Threat Advisories:
Operation TrustTrap: APT36 Weaponizes 16,800 Spoofed Domains Patched but Not Cured: FIRESTARTER Backdoor Survives Cisco Firewall Upgrades The Gentlemen Ransomware: A Rapidly Scaling RaaS Threat Tropic Trooper Shifts Tradecraft to Open-Source Offensive Frameworks UNC6692 Social Engineering Campaign Deploying SNOW Malware Suite April 2026 Linux Patch Roundup LOTUSLITE v1.1: Enhanced Evasion Meets Banking-Themed Social Engineering Lotus Wiper: Silent Sabotage Targeting Venezuela’s Energy Sector Brand Hijack in Cybercrime: Who Is Pretending to Be ShinyHunters? Nexcorium: IoT Botnet Campaign Exploiting TBK DVR Devices CVE-2026-34197: Jolokia Exposure Enables RCE in ActiveMQ Inside the PHANTOMPULSE Social Engineering Kill Chain Payouts King Ransomware Blending In Before Breaking Through MCPwn: Critical Nginx UI Bug Opens the Door to Remote Control Microsoft’s April 2026 Patch Tuesday Storm-2755’s Silent Payroll Heist Targeting Canada From Advisory to Attack in Under 10 Hours: Marimo’s Critical RCE Flaw Handala Claims Destructive Wiper Attack on GCC Nation’s Critical Infrastructure Active Exploitation of Critical Adobe Prototype Pollution Flaw Masjesu: Exploit-Driven Botnet with Stealth, Scale, and Staying Power
New Report Critical Threat Research : The Iranian Cyber War Intensifies! Download the Report
Platform
Comprehensive Threat Exposure Management Platform
Uni5 Xposure PlatformUni5 Xposure leverages exposure assessment and adversarial exposure validation to deliver a unified view of your cyber risks and all actionable pathways to resolve them. Powered by:
IntegrationsOut of box integrations available with a comprehensive set of Security and IT operations tools in your organisation.
HiveForce LabsThe in-house intelligence that enables customers to identify and address immediate cyber risks and potential threats with precision, clear insights, and swift action.
Hive Pro’s ComparisonSave Cost , Reduce Complexity and Increase Security by Augmenting and Replacing your existing Vulnerability Management platform
Hive Pro vs Rapid7
Hive Pro vs Tenable
Hive Pro vs Qualys
Hive Pro vs Nucleus Security
Solutions
By Use Case
Total Attack Surface Management
Multi-Environment Security Scanners
Complete Exposure Assessment
Comprehensive Security Intelligence
Vulnerability & Threat Prioritization
Adversarial Exposure Validation
By Role
CISO
Vulnerability Management
Security Operations
DevOps
Industry
Telecommunications
Healthcare
Financial Services
Government & Public Sector
Retail & E-Commerce
Educational Institutions
Resources
Learning Center
Podcasts
Threat Advisories
Threat Digests
Blog
Whitepapers
Resources
Advisories & Digests
Threat Advisories
Threat Digests
Content Library
learn
Blog
Whitepapers
Press Releases
connect
Webinars & Videos
Company
About Us
Careers
Our Leadership
Contact Us
Book a DemoFree Iranian Exposure Assessment
Platform
Platform
Comprehensive Threat Exposure Management Platform
Uni5 Xposure PlatformUni5 Xposure leverages exposure assessment and adversarial exposure validation to deliver a unified view of your cyber risks and all actionable pathways to resolve them. Powered by:
IntegrationsOut of box integrations available with a comprehensive set of Security and IT operations tools in your organisation.
HiveForce LabsThe in-house intelligence that enables customers to identify and address immediate cyber risks and potential threats with precision, clear insights, and swift action.
Hive Pro’s Comparison
Hive Pro vs Rapid7
Hive Pro vs Tenable
Hive Pro vs Qualys
Hive Pro vs Nucleus Security
Solutions
Solutions
By Use Case
Total Attack Surface Management
Multi-Environment Security Scanners
Complete Exposure Assessment
Comprehensive Security Intelligence
Vulnerability & Threat Prioritization
Adversarial Exposure Validation
By Role
CISO
Vulnerability Management
Security Operations
DevOps
Industry
Industry
Telecommunications
Healthcare
Financial Services
Government & Public Sector
Retail & E-Commerce
Educational Institutions
Resources
Resources
Learning Center
Podcasts
Threat Advisories
Threat Digests
Blog
Whitepapers
Resources
Resources
Advisories & Digests
Threat Advisories
Threat Digests
Content Library
learn
Blog
Whitepapers
Press Releases
connect
Webinars & Videos
Company
Company
About Us
Careers
Our Leadership
Contact Us
Book a DemoFree Iranian Exposure Assessment
March 12, 2026

Weekly Threat Digest : 02nd to 8th MARCH 2026

HiveForce Labs

HiveForce Labs

For a detailed threat digest, download the PDF file here

HiveForce Labs has reported a sharp rise in cybersecurity threats, highlighting the increasing complexity and frequency of global cyber incidents. Over the past week, twelve major attacks were detected, three critical vulnerabilities were publicly disclosed, and two active threat actor groups were monitored, signaling a concerning escalation in malicious activity.

Among the most pressing developments, VMware has issued urgent security updates to address multiple vulnerabilities in VMware Aria Operations, including the actively exploited flaw CVE-2026-22719. The vulnerability stems from inadequate input validation within a migration workflow component and could allow unauthenticated attackers to execute arbitrary operating system commands during support-assisted migrations.

Cisco has also warned of critical vulnerabilities impacting Cisco Catalyst SD-WAN Manager, confirming that two flaws, CVE-2026-20122 and CVE-2026-20128, are already being actively exploited in the wild. At the same time, emerging threat campaigns continue to demonstrate increasing operational sophistication. The Ruby Jumper campaign highlights the calculated tactics of APT37, where a seemingly benign Windows shortcut (LNK) file initiates a multi-stage infection chain that ultimately deploys the RESTLEAF malware and leverages Zoho WorkDrive as a covert command-and-control channel.

Adding to the threat landscape is ClipXDaemon, an autonomous Linux clipboard hijacker designed to target cryptocurrency users operating within X11 desktop environments. Delivered through a bincrypter-based encrypted loader, the malware persistently monitors clipboard activity and silently replaces copied cryptocurrency wallet addresses with attacker-controlled ones. Together, these incidents emphasize the growing diversity of modern cyber threats and reinforce the need for timely patching, continuous monitoring, and strong defensive practices to stay ahead of increasingly adaptive attackers.


Subscribe to receive our weekly threat digests and alerts directly in your inbox.

Recent Resources

Dive into our library of resources for expert insights, guides, and in-depth analysis on maximizing Uni5 Xposure’s capabilities

Blog, Uncategorized
Blog
The Backlog Became Policy
In February, we called the gap between CVE disclosure and scanner signatures the “breach zone.” On April 15, 2026, NIST
API security testing and vulnerability assessment workflow diagram
Uncategorized
Blog
API Security Testing and Vulnerability Assessment
APIs now carry more sensitive data than traditional web interfaces. Payment details, health records, authentication tokens, and customer databases all
Cybersecurity team analyzing predictive threat intelligence to protect an organization.
Blog
Blog
What is Predictive Threat Intelligence for Organizations?
Learn how predictive threat intelligence for organizations helps you anticipate cyber threats, prioritize risks, and strengthen your security posture.
Cybersecurity professionals analyzing a risk-based vulnerability management platform on a laptop.
Article
Blog
What Is a Risk-Based Vulnerability Management Platform?
A risk-based vulnerability management platform helps you prioritize threats, focus on real risks, and streamline your security efforts for better protection.
A man using a risk-based vulnerability management tool on a laptop to prioritize cyber risk.
Article
Blog
What Is a Risk-Based Vulnerability Management Tool?
A risk based vulnerability management tool helps you prioritize and fix security risks efficiently by focusing on threats that matter most to your business.
Vulnerability management dashboard displaying key security metrics and risk prioritization for effective analysis.
Blog
Blog
What Makes a Vulnerability Management Dashboard Effective?
A vulnerability management dashboard helps you track, prioritize, and remediate security risks with clear insights and actionable data for your team.
Blog
Blog
Threat Intelligence for Exposure Management: How TI Powers Smarter CTEM Programs
Your security team has access to more vulnerability data than ever before. Scanners produce thousands of findings each week. Threat
Blog
Blog
Vulnerability Remediation: The Complete Guide to Fixing Security Weaknesses
Master the vulnerability remediation process from triage to verification. Learn SLA frameworks, compensating controls, and how automated orchestration reduces MTTR by 60-80%.

Book a demo and find out more about how Hive Pro can double your operational efficiency

Book a Demo