Threat Hunt Feed (2026-04-25)
Hacker News: Best
- Norway set to become latest country to ban social media for under 16s — Fri, 24 Apr 2026 14:45:10 +0000
- Matched TTPs: Social Media (T1593.001)
BleepingComputer
- Firestarter malware survives Cisco firewall updates, security patches — Fri, 24 Apr 2026 16:34:08 -0400
- Matched TTPs: Malware (T1588.001), Hardware (T1592.001), Private Keys (T1552.004), Tool (T1588.002), Firmware (T1592.003), Software (T1592.002), Exploits (T1588.005), Credentials (T1589.001), At (T1053.002)
- Microsoft to roll out Entra passkeys on Windows in late April — Fri, 24 Apr 2026 14:13:55 -0400
- Matched TTPs: Malware (T1588.001), Hardware (T1592.001), Device Registration (T1098.005), Tool (T1588.002), Phishing (T1566), Credential Stuffing (T1110.004), Software (T1592.002), Exploits (T1588.005), Credentials (T1589.001), Conditional Access Policies (T1556.009), At (T1053.002)
Darkreading
- US Busts Myanmar Ring Targeting US Citizens in Financial Fraud — Fri, 24 Apr 2026 16:48:04 GMT
- Matched TTPs: Domains (T1584.001)
- AI Phishing Is No. 1 With a Bullet for Cyberattackers — Fri, 24 Apr 2026 13:30:00 GMT
- Matched TTPs: Phishing (T1566)
- Tropic Trooper APT Takes Aim at Home Routers, Japanese Targets — Fri, 24 Apr 2026 01:00:00 GMT
- Matched TTPs: At (T1053.002)
The Hacker News
- FIRESTARTER Backdoor Hit Federal Cisco Firepower Device, Survives Security Patches — Fri, 24 Apr 2026 22:36:00 +0530
- Matched TTPs: Sharepoint (T1213.002), Bootkit (T1542.003), Malware (T1588.001), Browser Extensions (T1176.001), Vulnerabilities (T1588.006), Botnet (T1584.005), Server (T1584.004), Proxy (T1090), Phishing (T1566), Firmware (T1592.003), Software (T1592.002), Social Media (T1593.001), Credentials (T1589.001), At (T1053.002)
- NASA Employees Duped in Chinese Phishing Scheme Targeting U.S. Defense Software — Fri, 24 Apr 2026 19:43:00 +0530
- Matched TTPs: Sharepoint (T1213.002), Malware (T1588.001), Browser Extensions (T1176.001), Vulnerabilities (T1588.006), Masquerading (T1036), Server (T1584.004), Phishing (T1566), Software (T1592.002), Social Media (T1593.001), Credentials (T1589.001), At (T1053.002)
- 26 FakeWallet Apps Found on Apple App Store Targeting Crypto Seed Phrases — Fri, 24 Apr 2026 17:18:00 +0530
- Matched TTPs: Sharepoint (T1213.002), Malware (T1588.001), Browser Extensions (T1176.001), Vulnerabilities (T1588.006), Private Keys (T1552.004), Server (T1584.004), Malicious Library (T1204.005), Phishing (T1566), Social Media (T1593.001), Credentials (T1589.001), At (T1053.002)
- LMDeploy CVE-2026-33626 Flaw Exploited Within 13 Hours of Disclosure — Fri, 24 Apr 2026 12:54:00 +0530
- Matched TTPs: Sharepoint (T1213.002), Artificial Intelligence (T1588.007), IP Addresses (T1590.005), DNS (T1071.004), Malware (T1588.001), Browser Extensions (T1176.001), Vulnerabilities (T1588.006), Server (T1584.004), Phishing (T1566), Exploits (T1588.005), Social Media (T1593.001), Credentials (T1589.001), At (T1053.002)
- UNC6692 Impersonates IT Help Desk via Microsoft Teams to Deploy SNOW Malware — Thu, 23 Apr 2026 23:46:00 +0530
- Matched TTPs: Sharepoint (T1213.002), JavaScript (T1059.007), Malware (T1588.001), Browser Extensions (T1176.001), Vulnerabilities (T1588.006), Upload Tool (T1608.002), Server (T1584.004), Windows Remote Management (T1021.006), Cloud Services (T1021.007), PowerShell (T1059.001), Tool (T1588.002), Phishing (T1566), Software (T1592.002), Social Media (T1593.001), Credentials (T1589.001), Email Bombing (T1667), Impersonation (T1656), Python (T1059.006), At (T1053.002)
데일리시큐 - 최근인기기사
- 비트워든 CLI 공급망 공격…깃허브·클라우드·npm·SSH 키 탈취 시도 — 2026-04-24 19:16:31
- Matched TTPs: SSH (T1021.004)