Threat Advisories:
CVE-2026-34926: Trend Micro Apex One Under Active Exploitation CVE-2026-5426: Hard-Coded Machine Keys Open Door to RCE CVE-2026-9082 Opens the Door to Remote SQL Injection on Drupal Gemini on Payroll: A Solo Actor Outsources a Five-Year Influence Op to AI CVE-2026-48172: Critical LiteSpeed cPanel Flaw Actively Exploited SHub Reaper A macOS Stealer Wearing Three Trusted Masks 72-Hour Window of Trust: Fox Tempest’s Abuse of Microsoft Artifact Signing May 2026 Linux Patch Roundup From npm to GitHub: TeamPCP’s May 2026 Escalation Reaches the Source Code Platform Inside Storm-2949’s Cloud Takeover Campaign Targeting Microsoft 365 and Azure Dead.Letter Walking: Unauthenticated RCE Stalks Exim Mail Servers One Million WordPress Sites at Risk: Avada Builder Flaws Expose Sensitive Data Three Strikes in Two Weeks: Fragnesia Joins the Dirty Frag Family Critical NGINX Vulnerabilities Including 18-Year-Old RCE Flaw Actively Exploited Active Exploitation of CVE-2026-42897 Targets Microsoft Exchange Servers FamousSparrow’s Persistent Hold on Azerbaijani Oil & Gas Cisco SD-WAN Authentication Bypass Exploited in Zero-Day Attacks Mini Shai-Hulud npm Supply Chain Worm: TanStack and Multi-Ecosystem Compromise Malicious Ruby Gems Fuel GemStuffer Data Theft Campaign Microsoft’s May 2026 Patch Tuesday
New Report Critical Threat Research : The Iranian Cyber War Intensifies! Download the Report
Platform
Comprehensive Threat Exposure Management Platform
Uni5 Xposure PlatformUni5 Xposure leverages exposure assessment and adversarial exposure validation to deliver a unified view of your cyber risks and all actionable pathways to resolve them. Powered by:
IntegrationsOut of box integrations available with a comprehensive set of Security and IT operations tools in your organisation.
HiveForce LabsThe in-house intelligence that enables customers to identify and address immediate cyber risks and potential threats with precision, clear insights, and swift action.
Hive Pro’s ComparisonSave Cost , Reduce Complexity and Increase Security by Augmenting and Replacing your existing Vulnerability Management platform
Hive Pro vs Rapid7
Hive Pro vs Tenable
Hive Pro vs Qualys
Hive Pro vs Nucleus Security
Solutions
By Use Case
Total Attack Surface Management
Multi-Environment Security Scanners
Complete Exposure Assessment
Comprehensive Security Intelligence
Vulnerability & Threat Prioritization
Adversarial Exposure Validation
By Role
CISO
Vulnerability Management
Security Operations
DevOps
Industry
Telecommunications
Healthcare
Financial Services
Government & Public Sector
Retail & E-Commerce
Educational Institutions
Resources
Learning Center
Podcasts
Threat Advisories
Threat Digests
Blog
Whitepapers
Resources
Advisories & Digests
Threat Advisories
Threat Digests
Content Library
learn
Blog
Whitepapers
Press Releases
connect
Webinars & Videos
Company
About Us
Careers
Our Leadership
Contact Us
Book a DemoFree Iranian Exposure Assessment
Platform
Platform
Comprehensive Threat Exposure Management Platform
Uni5 Xposure PlatformUni5 Xposure leverages exposure assessment and adversarial exposure validation to deliver a unified view of your cyber risks and all actionable pathways to resolve them. Powered by:
IntegrationsOut of box integrations available with a comprehensive set of Security and IT operations tools in your organisation.
HiveForce LabsThe in-house intelligence that enables customers to identify and address immediate cyber risks and potential threats with precision, clear insights, and swift action.
Hive Pro’s Comparison
Hive Pro vs Rapid7
Hive Pro vs Tenable
Hive Pro vs Qualys
Hive Pro vs Nucleus Security
Solutions
Solutions
By Use Case
Total Attack Surface Management
Multi-Environment Security Scanners
Complete Exposure Assessment
Comprehensive Security Intelligence
Vulnerability & Threat Prioritization
Adversarial Exposure Validation
By Role
CISO
Vulnerability Management
Security Operations
DevOps
Industry
Industry
Telecommunications
Healthcare
Financial Services
Government & Public Sector
Retail & E-Commerce
Educational Institutions
Resources
Resources
Learning Center
Podcasts
Threat Advisories
Threat Digests
Blog
Whitepapers
Resources
Resources
Advisories & Digests
Threat Advisories
Threat Digests
Content Library
learn
Blog
Whitepapers
Press Releases
connect
Webinars & Videos
Company
Company
About Us
Careers
Our Leadership
Contact Us
Book a DemoFree Iranian Exposure Assessment
November 26, 2025

Weekly Threat Digest : 17th NOVEMBER to 23rd NOVEMBER 2025

HiveForce Labs

HiveForce Labs

For a detailed threat digest, download the PDF file here


HiveForce Labs has reported a sharp rise in cybersecurity threats, highlighting the increasing complexity and frequency of global cyber incidents. Over the past week, four major attacks were detected, seven critical vulnerabilities were publicly disclosed, and one active threat actor group was monitored, signaling a concerning escalation in malicious activity.

Five zero-day vulnerabilities were tracked and confirmed as exploited in the wild: CVE-2025-64446 (Fortinet FortiWeb), CVE-2025-20337 (Cisco Identity Services Engine), CVE-2025-13223 (Google Chrome), CVE-2025-58034 (Fortinet FortiWeb), and CVE-2025-5777, known as Citrix Bleed 2. The confirmation that Citrix Bleed 2 was abused before disclosure amplifies its overall risk impact.

Dragon Breath (APT-Q-27) continues a rapid, high-volume campaign using multi-stage loaders, brand imitation, and disposable domains to distribute modified Gh0st RAT variants to Chinese-speaking users. Current activity clusters under Campaign Trio and Campaign Chorus.

Eternidade Stealer expands Brazil’s WhatsApp-centered cybercrime landscape, underscoring the need for disciplined security updates and sustained monitoring in the face of fast-evolving attack methodologies.


Subscribe to receive our weekly threat digests and alerts directly in your inbox.

Recent Resources

Dive into our library of resources for expert insights, guides, and in-depth analysis on maximizing Uni5 Xposure’s capabilities

Zafran vs Hive Pro CTEM platform comparison dashboard
Reviews
Blog
Zafran vs Hive Pro: A Fair CTEM Comparison
Book a demo to compare Zafran vs Hive Pro for CTEM, including discovery, BAS validation, threat context, and remediation workflow fit.
Kubernetes security scanning across container workloads
Blog
Blog
Kubernetes Security Scanning: A DevSecOps Guide
Contact Hive Pro for kubernetes security scanning guidance across images, clusters, and runtime workloads, with risk-based container remediation.
Enterprise identity exposure management network map
Blog
Blog
Identity Exposure Management: Why It Matters
Book a demo to strengthen identity exposure management with CTEM, credential exposure insight, and validated remediation paths.
Security analyst assessing identity exposure management risk paths
Article
Blog
Identity Exposure Management: Risks and Response
Get identity exposure management guidance for reducing identity attack paths, prioritizing risk, validating controls, and strengthening CTEM action.
CrowdStrike vs Hive Pro vulnerability management comparison dashboard
Blog
Blog
CrowdStrike vs Hive Pro: VM Compared
Compare CrowdStrike Falcon Spotlight and Hive Pro for vulnerability management, CTEM, BAS validation, threat intelligence, and remediation.
NIST cybersecurity framework CTEM alignment across governance, discovery, prioritization, validation, and mobilization
Blog
Blog
NIST Cybersecurity Framework and CTEM Alignment
Map CTEM stages to NIST CSF 2.0 functions so exposure management moves from framework outcomes to measurable risk reduction.
Nucleus Security vs Hive Pro exposure management platform comparison
Blog
Blog
Nucleus Security vs Hive Pro: CTEM Comparison
Compare Nucleus Security vs Hive Pro for exposure management, including integrations, BAS, threat intelligence, CTEM coverage, and remediation.
Blog
Blog
The Machine Found It First. The Machine Will Exploit It Next.
For decades, the question behind every CVE has been “who found it, and how fast can attackers catch up?” As

Book a demo and find out more about how Hive Pro can double your operational efficiency

Book a Demo