Threat Advisories:
Inside Storm-2949’s Cloud Takeover Campaign Targeting Microsoft 365 and Azure Dead.Letter Walking: Unauthenticated RCE Stalks Exim Mail Servers One Million WordPress Sites at Risk: Avada Builder Flaws Expose Sensitive Data Three Strikes in Two Weeks: Fragnesia Joins the Dirty Frag Family Critical NGINX Vulnerabilities Including 18-Year-Old RCE Flaw Actively Exploited Active Exploitation of CVE-2026-42897 Targets Microsoft Exchange Servers FamousSparrow’s Persistent Hold on Azerbaijani Oil & Gas Cisco SD-WAN Authentication Bypass Exploited in Zero-Day Attacks Mini Shai-Hulud npm Supply Chain Worm: TanStack and Multi-Ecosystem Compromise Malicious Ruby Gems Fuel GemStuffer Data Theft Campaign Microsoft’s May 2026 Patch Tuesday PCPJack Hijacks Vulnerable Servers With Worm-Like Cloud Propagation Tactics QLNX Unmasked: Advanced Linux Malware Targets Developers and Cloud Infrastructure Dirty Frag A 2017 Optimization That Aged Into a Root Exploit TCLBanker: Trojanized Logitech Installer Fuels Banking Malware Campaign Ivanti EPMM Flaws Threaten Enterprise Device Management Systems Is Your Spring Config Server an Open Door? CVE-2026-40982 Says Yes PAN-OS Buffer Overflow Flaw Under Active State-Sponsored Exploitation Unauthenticated RCE in Weaver E-cology Actively Exploited Tax Trap to Full Takeover: Inside the Silver Fox Multi-Stage Intrusion Chain
New Report Critical Threat Research : The Iranian Cyber War Intensifies! Download the Report
Platform
Comprehensive Threat Exposure Management Platform
Uni5 Xposure PlatformUni5 Xposure leverages exposure assessment and adversarial exposure validation to deliver a unified view of your cyber risks and all actionable pathways to resolve them. Powered by:
IntegrationsOut of box integrations available with a comprehensive set of Security and IT operations tools in your organisation.
HiveForce LabsThe in-house intelligence that enables customers to identify and address immediate cyber risks and potential threats with precision, clear insights, and swift action.
Hive Pro’s ComparisonSave Cost , Reduce Complexity and Increase Security by Augmenting and Replacing your existing Vulnerability Management platform
Hive Pro vs Rapid7
Hive Pro vs Tenable
Hive Pro vs Qualys
Hive Pro vs Nucleus Security
Solutions
By Use Case
Total Attack Surface Management
Multi-Environment Security Scanners
Complete Exposure Assessment
Comprehensive Security Intelligence
Vulnerability & Threat Prioritization
Adversarial Exposure Validation
By Role
CISO
Vulnerability Management
Security Operations
DevOps
Industry
Telecommunications
Healthcare
Financial Services
Government & Public Sector
Retail & E-Commerce
Educational Institutions
Resources
Learning Center
Podcasts
Threat Advisories
Threat Digests
Blog
Whitepapers
Resources
Advisories & Digests
Threat Advisories
Threat Digests
Content Library
learn
Blog
Whitepapers
Press Releases
connect
Webinars & Videos
Company
About Us
Careers
Our Leadership
Contact Us
Book a DemoFree Iranian Exposure Assessment
Platform
Platform
Comprehensive Threat Exposure Management Platform
Uni5 Xposure PlatformUni5 Xposure leverages exposure assessment and adversarial exposure validation to deliver a unified view of your cyber risks and all actionable pathways to resolve them. Powered by:
IntegrationsOut of box integrations available with a comprehensive set of Security and IT operations tools in your organisation.
HiveForce LabsThe in-house intelligence that enables customers to identify and address immediate cyber risks and potential threats with precision, clear insights, and swift action.
Hive Pro’s Comparison
Hive Pro vs Rapid7
Hive Pro vs Tenable
Hive Pro vs Qualys
Hive Pro vs Nucleus Security
Solutions
Solutions
By Use Case
Total Attack Surface Management
Multi-Environment Security Scanners
Complete Exposure Assessment
Comprehensive Security Intelligence
Vulnerability & Threat Prioritization
Adversarial Exposure Validation
By Role
CISO
Vulnerability Management
Security Operations
DevOps
Industry
Industry
Telecommunications
Healthcare
Financial Services
Government & Public Sector
Retail & E-Commerce
Educational Institutions
Resources
Resources
Learning Center
Podcasts
Threat Advisories
Threat Digests
Blog
Whitepapers
Resources
Resources
Advisories & Digests
Threat Advisories
Threat Digests
Content Library
learn
Blog
Whitepapers
Press Releases
connect
Webinars & Videos
Company
Company
About Us
Careers
Our Leadership
Contact Us
Book a DemoFree Iranian Exposure Assessment
May 21, 2026

Weekly Threat Digest : 11th MAY to 17th MAY 2026

HiveForce Labs

HiveForce Labs

For a detailed threat digest, download the PDF file here

HiveForce Labs has reported a sharp rise in cybersecurity threats, highlighting the increasing complexity and frequency of global cyber incidents. Over the past week, nine major attacks were detected, twelve critical vulnerabilities were publicly disclosed, and four active threat actor groups were monitored, signaling a concerning escalation in malicious activity.

Dirty Frag (CVE-2026-43284/43500) Kernel-level privilege escalation in Linux networking enables unprivileged users to gain instant root access. Quasar Linux is a full-featured RAT targeting developers and DevOps workstations with rootkit, PAM backdoor, and credential harvesting to compromise publishing pipelines and orchestrate supply chain attacks.

GemStuffer is a campaign that injects malicious Ruby scripts into CI/CD pipelines to extract UK government intelligence through trojanized RubyGems packages, disguising theft as legitimate developer activity. These underscore the need for disciplined security updates and sustained monitoring in response to rapidly evolving attack methodologies.


Subscribe to receive our weekly threat digests and alerts directly in your inbox.

Recent Resources

Dive into our library of resources for expert insights, guides, and in-depth analysis on maximizing Uni5 Xposure’s capabilities

Nucleus Security vs Hive Pro exposure management platform comparison
Blog
Blog
Nucleus Security vs Hive Pro: CTEM Comparison
Compare Nucleus Security vs Hive Pro for exposure management, including integrations, BAS, threat intelligence, CTEM coverage, and remediation.
Blog
Blog
The Machine Found It First. The Machine Will Exploit It Next.
For decades, the question behind every CVE has been “who found it, and how fast can attackers catch up?” As
Top Cybersecurity Frameworks Compared
Blog
Blog
Top Cybersecurity Frameworks Compared
Compare NIST CSF, CIS Controls, and MITRE ATT&CK to choose the right framework for risk, controls, and exposure management.
DORA compliance cybersecurity framework for financial services teams
Blog
Blog
DORA Compliance Cybersecurity Guide for Finance
Learn how financial services cybersecurity teams can map DORA requirements to ICT risk management, testing, threat intelligence, and CTEM.
CISO presenting a CTEM business case and cybersecurity risk dashboard to board members in a modern boardroom
Blog
Blog
CISO Guide: Building a Business Case for CTEM
A step-by-step guide for CISOs to build a board-ready business case for CTEM: ROI metrics, CFO-friendly language, and objection-handling strategies.
CISO dashboard for a CTEM business case showing remediation, exposure reduction, and ROI metrics
Blog
Blog
CTEM Business Case: CISO Guide to ROI
Build a board-ready CTEM business case with risk, remediation, productivity, and cost metrics CISOs can defend.
OT cybersecurity analysts monitoring ICS security exposure in an industrial control room
Blog
Blog
OT Cybersecurity Challenges for ICS in 2026
Explore the top OT cybersecurity and ICS security challenges in 2026, from legacy assets to remote access, ransomware, and exposure prioritization.
Cyber insurance requirements cybersecurity dashboard showing CTEM evidence for underwriters
Blog
Blog
Cyber Insurance Requirements for Cybersecurity
Learn common cyber insurance cybersecurity requirements and how CTEM helps prove risk reduction, vulnerability management, and control readiness.

Book a demo and find out more about how Hive Pro can double your operational efficiency

Book a Demo