Threat Advisories

Expert threat advisories published daily by HiveForce Labs, covering ransomware campaigns, advanced persistent threats (APTs), critical vulnerabilities, and malware analysis. Each advisory provides detailed intelligence on threat characteristics, potential impact, and recommended remediation steps to help security teams take immediate, informed action.

Strengthen Your Defenses With the Latest Intelligence

Amber | Attack Report

Inside Storm-2949’s Cloud Takeover Campaign Targeting Microsoft 365 and Azure

Summary Storm-2949, a sophisticated threat actor first seen in 2026, has been May 21, 2026

Red | Vulnerability Report

Dead.Letter Walking: Unauthenticated RCE Stalks Exim Mail Servers

Summary CVE-2026-45185, known as Dead.Letter, is a critical unauthenticated remote code execution May 21, 2026

Amber | Vulnerability Report

One Million WordPress Sites at Risk: Avada Builder Flaws Expose Sensitive Data

Summary Two newly disclosed security vulnerabilities in the widely used Avada Builder May 21, 2026

Red | Vulnerability Report

Three Strikes in Two Weeks: Fragnesia Joins the Dirty Frag Family

Summary Fragnesia (CVE-2026-46300) is a critical local privilege escalation vulnerability discovered in May 21, 2026

Red | Vulnerability Report

Critical NGINX Vulnerabilities Including 18-Year-Old RCE Flaw Actively Exploited

Summary F5 has released emergency security patches addressing six critical vulnerabilities in May 21, 2026

Red | Vulnerability Report

Active Exploitation of CVE-2026-42897 Targets Microsoft Exchange Servers

Summary Microsoft has confirmed active exploitation of CVE-2026-42897, a critical cross-site scripting May 21, 2026

Red | Attack Report

FamousSparrow’s Persistent Hold on Azerbaijani Oil & Gas

Summary The China-linked FamousSparrow APT group (also tracked as UNC2286, GhostEmperor, RedMike, May 18, 2026

Red | Vulnerability Report

Cisco SD-WAN Authentication Bypass Exploited in Zero-Day Attacks

Summary Cisco Systems is urgently warning customers about a critical zero-day vulnerability May 18, 2026

1 2 … 240

HiveForce Labs Research At Your Fingertips

Stay informed with HiveForce Labs as they provide comprehensive insights into the latest vulnerabilities, threats, and threat actor activities.

Subscribe below to receive in-depth weekly and monthly updates, along with daily and weekly advisories designed to help you proactively manage and mitigate cybersecurity risks.

Subscribe Here

HiveForce Labs threat advisories help security teams turn daily exploit activity into action. For teams evaluating how AI can prioritize advisories and active exploitation, see our guide to AI cybersecurity tools.