Daily Hunt Feed - 2026-05-06

Threat Hunt Feed (2026-05-06)

BleepingComputer

• New stealthy Quasar Linux malware targets software developers — Tue, 05 May 2026 18:01:39 -0400
  • Matched TTPs: Keylogging (T1056.001), Rootkit (T1014), Malware (T1588.001), Hardware (T1592.001), SSH (T1021.004), Process Injection (T1055), Proxy (T1090), Tool (T1588.002), Software (T1592.002), Exploits (T1588.005), Credentials (T1589.001), At (T1053.002)
• Instructure hacker claims data theft from 8,800 schools, universities — Tue, 05 May 2026 17:20:23 -0400
  • Matched TTPs: Malware (T1588.001), Hardware (T1592.001), Email Addresses (T1589.002), Tool (T1588.002), Software (T1592.002), Exploits (T1588.005), Credentials (T1589.001), At (T1053.002)
• DAEMON Tools trojanized in supply-chain attack to deploy backdoor — Tue, 05 May 2026 15:21:18 -0400
  • Matched TTPs: Malware (T1588.001), Hardware (T1592.001), Server (T1584.004), Code Repositories (T1213.003), Tool (T1588.002), Software (T1592.002), Exploits (T1588.005), Credentials (T1589.001), At (T1053.002)
• The EOL Blind Spot in Your CVE Feed: What SCA Tools Miss — Tue, 05 May 2026 10:00:10 -0400
  • Matched TTPs: Malware (T1588.001), Hardware (T1592.001), Vulnerabilities (T1588.006), Tool (T1588.002), Software (T1592.002), Credentials (T1589.001), At (T1053.002)
• Google now offers up to $1.5 million for some Android exploits — Tue, 05 May 2026 07:24:48 -0400
  • Matched TTPs: Artificial Intelligence (T1588.007), Malware (T1588.001), Hardware (T1592.001), Vulnerabilities (T1588.006), Tool (T1588.002), Software (T1592.002), Exploits (T1588.005), Credentials (T1589.001), At (T1053.002)
• CloudZ malware abuses Microsoft Phone Link to steal SMS and OTPs — Tue, 05 May 2026 06:03:52 -0400
  • Matched TTPs: Scheduled Task (T1053.005), IP Addresses (T1590.005), Malware (T1588.001), Hardware (T1592.001), Domains (T1584.001), Server (T1584.004), CDNs (T1596.004), Tool (T1588.002), Phishing (T1566), Software (T1592.002), Exploits (T1588.005), Credentials (T1589.001), At (T1053.002)
• ScarCruft hackers push BirdCall Android malware via game platform — Tue, 05 May 2026 05:04:13 -0400
  • Matched TTPs: Malware (T1588.001), Hardware (T1592.001), DLL (T1574.001), Tool (T1588.002), Software (T1592.002), Exploits (T1588.005), Credentials (T1589.001), File Deletion (T1070.004), At (T1053.002)
• Researchers report Amazon SES abused in phishing to evade detection — Mon, 04 May 2026 16:03:28 -0400
  • Matched TTPs: IP Addresses (T1590.005), Malware (T1588.001), Hardware (T1592.001), Tool (T1588.002), Phishing (T1566), Multi-Factor Authentication (T1556.006), Software (T1592.002), Exploits (T1588.005), Credentials (T1589.001), At (T1053.002)

Darkreading

• How the Story of a USB Penetration Test Went Viral — Tue, 05 May 2026 11:56:15 GMT
  • Matched TTPs: Malware (T1588.001), Vulnerabilities (T1588.006), Phishing (T1566), At (T1053.002)

The Hacker News

• Critical Apache HTTP/2 Flaw (CVE-2026-23918) Enables DoS and Potential RCE — Tue, 05 May 2026 21:49:00 +0530
  • Matched TTPs: Malware (T1588.001), Vulnerabilities (T1588.006), Server (T1584.004), Phishing (T1566), Software (T1592.002), Social Media (T1593.001), At (T1053.002)
• DAEMON Tools Supply Chain Attack Compromises Official Installers with Malware — Tue, 05 May 2026 21:37:00 +0530
  • Matched TTPs: Digital Certificates (T1587.003), DNS (T1071.004), Malware (T1588.001), Vulnerabilities (T1588.006), Server (T1584.004), Phishing (T1566), Software (T1592.002), Social Media (T1593.001), At (T1053.002)
• China-Linked UAT-8302 Targets Governments Using Shared APT Malware Across Regions — Tue, 05 May 2026 19:49:00 +0530
  • Matched TTPs: Malware (T1588.001), Vulnerabilities (T1588.006), Server (T1584.004), Proxy (T1090), Phishing (T1566), Software (T1592.002), Exploits (T1588.005), Social Media (T1593.001), At (T1053.002)
• The Back Door Attackers Know About — and Most Security Teams Still Haven’t Closed — Tue, 05 May 2026 17:28:00 +0530
  • Matched TTPs: Malware (T1588.001), Vulnerabilities (T1588.006), Server (T1584.004), Tool (T1588.002), Phishing (T1566), Software (T1592.002), Social Media (T1593.001), Credentials (T1589.001), At (T1053.002)
• We Scanned 1 Million Exposed AI Services. Here’s How Bad the Security Actually Is — Tue, 05 May 2026 16:00:00 +0530
  • Matched TTPs: Artificial Intelligence (T1588.007), Malware (T1588.001), Vulnerabilities (T1588.006), Server (T1584.004), Phishing (T1566), Software (T1592.002), Social Media (T1593.001), Credentials (T1589.001), At (T1053.002)
• ScarCruft Hacks Gaming Platform to Deploy BirdCall Malware on Android and Windows — Tue, 05 May 2026 14:37:00 +0530
  • Matched TTPs: Malware (T1588.001), Vulnerabilities (T1588.006), DLL (T1574.001), Server (T1584.004), Cloud Services (T1021.007), Phishing (T1566), Software (T1592.002), Social Media (T1593.001), Python (T1059.006), At (T1053.002)
• Microsoft Details Phishing Campaign Targeting 35,000 Users Across 26 Countries — Tue, 05 May 2026 12:05:00 +0530
  • Matched TTPs: IP Addresses (T1590.005), Malware (T1588.001), Vulnerabilities (T1588.006), Domains (T1584.001), Server (T1584.004), Phishing (T1566), Multi-Factor Authentication (T1556.006), Software (T1592.002), Social Media (T1593.001), Credentials (T1589.001), At (T1053.002)

데일리시큐 - 최근인기기사

• 시패널 보안취약점, 공개 직후 정부·군·호스팅망 공격에 악용 — 2026-05-05 13:36:24
  • Matched TTPs: DNS (T1071.004)