Latest Blogs

POPULAR BLOGS

Popular Topics

SOC
Code to Cloud
Runtime Protection
Real-time cloud security
Cortex Cloud
Agentic AI

Unit 42 Threat Research

company article
General Insights

Frontier AI and the Future of Defense: Your Top Questions Answere...

What are the next steps for security leaders in this new age of frontier AI? We answer the top 10 questions customers are asking....
April 23, 2026
By  Sam Rubin
company article
Cloud Cybersecurity Research Threat Research

Can AI Attack the Cloud? Lessons From Building an Autonomous Clou...

Unit 42 reveals how multi-agent AI systems can autonomously attack cloud environments. Learn critical insights and vital lessons for proactive security. ...
April 23, 2026
By  Yahav Festinger , Chen Doytshman
company article
Malware Threat Research

When Wi-Fi Encryption Fails: Protecting Your Enterprise from AirS...

Unit 42 research reveals AirSnitch attacks bypass WPA2/3 Wi-Fi encryption and client isolation, exposing critical infrastructure vulnerabilities....
April 22, 2026
By  Emmanuel Zhou , Adam Robbie , Rick Wyble , Zhutian Liu , Zhiyun Qian , Zhaowei Tan , Srikanth V. Krishnamurthy , Mathy Vanhoef
company article
General Insights

Fracturing Software Security With Frontier AI Models

Unit 42 finds frontier AI models enhance vulnerability discovery, acting as full-spectrum security researchers. They enable autonomous zero-day discovery and fa...
April 20, 2026
By  Andy Piazza
company article
Hacktivism High Profile Threats Malware Ransomware

Threat Brief: Escalation of Cyber Risk Related to Iran (Updated A...

Unit 42 details recent Iranian cyberattack activity, sharing direct observations of phishing, hacktivist activity and cybercrime. We include recommendations for...
April 17, 2026
By  Unit 42
company article
Threat Research Vulnerabilities

A Deep Dive Into Attempted Exploitation of CVE-2023-33538

CVE-2023-33538 allows for command injection in TP-Link routers. We discuss exploitation attempts with payloads characteristic of Mirai botnet malware....
April 16, 2026
By  Asher Davila , Malav Vyas , Chris Navarrete
company article
Malware Threat Research

Cracks in the Bedrock: Agent God Mode

Unit 42 reveals "Agent God Mode" in Amazon Bedrock AgentCore. Broad IAM permissions lead to privilege escalation and data exfiltration risks....
April 8, 2026
By  Ori Hadad
company article
Malware Threat Research

Cracks in the Bedrock: Escaping the AWS AgentCore Sandbox

Unit 42 uncovers critical vulnerabilities in Amazon Bedrock AgentCore's sandbox, demonstrating DNS tunneling and credential exposure. ...
April 7, 2026
By  Ori Hadad
See all Unit 42 threat research

Subscribe to the Newsletter!

Sign up to receive must-read articles, Playbooks of the Week, new feature announcements, and more.

By submitting this form, you agree to our Terms of Use and acknowledge our Privacy Statement. Please look for a confirmation email from us. If you don't receive it in the next 10 minutes, please check your spam folder.

This site is protected by reCAPTCHA and the Google Privacy Policy and Terms of Service apply.

Get the latest news, invites to events, and threat alerts

Get the latest news, invites to events, and threat alerts