Threat Advisories:
From Advisory to Attack in Under 10 Hours: Marimo’s Critical RCE Flaw Handala Claims Destructive Wiper Attack on GCC Nation’s Critical Infrastructure Active Exploitation of Critical Adobe Prototype Pollution Flaw Masjesu: Exploit-Driven Botnet with Stealth, Scale, and Staying Power UAT-10362 Deploys LucidRook Malware Against Taiwanese NGOs Pawn Storm’s Dual Zero-Day Exploit Unleashed Important according to Google magic Iranian-Affiliated CyberAv3ngers Exploits Internet-Exposed PLCs in U.S. APT28 Exploits SOHO Routers for Large-Scale DNS Hijacking and Credential Theft Spraying for Access: Iran-Aligned Actors Turn Weak Credentials into Intelligence TrueConf Zero-Day Abused in Operation TrueChaos to Weaponize Software Updates Fortinet EMS Left Defenseless by CVE-2026-35616 Axios npm Supply Chain Attack: What You Need to Know CVE-2026-5281: Chrome Dawn Flaw Sparks In-the-Wild Zero-Day Attacks CVE-2026-3055: Silent Memory Leak in NetScaler Actively Exploited Tracking Beast: Tools, Techniques, and Tradecraft in RaaS Operations FAUX#ELEVATE: Obfuscated VBS Campaign Targeting Enterprise HR System TeamPCP’s Automated Supply Chain: From Trivy to LiteLLM in a Multi-Ecosystem Breach Iranian MOIS Leverages Telegram-Based C2 in Espionage Campaign Targeting Dissidents MuddyWater: Iran’s Adaptive Cyber Espionage Machine March 2026 Linux Patch Roundup
New Report Critical Threat Research : The Iranian Cyber War Intensifies! Download the Report
Platform
Comprehensive Threat Exposure Management Platform
Uni5 Xposure PlatformUni5 Xposure leverages exposure assessment and adversarial exposure validation to deliver a unified view of your cyber risks and all actionable pathways to resolve them. Powered by:
IntegrationsOut of box integrations available with a comprehensive set of Security and IT operations tools in your organisation.
HiveForce LabsThe in-house intelligence that enables customers to identify and address immediate cyber risks and potential threats with precision, clear insights, and swift action.
Hive Pro’s ComparisonSave Cost , Reduce Complexity and Increase Security by Augmenting and Replacing your existing Vulnerability Management platform
Hive Pro vs Rapid7
Hive Pro vs Tenable
Hive Pro vs Qualys
Hive Pro vs Nucleus Security
Solutions
By Use Case
Total Attack Surface Management
Multi-Environment Security Scanners
Complete Exposure Assessment
Comprehensive Security Intelligence
Vulnerability & Threat Prioritization
Adversarial Exposure Validation
By Role
CISO
Vulnerability Management
Security Operations
DevOps
Industry
Telecommunications
Healthcare
Financial Services
Government & Public Sector
Retail & E-Commerce
Educational Institutions
Resources
Learning Center
Podcasts
Threat Advisories
Threat Digests
Blog
Whitepapers
Resources
Advisories & Digests
Threat Advisories
Threat Digests
Content Library
learn
Blog
Whitepapers
Press Releases
connect
Webinars & Videos
Company
About Us
Careers
Our Leadership
Contact Us
Book a DemoFree Iranian Exposure Assessment
Platform
Platform
Comprehensive Threat Exposure Management Platform
Uni5 Xposure PlatformUni5 Xposure leverages exposure assessment and adversarial exposure validation to deliver a unified view of your cyber risks and all actionable pathways to resolve them. Powered by:
IntegrationsOut of box integrations available with a comprehensive set of Security and IT operations tools in your organisation.
HiveForce LabsThe in-house intelligence that enables customers to identify and address immediate cyber risks and potential threats with precision, clear insights, and swift action.
Hive Pro’s Comparison
Hive Pro vs Rapid7
Hive Pro vs Tenable
Hive Pro vs Qualys
Hive Pro vs Nucleus Security
Solutions
Solutions
By Use Case
Total Attack Surface Management
Multi-Environment Security Scanners
Complete Exposure Assessment
Comprehensive Security Intelligence
Vulnerability & Threat Prioritization
Adversarial Exposure Validation
By Role
CISO
Vulnerability Management
Security Operations
DevOps
Industry
Industry
Telecommunications
Healthcare
Financial Services
Government & Public Sector
Retail & E-Commerce
Educational Institutions
Resources
Resources
Learning Center
Podcasts
Threat Advisories
Threat Digests
Blog
Whitepapers
Resources
Resources
Advisories & Digests
Threat Advisories
Threat Digests
Content Library
learn
Blog
Whitepapers
Press Releases
connect
Webinars & Videos
Company
Company
About Us
Careers
Our Leadership
Contact Us
Book a DemoFree Iranian Exposure Assessment

Threat Advisories

Expert threat advisories published daily by HiveForce Labs, covering ransomware campaigns, advanced persistent threats (APTs), critical vulnerabilities, and malware analysis. Each advisory provides detailed intelligence on threat characteristics, potential impact, and recommended remediation steps to help security teams take immediate, informed action.

Strengthen Your Defenses With the Latest Intelligence

Red | Attack Report
Spraying for Access: Iran-Aligned Actors Turn Weak Credentials into Intelligence
Summary An Iran-linked threat actor conducted a large-scale password spray campaign targeting April 13, 2026
Red | Vulnerability Report
TrueConf Zero-Day Abused in Operation TrueChaos to Weaponize Software Updates
Summary The TrueConf zero-day vulnerability CVE-2026-3502 represents a critical security flaw in April 13, 2026
Red | Vulnerability Report
Fortinet EMS Left Defenseless by CVE-2026-35616
Summary Fortinet has issued emergency patches for a critical vulnerability in FortiClient April 13, 2026
Red | Attack Report
Axios npm Supply Chain Attack: What You Need to Know
Summary The Axios npm supply chain attack represents a critical compromise of April 3, 2026
Red | Vulnerability Report
CVE-2026-5281: Chrome Dawn Flaw Sparks In-the-Wild Zero-Day Attacks
Summary Google has rushed out emergency fixes for CVE-2026-5281, a Chrome zero-day April 3, 2026
Red | Vulnerability Report
CVE-2026-3055: Silent Memory Leak in NetScaler Actively Exploited
Summary Citrix NetScaler is actively being exploited to exploit CVE-2026-3055, a critical April 3, 2026
Red | Attack Report
Tracking Beast: Tools, Techniques, and Tradecraft in RaaS Operations
Summary Beast is a Ransomware-as-a-Service (RaaS) platform whose affiliates gain initial access March 31, 2026
Amber | Attack Report
FAUX#ELEVATE: Obfuscated VBS Campaign Targeting Enterprise HR System
Summary What appears to be a harmless job application quickly unravels into March 31, 2026
1 2 3 235

HiveForce Labs Research At Your Fingertips

Stay informed with HiveForce Labs as they provide comprehensive insights into the latest vulnerabilities, threats, and threat actor activities.

Subscribe below to receive in-depth weekly and monthly updates, along with daily and weekly advisories designed to help you proactively manage and mitigate cybersecurity risks.

Subscribe Here