Threat Hunt Feed (2026-05-04)
Hacker News: Best
- Utah to hold websites liable for users who mask their location with VPNs — Sun, 03 May 2026 14:36:14 +0000
- Matched TTPs: Artificial Intelligence (T1588.007), Malware (T1588.001), Hardware (T1592.001), Databases (T1213.006), Server (T1584.004), Trap (T1546.005), Search Engines (T1593.002), Proxy (T1090), Tool (T1588.002), Software (T1592.002), At (T1053.002)
- A couple million lines of Haskell: Production engineering at Mercury — Sun, 03 May 2026 00:01:14 +0000
- Matched TTPs: Cron (T1053.003), Native API (T1106), Server (T1584.004), Proxy (T1090), Tool (T1588.002), Software (T1592.002), Python (T1059.006), At (T1053.002)
BleepingComputer
- Telegram Mini Apps abused for crypto scams, Android malware delivery — Sun, 03 May 2026 10:11:21 -0400
- Matched TTPs: Malware (T1588.001), Hardware (T1592.001), Domains (T1584.001), Tool (T1588.002), Phishing (T1566), Software (T1592.002), Exploits (T1588.005), Social Media (T1593.001), At (T1053.002)
The Hacker News
- CISA Adds Actively Exploited Linux Root Access Bug CVE-2026-31431 to KEV — Sun, 03 May 2026 11:56:00 +0530
- Matched TTPs: Malware (T1588.001), Vulnerabilities (T1588.006), SSH (T1021.004), Server (T1584.004), Software (T1592.002), Social Media (T1593.001), Python (T1059.006), At (T1053.002)