomHouse Encryption

Operators behind RansomHouse, a ransomware-as-a-service (RaaS) group, have upgraded their encryption methods from single-phase to complex and layered....
December 17, 2025
By  Anmol Maurya , Jingwen Shi
company article
General Insights

Stay Secure: Why Cyber Hygiene Should Be Part of Your Personal Hy...

Cyber hygiene is just as vital as personal hygiene. Unit 42 shares tips for people of all experience levels to keep their digital lives secure. ...
December 16, 2025
By  Ria Bhatia
company article
High Profile Threats Vulnerabilities

Exploitation of Critical Vulnerability in React Server Components...

We discuss the CVSS 10.0-rated RCE vulnerability in the Flight protocol used by React Server Components. This is tracked as CVE-2025-55182. ...
December 12, 2025
By  Unit 42
company article
Malware Threat Actor Groups

Hamas-Affiliated Ashen Lepus Targets Middle Eastern Diplomatic En...

Hamas-affiliated threat actor Ashen Lepus (aka WIRTE) is conducting espionage with its new AshTag malware suite against Middle Eastern government entities. ...
December 11, 2025
By  Unit 42
company article
Cybercrime Ransomware Threat Research

01flip: Multi-Platform Ransomware Written in Rust

01flip is a new ransomware family fully written in Rust. Activity linked to 01flip points to alleged dark web data leaks. ...
December 10, 2025
By  Hiroaki Hara
company article
Malware Threat Research

New Prompt Injection Attack Vectors Through MCP Sampling

Model Context Protocol connects LLM apps to external data sources or tools. We examine its security implications through various attack vectors....
December 5, 2025
By  Yongzhe Huang , Akshata Rao , Changjiang Li , Yang Ji , Wenjun Hu
See all Unit 42 threat research

Subscribe to the Newsletter!

Sign up to receive must-read articles, Playbooks of the Week, new feature announcements, and more.

By submitting this form, you agree to our Terms of Use and acknowledge our Privacy Statement. Please look for a confirmation email from us. If you don't receive it in the next 10 minutes, please check your spam folder.

This site is protected by reCAPTCHA and the Google Privacy Policy and Terms of Service apply.

Get the latest news, invites to events, and threat alerts

Get the latest news, invites to events, and threat alerts