Posts 2026 03 26 Daily Hunt Feed - 2026-03-26
Post
Cancel

Daily Hunt Feed - 2026-03-26

Fullstackreverser Mar 26 2026-03-26T09:02:04+09:00
4 min

Threat Hunt Feed (2026-03-26)

Hacker News: Best

BleepingComputer

  • GitHub adds AI-powered bug detection to expand security coverage — Wed, 25 Mar 2026 19:23:39 -0400
    • Matched TTPs: Artificial Intelligence (T1588.007), Malware (T1588.001), Hardware (T1592.001), Vulnerabilities (T1588.006), Tool (T1588.002), Software (T1592.002), Credentials (T1589.001), At (T1053.002)
  • Bubble AI app builder abused to steal Microsoft account credentials — Wed, 25 Mar 2026 15:48:36 -0400
    • Matched TTPs: Adversary-in-the-Middle (T1557), Artificial Intelligence (T1588.007), JavaScript (T1059.007), Malware (T1588.001), Hardware (T1592.001), Tool (T1588.002), Phishing (T1566), Software (T1592.002), Credentials (T1589.001), At (T1053.002)
  • New Torg Grabber infostealer malware targets 728 crypto wallets — Wed, 25 Mar 2026 14:32:37 -0400
    • Matched TTPs: Malware (T1588.001), Hardware (T1592.001), Browser Extensions (T1176.001), DLL (T1574.001), Password Managers (T1555.005), Domains (T1584.001), Server (T1584.004), PowerShell (T1059.001), Tool (T1588.002), Software (T1592.002), Credentials (T1589.001), At (T1053.002)
  • Citrix urges admins to patch NetScaler flaws as soon as possible — Wed, 25 Mar 2026 11:52:10 -0400
    • Matched TTPs: Malware (T1588.001), Hardware (T1592.001), Vulnerabilities (T1588.006), Proxy (T1090), Tool (T1588.002), Software (T1592.002), Credentials (T1589.001)
  • Paid AI Accounts Are Now a Hot Underground Commodity — Wed, 25 Mar 2026 10:02:12 -0400
    • Matched TTPs: Artificial Intelligence (T1588.007), Malware (T1588.001), Hardware (T1592.001), Email Accounts (T1585.002), Tool (T1588.002), Phishing (T1566), Multi-Factor Authentication (T1556.006), Software (T1592.002), Credentials (T1589.001), Impersonation (T1656), At (T1053.002)
  • TP-Link warns users to patch critical router auth bypass flaw — Wed, 25 Mar 2026 07:11:00 -0400
    • Matched TTPs: DNS (T1071.004), Malware (T1588.001), Hardware (T1592.001), Vulnerabilities (T1588.006), Botnet (T1584.005), Server (T1584.004), Tool (T1588.002), Firmware (T1592.003), Software (T1592.002), Credentials (T1589.001)
  • Manager of botnet used in ransomware attacks gets 2 years in prison — Wed, 25 Mar 2026 04:47:29 -0400
    • Matched TTPs: IP Addresses (T1590.005), Malware (T1588.001), Hardware (T1592.001), Botnet (T1584.005), Tool (T1588.002), Phishing (T1566), Software (T1592.002), Credentials (T1589.001), At (T1053.002)

Darkreading

The Hacker News

  • GlassWorm Malware Uses Solana Dead Drops to Deliver RAT and Steal Browser, Crypto Data — Wed, 25 Mar 2026 19:56:00 +0530
    • Matched TTPs: Windows Management Instrumentation (T1047), JavaScript (T1059.007), Malware (T1588.001), Hardware (T1592.001), Vulnerabilities (T1588.006), Masquerading (T1036), Server (T1584.004), Trap (T1546.005), Proxy (T1090), Tool (T1588.002), Phishing (T1566), Firmware (T1592.003), Social Media (T1593.001), Credentials (T1589.001), Python (T1059.006), Dead Drop Resolver (T1102.001)
  • The Kill Chain Is Obsolete When Your AI Agent Is the Threat — Wed, 25 Mar 2026 17:28:00 +0530
    • Matched TTPs: Sharepoint (T1213.002), Artificial Intelligence (T1588.007), Malware (T1588.001), Vulnerabilities (T1588.006), Server (T1584.004), Trap (T1546.005), Phishing (T1566), Social Media (T1593.001), Credentials (T1589.001), At (T1053.002)
  • Russian Hacker Sentenced to 2 Years for TA551 Botnet-Driven Ransomware Attacks — Wed, 25 Mar 2026 17:22:00 +0530
    • Matched TTPs: Malware (T1588.001), Vulnerabilities (T1588.006), Botnet (T1584.005), Server (T1584.004), Trap (T1546.005), Phishing (T1566), Software (T1592.002), Social Media (T1593.001), Credentials (T1589.001), Acquire Access (T1650), At (T1053.002)
  • Device Code Phishing Hits 340+ Microsoft 365 Orgs Across Five Countries via OAuth Abuse — Wed, 25 Mar 2026 17:04:00 +0530
    • Matched TTPs: IP Addresses (T1590.005), Malware (T1588.001), Vulnerabilities (T1588.006), Domains (T1584.001), Server (T1584.004), Trap (T1546.005), Tool (T1588.002), Phishing (T1566), Exploits (T1588.005), Social Media (T1593.001), Credentials (T1589.001), Impersonation (T1656), At (T1053.002)
  • TeamPCP Backdoors LiteLLM Versions 1.82.7–1.82.8 via Trivy CI/CD Compromise — Tue, 24 Mar 2026 23:51:00 +0530
    • Matched TTPs: Malware (T1588.001), Vulnerabilities (T1588.006), SSH (T1021.004), Server (T1584.004), Trap (T1546.005), Proxy (T1090), Phishing (T1566), Software (T1592.002), Social Media (T1593.001), Credentials (T1589.001), Python (T1059.006), Systemd Service (T1543.002), At (T1053.002)

데일리시큐 - 최근인기기사

security, hunt
threat-hunting ttp mitre-attack
This post is licensed under CC BY 4.0 by the author.
Contents

Daily Security Feed - 2026-03-25

Daily Security Feed - 2026-03-26

Comments powered by Disqus.