Threat Hunt Feed (2026-05-25)
Hacker News: Best
- Amazon Web Services – Four Years and Out — Sun, 24 May 2026 04:51:22 +0000
- Matched TTPs: Hardware (T1592.001), Web Services (T1584.006), Software (T1592.002), At (T1053.002)
- Rubish: A Unix shell written in pure Ruby — Sat, 23 May 2026 06:32:00 +0000
- Matched TTPs: Vulnerabilities (T1588.006), Trap (T1546.005), Launchctl (T1569.001), Tool (T1588.002), Unix Shell (T1059.004), Software (T1592.002), At (T1053.002)
- FBI director’s Based Apparel site has been spotted hosting a ‘ClickFix’ attack — Sat, 23 May 2026 00:34:25 +0000
- Matched TTPs: Artificial Intelligence (T1588.007), Malware (T1588.001), Hardware (T1592.001), Password Managers (T1555.005), AppleScript (T1059.002), Server (T1584.004), Proxy (T1090), Tool (T1588.002), Firmware (T1592.003), Software (T1592.002), Credentials (T1589.001), At (T1053.002)
BleepingComputer
- Ghost CMS SQL injection flaw exploited in large-scale ClickFix campaign — Sun, 24 May 2026 10:12:32 -0400
- Matched TTPs: JavaScript (T1059.007), Malware (T1588.001), Hardware (T1592.001), Vulnerabilities (T1588.006), DLL (T1574.001), Domains (T1584.001), Tool (T1588.002), Software (T1592.002), At (T1053.002)