Daily Hunt Feed - 2026-05-24

Threat Hunt Feed (2026-05-24)

BleepingComputer

• Laravel Lang packages hijacked to deploy credential-stealing malware — Sat, 23 May 2026 16:48:23 -0400
  • Matched TTPs: Malware (T1588.001), Malicious File (T1204.002), Hardware (T1592.001), SSH (T1021.004), Password Managers (T1555.005), Private Keys (T1552.004), Server (T1584.004), Tool (T1588.002), Software (T1592.002), Credentials (T1589.001), At (T1053.002)

The Hacker News

• npm Adds 2FA-Gated Publishing and Package Install Controls Against Supply Chain Attacks — Sat, 23 May 2026 22:05:10 +0530
  • Matched TTPs: Rootkit (T1014), DNS (T1071.004), Vulnerabilities (T1588.006), Server (T1584.004), Software (T1592.002), Social Media (T1593.001), At (T1053.002)
• Packagist Supply Chain Attack Infects 8 Packages Using GitHub-Hosted Linux Malware — Sat, 23 May 2026 21:37:51 +0530
  • Matched TTPs: Rootkit (T1014), JavaScript (T1059.007), DNS (T1071.004), Malware (T1588.001), Vulnerabilities (T1588.006), Server (T1584.004), Social Media (T1593.001), At (T1053.002)
• Claude Mythos AI Finds 10,000 High-Severity Flaws in Widely Used Software — Sat, 23 May 2026 17:25:35 +0530
  • Matched TTPs: Artificial Intelligence (T1588.007), Rootkit (T1014), DNS (T1071.004), Vulnerabilities (T1588.006), Email Account (T1087.003), Server (T1584.004), Multi-Factor Authentication (T1556.006), Software (T1592.002), Social Media (T1593.001), At (T1053.002)
• Laravel-Lang PHP Packages Compromised to Deliver Cross-Platform Credential Stealer — Sat, 23 May 2026 15:21:13 +0530
  • Matched TTPs: Rootkit (T1014), DNS (T1071.004), Malware (T1588.001), Vulnerabilities (T1588.006), SSH (T1021.004), Private Keys (T1552.004), Server (T1584.004), Shell History (T1552.003), Software (T1592.002), Social Media (T1593.001), Credentials (T1589.001), Windows Credential Manager (T1555.004), Visual Basic (T1059.005)
• Drupal Core SQL Injection Bug Actively Exploited, Added to CISA KEV — Sat, 23 May 2026 12:53:48 +0530
  • Matched TTPs: Rootkit (T1014), DNS (T1071.004), Vulnerabilities (T1588.006), Server (T1584.004), Social Media (T1593.001), At (T1053.002)