Threat Advisories:
Inside the PHANTOMPULSE Social Engineering Kill Chain Payouts King Ransomware Blending In Before Breaking Through MCPwn: Critical Nginx UI Bug Opens the Door to Remote Control Microsoft’s April 2026 Patch Tuesday Storm-2755’s Silent Payroll Heist Targeting Canada From Advisory to Attack in Under 10 Hours: Marimo’s Critical RCE Flaw Handala Claims Destructive Wiper Attack on GCC Nation’s Critical Infrastructure Active Exploitation of Critical Adobe Prototype Pollution Flaw Masjesu: Exploit-Driven Botnet with Stealth, Scale, and Staying Power UAT-10362 Deploys LucidRook Malware Against Taiwanese NGOs Pawn Storm’s Dual Zero-Day Exploit Unleashed Important according to Google magic Iranian-Affiliated CyberAv3ngers Exploits Internet-Exposed PLCs in U.S. APT28 Exploits SOHO Routers for Large-Scale DNS Hijacking and Credential Theft Spraying for Access: Iran-Aligned Actors Turn Weak Credentials into Intelligence TrueConf Zero-Day Abused in Operation TrueChaos to Weaponize Software Updates Fortinet EMS Left Defenseless by CVE-2026-35616 Axios npm Supply Chain Attack: What You Need to Know CVE-2026-5281: Chrome Dawn Flaw Sparks In-the-Wild Zero-Day Attacks CVE-2026-3055: Silent Memory Leak in NetScaler Actively Exploited Tracking Beast: Tools, Techniques, and Tradecraft in RaaS Operations
New Report Critical Threat Research : The Iranian Cyber War Intensifies! Download the Report
Platform
Comprehensive Threat Exposure Management Platform
Uni5 Xposure PlatformUni5 Xposure leverages exposure assessment and adversarial exposure validation to deliver a unified view of your cyber risks and all actionable pathways to resolve them. Powered by:
IntegrationsOut of box integrations available with a comprehensive set of Security and IT operations tools in your organisation.
HiveForce LabsThe in-house intelligence that enables customers to identify and address immediate cyber risks and potential threats with precision, clear insights, and swift action.
Hive Pro’s ComparisonSave Cost , Reduce Complexity and Increase Security by Augmenting and Replacing your existing Vulnerability Management platform
Hive Pro vs Rapid7
Hive Pro vs Tenable
Hive Pro vs Qualys
Hive Pro vs Nucleus Security
Solutions
By Use Case
Total Attack Surface Management
Multi-Environment Security Scanners
Complete Exposure Assessment
Comprehensive Security Intelligence
Vulnerability & Threat Prioritization
Adversarial Exposure Validation
By Role
CISO
Vulnerability Management
Security Operations
DevOps
Industry
Telecommunications
Healthcare
Financial Services
Government & Public Sector
Retail & E-Commerce
Educational Institutions
Resources
Learning Center
Podcasts
Threat Advisories
Threat Digests
Blog
Whitepapers
Resources
Advisories & Digests
Threat Advisories
Threat Digests
Content Library
learn
Blog
Whitepapers
Press Releases
connect
Webinars & Videos
Company
About Us
Careers
Our Leadership
Contact Us
Book a DemoFree Iranian Exposure Assessment
Platform
Platform
Comprehensive Threat Exposure Management Platform
Uni5 Xposure PlatformUni5 Xposure leverages exposure assessment and adversarial exposure validation to deliver a unified view of your cyber risks and all actionable pathways to resolve them. Powered by:
IntegrationsOut of box integrations available with a comprehensive set of Security and IT operations tools in your organisation.
HiveForce LabsThe in-house intelligence that enables customers to identify and address immediate cyber risks and potential threats with precision, clear insights, and swift action.
Hive Pro’s Comparison
Hive Pro vs Rapid7
Hive Pro vs Tenable
Hive Pro vs Qualys
Hive Pro vs Nucleus Security
Solutions
Solutions
By Use Case
Total Attack Surface Management
Multi-Environment Security Scanners
Complete Exposure Assessment
Comprehensive Security Intelligence
Vulnerability & Threat Prioritization
Adversarial Exposure Validation
By Role
CISO
Vulnerability Management
Security Operations
DevOps
Industry
Industry
Telecommunications
Healthcare
Financial Services
Government & Public Sector
Retail & E-Commerce
Educational Institutions
Resources
Resources
Learning Center
Podcasts
Threat Advisories
Threat Digests
Blog
Whitepapers
Resources
Resources
Advisories & Digests
Threat Advisories
Threat Digests
Content Library
learn
Blog
Whitepapers
Press Releases
connect
Webinars & Videos
Company
Company
About Us
Careers
Our Leadership
Contact Us
Book a DemoFree Iranian Exposure Assessment

Threat Advisories

Expert threat advisories published daily by HiveForce Labs, covering ransomware campaigns, advanced persistent threats (APTs), critical vulnerabilities, and malware analysis. Each advisory provides detailed intelligence on threat characteristics, potential impact, and recommended remediation steps to help security teams take immediate, informed action.

Strengthen Your Defenses With the Latest Intelligence

Amber | Attack Report
Inside the PHANTOMPULSE Social Engineering Kill Chain
Summary PHANTOMPULSE is a sophisticated attack campaign (REF6598) first observed on February April 20, 2026
Red | Attack Report
Payouts King Ransomware Blending In Before Breaking Through
Summary Payouts King ransomware emerged in April 2025 as a sophisticated ransomware April 20, 2026
Red | Vulnerability Report
MCPwn: Critical Nginx UI Bug Opens the Door to Remote Control
Summary CVE-2026-33032, dubbed MCPwn by security researchers, exposes a critical authentication bypass April 20, 2026
Red | Vulnerability Report
Microsoft’s April 2026 Patch Tuesday
Summary Microsoft’s April 2026 Patch Tuesday addresses 165 critical security vulnerabilities across April 20, 2026
Red | Attack Report
Storm-2755’s Silent Payroll Heist Targeting Canada
Summary Storm-2755 represents a sophisticated cybersecurity attack targeting Canadian employees through a April 20, 2026
Red | Vulnerability Report
From Advisory to Attack in Under 10 Hours: Marimo’s Critical RCE Flaw
Summary CVE-2026-39987 represents a critical pre-authenticated remote code execution vulnerability affecting Marimo, April 15, 2026
Red | Vulnerability Report
Handala Claims Destructive Wiper Attack on GCC Nation’s Critical Infrastructure
Summary On April 12, 2026, the Iran-affiliated threat group Handala Hack Team, April 14, 2026
Red | Vulnerability Report
Active Exploitation of Critical Adobe Prototype Pollution Flaw
Summary CVE-2026-34621 represents a critical prototype pollution vulnerability affecting Adobe Acrobat DC, April 14, 2026
1 2 236

HiveForce Labs Research At Your Fingertips

Stay informed with HiveForce Labs as they provide comprehensive insights into the latest vulnerabilities, threats, and threat actor activities.

Subscribe below to receive in-depth weekly and monthly updates, along with daily and weekly advisories designed to help you proactively manage and mitigate cybersecurity risks.

Subscribe Here