Threat Advisories:
One Click to Compromise: Inside OpenClaw’s Critical RCE Flaw Attackers Hijack Open VSX Extensions to Spread GlassWorm Malware UAT-8099 Cybercrime Group Leverages BadIIS Ivanti Patches Actively Exploited EPMM Flaws CVE-2026-24858: Critical FortiCloud SSO Zero-day Under Active Exploitation TA584 and the Business of Breach: Selling Access at Scale Mustang Panda Enhances CoolClient for Stealth and Surveillance Instant Root Access via CVE-2026-24061: A Decade-Old Bug Comes Alive Gopher Strike and Sheet Attack Campaigns Targeting Indian Government January 2026 Linux Patch Roundup CVE-2026-21509: Microsoft Office Zero-Day Under Active Exploitation CVE-2026-20045: Critical Cisco Unified Communications Actively Exploited Evelyn Stealer’s Stealth Campaign Against Developers Malicious Chrome Extensions Hijacking Enterprise HR Platforms Geopolitics as Bait: LOTUSLITE Backdoor Targets U.S. Entities Admin Access Without Credentials Puts 40,000+ WordPress Sites at Risk Ni8mare in n8n: CVE-2026-21858 Bug Exposing 100,000 Servers to Risk VoidLink: A Cloud-Native Linux Framework Built for Stealth and Scale CVE-2025-64155: Critical FortiSIEM RCE with Public Exploits Available Microsoft’s January 2026 Patch Tuesday
Hive Pro recognized in Gartner® Magic Quadrant™ for Exposure Assessment Platform, 2025 Watch platform in action
Platform
Comprehensive Threat Exposure Management Platform
Uni5 Xposure PlatformUni5 Xposure leverages exposure assessment and adversarial exposure validation to deliver a unified view of your cyber risks and all actionable pathways to resolve them. Powered by:
IntegrationsOut of box integrations available with a comprehensive set of Security and IT operations tools in your organisation.
HiveForce LabsThe in-house intelligence that enables customers to identify and address immediate cyber risks and potential threats with precision, clear insights, and swift action.
Hive Pro’s ComparisonSave Cost , Reduce Complexity and Increase Security by Augmenting and Replacing your existing Vulnerability Management platform
Hive Pro vs Rapid7
Hive Pro vs Tenable
Hive Pro vs Qualys
Hive Pro vs Nucleus Security
Solutions
By Use Case
Total Attack Surface Management
Multi-Environment Security Scanners
Complete Exposure Assessment
Comprehensive Security Intelligence
Vulnerability & Threat Prioritization
Adversarial Exposure Validation
By Role
CISO
Vulnerability Management
Security Operations
DevOps
Industry
Telecommunications
Healthcare
Financial Services
Government & Public Sector
Retail & E-Commerce
Educational Institutions
Resources
Threat Advisories
Threat Digests
Blog
Whitepapers
Resources
Advisories & Digests
Threat Advisories
Threat Digests
Content Library
learn
Blog
Whitepapers
Press Releases
connect
Webinars & Videos
Company
About Us
Careers
Our Leadership
Contact Us
Book a DemoThreat Digest - Subscribe
Platform
Platform
Comprehensive Threat Exposure Management Platform
Uni5 Xposure PlatformUni5 Xposure leverages exposure assessment and adversarial exposure validation to deliver a unified view of your cyber risks and all actionable pathways to resolve them. Powered by:
IntegrationsOut of box integrations available with a comprehensive set of Security and IT operations tools in your organisation.
HiveForce LabsThe in-house intelligence that enables customers to identify and address immediate cyber risks and potential threats with precision, clear insights, and swift action.
Hive Pro’s Comparison
Hive Pro vs Rapid7
Hive Pro vs Tenable
Hive Pro vs Qualys
Hive Pro vs Nucleus Security
Solutions
Solutions
By Use Case
Total Attack Surface Management
Multi-Environment Security Scanners
Complete Exposure Assessment
Comprehensive Security Intelligence
Vulnerability & Threat Prioritization
Adversarial Exposure Validation
By Role
CISO
Vulnerability Management
Security Operations
DevOps
Industry
Industry
Telecommunications
Healthcare
Financial Services
Government & Public Sector
Retail & E-Commerce
Educational Institutions
Resources
Resources
Threat Advisories
Threat Digests
Blog
Whitepapers
Resources
Resources
Advisories & Digests
Threat Advisories
Threat Digests
Content Library
learn
Blog
Whitepapers
Press Releases
connect
Webinars & Videos
Company
Company
About Us
Careers
Our Leadership
Contact Us
Book a DemoThreat Digest - Subscribe

PondRAT Malware Hidden in Python Packages Targets Developers

Red | Attack Report
Download PDF

PondRAT malware, linked to North Korean hackers, was found hidden in Python packages on PyPI, targeting software developers. It allows remote access to infected machines, posing a serious threat to supply chains by compromising development environments. The malware’s similarities to the Gleaming Pisces (aka Lazarus Group) tools highlight increasing risks in the open-source ecosystem. Though the infected packages were removed, the attack underscores the need for stronger security practices in managing third-party code.

What’s new on HivePro

Get through updates and upcoming events, and more directly in your inbox