🔥 Our new eBook is out: Modern Threat Hunting - 10 Practical Steps to Outsmart Adversaries. IOC pivots, SSH key tracking, ASN abuse, C2 clustering, all backed by real examples and HuntSQL™ queries. Grab your free copy 👇. #ThreatHunting #CyberSecurity.

🔍 Monitor Active Malware Infrastructure with Hunt’s C2 Feed API. . C2 servers are the backbone of attacker operations, used to control infected systems, exfiltrate data, and deploy payloads. Our C2 Feed API gives you real-time, high-confidence.

🚨 Last week we flagged 22,533 C2 servers in 138 countries, linked to 105 malware families. Top offenders: Keitaro, Tactical RMM, and ARL. This isn't just counting servers. We enrich the data with JA4/JA3, JARM, certificates, and more, giving threat hunters the context they

⚠️ WinRAR Zero-Day (CVE-2025-8088) Actively Exploited by Russian-Linked Group RomCom. A critical directory traversal vulnerability in WinRAR (versions before 7.13) is being weaponized by the RomCom group (also known as Storm-0978). Exploits disguise.

🚩 Researchers Discover XZ Utils Backdoor Still Hiding in Docker Hub Images. Binarly recently revealed that 35 Docker images, many based on Debian, still contain the #XZUtils backdoor (CVE‑2024‑3094) that was inserted into versions 5.6.0 and 5.6.1 in.

Threat hunting in action with Hunt. We uncovered a deceptive malware campaign aimed at Chinese‑speaking users, distributing backdoored installers for Signal, Line, Gmail, and BitBrowser via fake download pages. Domains such as z1.xiaowu[.]pw,.

🚩 Critical WordPress Plugin Vulnerability Affects 70K Sites. A PHP Object Injection flaw (CVE‑2025‑7384) in the “Database for Contact Form 7, WPForms, Elementor Forms” plugin allows unauthenticated attackers to inject PHP objects. With #ContactForm7.

RT @BleepinComputer: ERMAC Android malware source code leak exposes banking trojan infrastructure - @billtoulas. ht….

🧭 Why a Structured Threat Hunting Framework Elevates Cyber Defense. A Threat Hunting Framework isn't just bureaucracy, it’s the engine turning intuition into strategy. It sharpens investigations, improves consistency, and evolves with each hunt, helping.

🚩 SocGholish Malware Spread via Ad Tools Delivers Access to LockBit, Evil Corp & Others. Researchers at Silent Push have uncovered a sophisticated campaign where the #SocGholish malware, known for fake browser-update lures, is now being distributed.

Attackers move fast, hide well, and blend into the background noise of the internet. . To stay ahead, you need more than static IOCs and generic alerts, you need a repeatable way to discover, map, and track adversary infrastructure before it’s used.

🚩 Threat Actors Weaponize Go Packages for Persistent Malware Delivery. Security teams uncovered 11 malicious Go modules, many typosquatting legitimate libraries, embedded with obfuscated code that launches payloads on both Linux and Windows. These.

🚩 Critical “Vault Fault” Flaws in CyberArk & HashiCorp . Expose Secrets Managers.Researchers at Cyata disclosed 14 logic bugs across #CyberArk Conjur and #HashiCorp Vault that enable unauthenticated attackers to bypass authentication, escalate.

Your data sources should work for you. Our APIs deliver enriched IOCs, live C2 feeds, and open directory intel, direct to your tools. → Integrate once, hunt forever.

⚠️ Threat Actors Abuse Microsoft 365 Direct Send to Send Internal-Style Phishing Emails. . Since May 2025, over 70 organizations have been targeted with phishing campaigns that exploit the Direct Send feature in Exchange Online. This method bypasses SPF,.

🚨 𝗛𝘂𝗻𝘁.𝗶𝗼 𝗱𝗶𝘀𝗰𝗼𝘃𝗲𝗿𝘀 𝗳𝘂𝗹𝗹 𝘀𝗼𝘂𝗿𝗰𝗲 𝗰𝗼𝗱𝗲 𝗹𝗲𝗮𝗸 𝗼𝗳 𝗘𝗥𝗠𝗔𝗖 𝗩𝟯.𝟬 𝗯𝗮𝗻𝗸𝗶𝗻𝗴 𝘁𝗿𝗼𝗷𝗮𝗻. Our in-depth analysis covers its backend, frontend panel, exfiltration server, and builder, revealing exploitable weaknesses defenders can use to

RT @volrant136: 🚨 #Phishing the Forces: #Sidewinder Targets #SriLanka’s Defence Sector. Using @Huntio, I searched for webpages having POST….

🚩 ClickFix Malware Campaign Exploits CAPTCHA Lures to Spread Cross-Platform Malware. A new #ClickFix variant is evading downloads entirely, now targeting macOS, Android, and iOS through browser redirects and fake shortener pages. On Android/iOS, the.

🔍 IOC Hunter As Your Key to Smarter Threat Detection. . Hunt’s IOC Hunter uncovers hidden links between domains, IPs, and certs, processes massive datasets, and delivers context you can act on. From hunting to incident response, get the precision you.