Daily Hunt Feed - 2026-05-09

Threat Hunt Feed (2026-05-09)

Krebs on Security

• Canvas Breach Disrupts Schools & Colleges Nationwide — Fri, 08 May 2026 02:58:46 +0000
  • Matched TTPs: Defacement (T1491), Email Addresses (T1589.002), Phishing (T1566), Social Media (T1593.001), At (T1053.002)

BleepingComputer

• Zara data breach exposed personal information of 197,000 people — Fri, 08 May 2026 06:42:22 -0400
  • Matched TTPs: Malware (T1588.001), Hardware (T1592.001), Databases (T1213.006), Email Addresses (T1589.002), Business Relationships (T1591.002), Tool (T1588.002), Software (T1592.002), Exploits (T1588.005), Credentials (T1589.001), At (T1053.002)
• Former govt contractor convicted for wiping dozens of federal databases — Fri, 08 May 2026 04:45:04 -0400
  • Matched TTPs: Artificial Intelligence (T1588.007), Malware (T1588.001), Hardware (T1592.001), Databases (T1213.006), Tool (T1588.002), Software (T1592.002), Exploits (T1588.005), Credentials (T1589.001), At (T1053.002)

Darkreading

• VoidStealer Malware Darts Past Google Chrome’s Encryption — Wed, 06 May 2026 21:19:11 GMT
  • Matched TTPs: Keychain (T1555.001), Malware (T1588.001), Vulnerabilities (T1588.006), Masquerading (T1036), Process Hollowing (T1055.012), Credentials (T1589.001), At (T1053.002)

The Hacker News

• TCLBANKER Banking Trojan Targets Financial Platforms via WhatsApp and Outlook Worms — Fri, 08 May 2026 23:42:00 +0530
  • Matched TTPs: Scheduled Task (T1053.005), Screen Capture (T1113), Malware (T1588.001), Vulnerabilities (T1588.006), DLL (T1574.001), Server (T1584.004), Phishing (T1566), Software (T1592.002), Social Media (T1593.001), Installer Packages (T1546.016), At (T1053.002)
• Quasar Linux RAT Steals Developer Credentials for Software Supply Chain Compromise — Fri, 08 May 2026 16:30:00 +0530
  • Matched TTPs: Keylogging (T1056.001), Rootkit (T1014), Malware (T1588.001), Vulnerabilities (T1588.006), SSH (T1021.004), Supply Chain Compromise (T1195), Server (T1584.004), Phishing (T1566), Software (T1592.002), Social Media (T1593.001), Credentials (T1589.001), At (T1053.002)
• New Linux PamDOORa Backdoor Uses PAM Modules to Steal SSH Credentials — Fri, 08 May 2026 14:11:00 +0530
  • Matched TTPs: Malware (T1588.001), Vulnerabilities (T1588.006), SSH (T1021.004), Server (T1584.004), Tool (T1588.002), Phishing (T1566), Software (T1592.002), Social Media (T1593.001), Credentials (T1589.001), At (T1053.002)

보안뉴스 > SECURITY

• 오만 정부 12개 부처 뚫렸다… 이란 연계 해커, 웹쉘과 SQL 동원 공습 — Fri, 8 May 2026 15:02:00 +0900
  • Matched TTPs: Server (T1584.004)