Skip to main content
FreeIntelHub
Feed Threat Feed Search Trending
Intelligence CVE Priority Vulnerability IOC Lookup IOC Feed YARA Rules Phishing Lookup Exploit Lookup Pastes Dark Web
Adversaries Threat Groups Software Campaigns
Explore Dashboard Geo Map Heatmap MITRE ATT&CK
Browse Sources Vendors Categories Sectors
RSS API
FreeIntelHub
/
Sign In

Defense

20 articles

Help Net Security Data Breach Microsoft May 18

The AI backdoor your security stack is not built to see

Enterprises deploying LLMs have spent the past two years building defenses around a reasonable assumption: malicious behavior leaves a trace in the input. Sc...

Help Net Security →

GBHackers Vulnerability Disclosure Apple Linux May 18

Researchers Build First Public Apple M5 macOS Kernel Exploit with Mythos Preview

Security researchers have unveiled the first publicly known macOS kernel memory corruption exploit targeting Apple’s latest M5 silicon, marking a significant...

T1068

GBHackers →

Cyberscoop General May 18

Former CISA nominee Sean Plankey named US CEO of defense startup

UFORCE, a London-based company founded by Ukrainians, is looking to make drones in America. The post Former CISA nominee Sean Plankey named US CEO of defense...

Cyberscoop →

Mandiant Blog TTPs Google Intel May 15

Welcome to BlackFile: Inside a Vishing Extortion Operation

Written by: Austin Larsen, Tyler McLellan, Genevieve Stark, Dan Ebreo Introduction Google Threat Intelligence Group (GTIG) has continued to track an expansiv...

T1566 T1557

Mandiant Blog →

GBHackers Campaigns Microsoft May 15

Microsoft Exposes Kazuar Malware’s Modular P2P Botnet Architecture

Microsoft has revealed new technical insights into Kazuar, a long-running malware linked to the Russian state-backed group Secret Blizzard, highlighting its ...

GBHackers →

GBHackers Vulnerability Disclosure May 15

Hackers Exploit Scheduled Tasks for Persistence in FrostyNeighbor Attacks

Hackers linked to the long-running FrostyNeighbor cyber‑espionage group have intensified attacks against Ukrainian government organizations, deploying update...

T1053

GBHackers →

Cyberscoop General May 14

Pentagon cyber official calls advanced AI ‘revolutionary warfare’

Paul Lyons, principal deputy assistant secretary for cyber policy, also discussed the importance of cyber offense. The post Pentagon cyber official calls adv...

Cyberscoop →

CSO Online Vulnerability Disclosure Linux May 14

Meet Fragnesia, the third Linux kernel vulnerability in a month

Linux admins reeling from handling last month’s CopyFail and last week’s Dirty Frag kernel vulnerabilities have a new headache to deal with: Fragnesia. “This...

CSO Online →

Microsoft Security Blog General Microsoft May 14

Defense in depth for autonomous AI agents

As AI agents gain autonomy, defense in depth must evolve, with application-layer design, identity, and human oversight at the center. The post Defense in dep...

Microsoft Security Blog →

Infosecurity Magazine Campaigns May 14

Mustang Panda Linked to Updated FDMTP Backdoor in Asia-Pacific Espionage Campaign

Mustang Panda campaign deploys updated FDMTP backdoor against Asia-Pacific and Japan networks

Infosecurity Magazine →

Microsoft Security Blog Campaigns Microsoft May 14

Kazuar: Anatomy of a nation-state botnet

Kazuar, a sophisticated malware family attributed to the Russian state actor Secret Blizzard, has been under constant development for years and continues to ...

Microsoft Security Blog →

The Hacker News Campaigns May 14

Ghostwriter Targets Ukrainian Government With Geofenced PDF Phishing, Cobalt Strike

The Belarus-aligned threat group known as Ghostwriter has been attributed to a fresh set of attacks targeting governmental organizations in Ukraine. Active s...

T1566

The Hacker News →

CSO Online Campaigns Oracle GitHub May 14

FlowerStorm phishing gang adopts virtual-machine obfuscation to evade email defenses

A widely active phishing-as-a-service (PhaaS) operation known as FlowerStorm has begun using a browser-based virtual machine to conceal credential theft code...

T1566 T1078 T1027

CSO Online →

Qualys Blog General Qualys May 14

FedRAMP High Authorized: Qualys TotalCloud CNAPP – From Compliance to Defense 

Qualys TotalCloud™ has achieved FedRAMP High Authorization, marking a major milestone in delivering validated cloud security and compliance assurance for hig...

Qualys Blog →

Help Net Security Campaigns May 14

Cofense adds AI-powered campaign detection to stop phishing attacks

Cofense has announced new advancements to its Phishing Defense Platform aimed at improving detection and response to AI-powered phishing attacks. The updates...

T1566

Help Net Security →

GBHackers Data Breach Microsoft May 14

Chinese APT Exploits Microsoft Exchange to Breach Energy Sector Network

Chinese state-aligned hackers compromised a Microsoft Exchange server at a major energy firm. They repeatedly reused that same entry point to run a months‑lo...

GBHackers →

HackRead Malware Apple May 14

China-Linked Twill Typhoon Uses Fake Apple and Yahoo Sites for Espionage

A new Darktrace report reveals how Chinese hackers use fake Apple and Yahoo sites and the FDMTP malware framework to spy on organisations.

HackRead →

ESET Research General May 14

FrostyNeighbor: Fresh mischief and digital shenanigans

ESET researchers uncovered new activities attributed to FrostyNeighbor, updating its compromise chain to support the group’s continual cyberespionage operations

ESET Research →

Security Affairs Campaigns May 14

FamousSparrow targets Azerbaijani energy sector in multi-wave espionage campaign

Chinese-linked FamousSparrow repeatedly targeted an Azerbaijani oil and gas company, reusing the same entry point in three intrusions from Dec 2025 to Feb 2026.

Security Affairs →

GBHackers Campaigns Intel May 14

Seedworm APT Abuses Signed Binaries for DLL Sideloading

Seedworm also known as MuddyWater, Temp Zagros, and Static Kitten is widely attributed to Iran’s Ministry of Intelligence and Security (MOIS). An Iran-linked...

GBHackers →

«Previous page 1 ... 10 11 12 13 14 ... 17 Next page»
FreeIntelHub · Open-source CTI platform

All articles belong to their respective owners. FreeIntelHub aggregates publicly available RSS feeds for informational purposes only. DMCA