🏠Home 🚨Threats 🧩Patches 📚Books 🎬Mission Logs

🏷️ #unit42

4 threads tagged with “unit42”

WSUS CVE-2025-59287: Unit 42 Technical Analysis and Hunting Queries

Palo Alto Networks Unit 42 details active exploitation of CVE-2025-59287, including process chains indicating cmd.exe and powershell.exe spawned by wsusservice.exe/w3wp.exe, and exfiltration to Webhoo…

Category: Threat Alerts / Vulnerabilities & Exploits / Vulnerabilities & Exploits

#wsus#cve-2025-59287#unit42#hunting

Cloud Discovery With AzureHound Exposes Misconfigurations in Enterprise Environments

Palo Alto Networks’ Unit 42 released a detailed report on AzureHound, a discovery tool designed to map and audit Azure Active Directory environments. While intended for security auditing, threat actor…

Category: Intelligence / Cloud Security / Cloud Discovery

#azure#cloud#unit42#intel#threat-research

Smishing Triad Linked to 194,000 Malicious Domains in Global Phishing Operation

Unit 42 researchers have attributed over 194,000 malicious domains to a China-linked group known as the Smishing Triad. The campaign leverages disposable infrastructure hosted primarily on U.S. cloud …

Category: Threats / Mobile Security / Phishing

#phishing#smishing#mobile#china#unit42

The Golden Scale: Notable Threat Updates and Looking Ahead

Palo Alto Networks Unit 42 tracks Scattered LAPSUS$ Hunters’ extortion activity after their Oct 10 deadline, observing leaks tied to six companies and chatter about an Extortion‑as‑a‑Service model wit…

Category: Threat Alerts / Threat Intelligence / Threat Intelligence

#extortion#leak-sites#eaas#unit42

Related Tags

WSUS CVE-2025-59287: Unit 42 Technical Analysis and Hunting Queries

Cloud Discovery With AzureHound Exposes Misconfigurations in Enterprise Environments

Smishing Triad Linked to 194,000 Malicious Domains in Global Phishing Operation

The Golden Scale: Notable Threat Updates and Looking Ahead

Explore More Tags