unit 42 Archives - The CISO Brief

Browsing: unit 42

Rising Threats: Extortion Crews Speedrun the Scattered Spider Playbook

By Staff WriterApril 30, 2026

Essential Insights Two threat groups, Cordial Spider and Snarky Spider, affiliated with The Com, are…

BlackFile Threatens Retail & Hospitality Data Victims

By Staff WriterApril 27, 2026

Summary Points Researchers warn that BlackFile, an extortion group linked to The Com, uses voice-phishing…

Stryker Uncovers Non-Propagating Ransomware Threat Actor

By Staff WriterMarch 26, 2026

Summary Points Stryker recently experienced a cybersecurity incident involving a malicious file used to conceal…

Walking the Edge: When Saving a Company Crosses into Crime

By Staff WriterJanuary 21, 2026

Summary Points Ransomware negotiation is an unregulated, secretive practice with no standardized industry standards, creating…

Inside Vercel’s Sleep-Deprived Race to Contain React2Shell

By Staff WriterJanuary 8, 2026

Fast Facts Talha Tariq and his team at Vercel responded swiftly to the discovery of…

React2Shell Fallout: Widespread Targeting Amid Surge in Public Exploits

By Staff WriterDecember 17, 2025

Fast Facts React2Shell (CVE-2025-55182) is a critical, widely exploited vulnerability disclosed on Dec. 3, impacting…

Critical React2Shell Vulnerability Sparks Wave of Attacks, Over 50 Victims Confirmed

By Staff WriterDecember 11, 2025

Top Highlights Security experts report a rapid increase in exploitation attempts of the React2Shell vulnerability,…

React Bug Sparks Debate Over Proof Amid Attackers’ Claims

By Staff WriterDecember 5, 2025

Summary Points The React2Shell vulnerability (CVE-2025-55182), affecting React Server Components, was publicly disclosed and quickly…

Attackers Bypass Patch Using Deprecated Windows Server Update Tool

By Staff WriterOctober 27, 2025

Fast Facts Attackers are actively exploiting a critical Windows Server Update Services vulnerability (CVE-2025-59287), bypassing…

Researchers Detect Rise in High-Level Smishing Triad Attacks

By Staff WriterOctober 23, 2025

Top Highlights The "Smishing Triad" phishing operation, managed in Chinese and involving thousands of actors,…

What's Hot

Critical 0-Day Exploitation Allows Unauthorized Admin Access via Cisco Catalyst SD-WAN Controller

Unlock Cyber Resilience: Rapid7’s Unified GRC Early Access Program

Chinese APT Hackers Exploit Microsoft Exchange to Breach Energy Sector

Browsing: unit 42

Rising Threats: Extortion Crews Speedrun the Scattered Spider Playbook

BlackFile Threatens Retail & Hospitality Data Victims

Stryker Uncovers Non-Propagating Ransomware Threat Actor

Walking the Edge: When Saving a Company Crosses into Crime

Inside Vercel’s Sleep-Deprived Race to Contain React2Shell

React2Shell Fallout: Widespread Targeting Amid Surge in Public Exploits

Critical React2Shell Vulnerability Sparks Wave of Attacks, Over 50 Victims Confirmed

React Bug Sparks Debate Over Proof Amid Attackers’ Claims

Attackers Bypass Patch Using Deprecated Windows Server Update Tool

Researchers Detect Rise in High-Level Smishing Triad Attacks

Critical 0-Day Exploitation Allows Unauthorized Admin Access via Cisco Catalyst SD-WAN Controller

Chinese APT Hackers Exploit Microsoft Exchange to Breach Energy Sector

Sandworm Hackers Shift Focus from IT to Critical OT Assets

TeamPCP & BreachForums Hackers Launch $1,000 Contest Targeting Supply Chain Attacks

Our Picks

Critical 0-Day Exploitation Allows Unauthorized Admin Access via Cisco Catalyst SD-WAN Controller

Unlock Cyber Resilience: Rapid7’s Unified GRC Early Access Program

Chinese APT Hackers Exploit Microsoft Exchange to Breach Energy Sector

Most Popular

Protecting MCP Security: Defeating Prompt Injection & Tool Poisoning

Unlock the Power of Free WormGPT: Harnessing DeepSeek, Gemini, and Kimi-K2 AI Models

The New Face of DDoS is Impacted by AI

Archives

Categories

Subscribe to Updates

What's Hot

Browsing: unit 42