UNIT 42

Global Threat Intelligence

Unit 42 collects and analyzes data globally, feeding up to the minute threat intelligence directly into our products and consumable community research articles.

Our mission is to research and document the details of adversaries’ tactics and techniques and share them quickly to prevent successful cyberattacks.


Experts in threat research

Unit 42 is an industry-leading authority in threat research, adversary tracking and analysis, malware analysis, reverse engineering, threat hunting, and triage. Our global team of researchers provides in-depth insights into threat campaigns across various industries, regions and attack vectors.
Learn more


Stay ahead of the latest threats

Get insights into adversary tools, tactics and procedures so you can proactively defend against attacks.
  • THREAT RESEARCHERS
    200+
  • ATOMS PUBLISHED
    39+
  • RESEARCH NOTES
    650+
  • THREAT RESEARCHERS
    200+
  • ATOMS PUBLISHED
    39+
  • RESEARCH NOTES
    650+

LATEST REPORTS

2021 Unit 42 Ransomware Report

Based on extensive Unit 42 research, this report exposes recent ransomware threats and provides unprecedented visibility into how these threats exploited business vulnerabilities in 2020.

2020 Unit 42 Cloud Threat Report

Unit 42 cloud threat researchers have undertaken major new research on identity and access management (IAM) in an ongoing effort to assess the security posture of cloud infrastructure.

2020 Unit 42 IoT Threat Report

Unit 42 threat intelligence and IoT security experts released the industry’s first assessment of the current IoT threat landscape by analyzing security incidents across 1.2 million IoT devices in the U.S.


Latest Blogs

Ransomware Threat Assessments: A Companion to the 2021 Unit 42 Ransomware Threat Report

Ransomware Threat Assessments: A Companion to the 2021 Unit 42 Ransomware Threat Report

Highlights from the 2021 Unit 42 Ransomware Threat Report

Highlights from the 2021 Unit 42 Ransomware Threat Report

Wireshark Tutorial: Decrypting Remote Desktop Protocol (RDP) Traffic

Wireshark Tutorial: Decrypting Remote Desktop Protocol (RDP) Traffic


Trusted by government and law enforcement

Unit 42 frequently collaborates with government and law enforcement agencies around the world by sharing threat intelligence and driving real-world consequences for attackers.

Unit 42 ATOMs

Tracking adversary campaigns

Actionable Threat Objects and Mitigations (ATOMs) are discrete products that contain actionable intelligence on one or more adversaries, describing tactics, techniques and procedures as defined by the international MITRE ATT&CK® standard.

Unit 42 Cloud Threat Report Briefing

Unit 42 researchers Jay Chen, senior cloud vulnerability and exploit researcher, and Nathaniel “Q” Quist, senior threat researcher, host a unique opportunity to delve into the depths of the latest Unit 42 Cloud Threat Report.

RAPID RESPONSE

Microsoft Exchange Server Vulnerability

Learn the steps to mitigate exchange server vulnerabilities.

INFOGRAPHIC

Business Email Compromise Prevention Tips

Keep your organization safe from BEC schemes.

BLOG POST

Unit 42 Discovers 15 New Vulnerabilities

MSRC credits Unit 42 researchers with 15 new discoveries.

INFOGRAPHIC

Unit 42 Greatest Hits

See Unit 42's biggest contributions to threat intel research.

See all documents