Threat Advisories:
Transparent Tribe Targets India’s Startup Ecosystem with Crimson RAT Amaranth-Dragon: Low Noise, High Impact Espionage in Southeast Asia Web Traffic Hijacking via Malicious NGINX Configuration Injection DEAD#VAX: AsyncRAT Deployment via IPFS-Hosted VHD Phishing Operation Neusploit: APT28 Weaponizes CVE-2026-21509 Chrysalis Backdoor: A Quiet Passenger in Notepad++ Updates One Click to Compromise: Inside OpenClaw’s Critical RCE Flaw Attackers Hijack Open VSX Extensions to Spread GlassWorm Malware UAT-8099 Cybercrime Group Leverages BadIIS Ivanti Patches Actively Exploited EPMM Flaws CVE-2026-24858: Critical FortiCloud SSO Zero-day Under Active Exploitation TA584 and the Business of Breach: Selling Access at Scale Mustang Panda Enhances CoolClient for Stealth and Surveillance Instant Root Access via CVE-2026-24061: A Decade-Old Bug Comes Alive Gopher Strike and Sheet Attack Campaigns Targeting Indian Government January 2026 Linux Patch Roundup CVE-2026-21509: Microsoft Office Zero-Day Under Active Exploitation CVE-2026-20045: Critical Cisco Unified Communications Actively Exploited Evelyn Stealer’s Stealth Campaign Against Developers Malicious Chrome Extensions Hijacking Enterprise HR Platforms
Hive Pro recognized in Gartner® Magic Quadrant™ for Exposure Assessment Platform, 2025 Watch platform in action
Platform
Comprehensive Threat Exposure Management Platform
Uni5 Xposure PlatformUni5 Xposure leverages exposure assessment and adversarial exposure validation to deliver a unified view of your cyber risks and all actionable pathways to resolve them. Powered by:
IntegrationsOut of box integrations available with a comprehensive set of Security and IT operations tools in your organisation.
HiveForce LabsThe in-house intelligence that enables customers to identify and address immediate cyber risks and potential threats with precision, clear insights, and swift action.
Hive Pro’s ComparisonSave Cost , Reduce Complexity and Increase Security by Augmenting and Replacing your existing Vulnerability Management platform
Hive Pro vs Rapid7
Hive Pro vs Tenable
Hive Pro vs Qualys
Hive Pro vs Nucleus Security
Solutions
By Use Case
Total Attack Surface Management
Multi-Environment Security Scanners
Complete Exposure Assessment
Comprehensive Security Intelligence
Vulnerability & Threat Prioritization
Adversarial Exposure Validation
By Role
CISO
Vulnerability Management
Security Operations
DevOps
Industry
Telecommunications
Healthcare
Financial Services
Government & Public Sector
Retail & E-Commerce
Educational Institutions
Resources
Threat Advisories
Threat Digests
Blog
Whitepapers
Resources
Advisories & Digests
Threat Advisories
Threat Digests
Content Library
learn
Blog
Whitepapers
Press Releases
connect
Webinars & Videos
Company
About Us
Careers
Our Leadership
Contact Us
Book a DemoThreat Digest - Subscribe
Platform
Platform
Comprehensive Threat Exposure Management Platform
Uni5 Xposure PlatformUni5 Xposure leverages exposure assessment and adversarial exposure validation to deliver a unified view of your cyber risks and all actionable pathways to resolve them. Powered by:
IntegrationsOut of box integrations available with a comprehensive set of Security and IT operations tools in your organisation.
HiveForce LabsThe in-house intelligence that enables customers to identify and address immediate cyber risks and potential threats with precision, clear insights, and swift action.
Hive Pro’s Comparison
Hive Pro vs Rapid7
Hive Pro vs Tenable
Hive Pro vs Qualys
Hive Pro vs Nucleus Security
Solutions
Solutions
By Use Case
Total Attack Surface Management
Multi-Environment Security Scanners
Complete Exposure Assessment
Comprehensive Security Intelligence
Vulnerability & Threat Prioritization
Adversarial Exposure Validation
By Role
CISO
Vulnerability Management
Security Operations
DevOps
Industry
Industry
Telecommunications
Healthcare
Financial Services
Government & Public Sector
Retail & E-Commerce
Educational Institutions
Resources
Resources
Threat Advisories
Threat Digests
Blog
Whitepapers
Resources
Resources
Advisories & Digests
Threat Advisories
Threat Digests
Content Library
learn
Blog
Whitepapers
Press Releases
connect
Webinars & Videos
Company
Company
About Us
Careers
Our Leadership
Contact Us
Book a DemoThreat Digest - Subscribe
February 3, 2026

Weekly Threat Digest : 26th JANUARY to 01st FEBRUARY 2026

HiveForce Labs

HiveForce Labs

For a detailed threat digest, download the PDF file here


HiveForce Labs has reported a notable surge in global cyber threats, underscoring how both the volume and sophistication of attacks continue to escalate. In just the past week, observed nine significant attack incidents, the public disclosure of five new vulnerabilities, and operations linked to two threat actor groups. Together, these developments point to an increasingly volatile threat landscape, where organizations face mounting pressure to defend against faster, more complex, and more coordinated malicious activity.

A key driver behind this spike is the exploitation of several high-impact vulnerabilities, including active zero-day threats. CVE-2026-21509, a high-severity Microsoft Office security feature bypass, enables attackers to evade built-in OLE protections using specially crafted documents and has already been exploited in real-world attacks across multiple Office versions. Meanwhile, CVE-2026-24061 places organizations running vulnerable GNU InetUtils telnetd services at severe risk, as attackers can gain unauthenticated root access. Adding to the urgency, CVE-2026-24858, a critical authentication bypass flaw affecting several Fortinet products when FortiCloud SSO is enabled, allows attackers with any valid FortiCloud account to gain unauthorized administrative access to devices across organizations and has been exploited in the wild since mid-January 2026.

Threat actor activity has further amplified concerns, with a Pakistan-linked group conducting two concurrent cyber espionage campaigns, Gopher Strike and Sheet Attack, against Indian government entities. Additionally, initial access broker TA584 continues large-scale phishing operations, leveraging ClickFix social engineering to deliver malware such as Tsundere Bot and XWorm. Collectively, these developments reinforce the urgent need for rapid patch deployment, proactive monitoring, and layered defensive controls to keep pace with an increasingly aggressive and fast-moving threat environment.


Subscribe to receive our weekly threat digests and alerts directly in your inbox.

Recent Resources

Dive into our library of resources for expert insights, guides, and in-depth analysis on maximizing Uni5 Xposure’s capabilities

Blog
Blog
Rapid7 vs. Hive Pro: A Head-to-Head Comparison
See how Rapid7 and Hive Pro compare in features, setup, pricing, and threat intelligence to help you choose the right
Security analyst monitoring for a Chrome zero-day vulnerability on a computer screen.
Blog
Blog
Chrome Zero-Day Vulnerability: Are You Protected?
Learn what a Chrome zero-day vulnerability is, how it threatens your security, and get practical steps to protect your data and systems from active exploits.
Blog
Blog
Don’t Just Replace Kenna- Evolve to Vulnerability Exposure Management
Cisco has announced the end-of-sale for Cisco Vulnerability Management (formerly Kenna Security), leaving security teams with a critical decision: remain
A CISO reviews the ultimate CISO dashboard, viewing all security vulnerabilities in a single place.
Blog
Blog
The Ultimate CISO Dashboard: A Complete Guide
The Ultimate CISO Dashboard (viewing all vulnerabilities in a single place) helps security leaders track, prioritize, and communicate cyber risk with clarity.
Analyst in a control room tracks the top 10 threat actors on a world map.
Threat Digests
Blog
Top 10 Threat Actors: Their Tactics & Motivations
Get to know the top 10 threat actors, their tactics, and motivations so you can strengthen your cybersecurity strategy and protect your organization.
Cybersecurity analyst managing threat exposure on multiple screens in a security control room.
Blog
Blog
What Is Exposure Management Cybersecurity? A Guide
Get a clear, practical overview of exposure management cybersecurity, with actionable steps to identify, prioritize, and reduce your organization’s real risks.
Comparing vulnerability management dashboards to replace Cisco Kenna with Hive Pro.
Blog
Blog
Why Replace Kenna with Hive Pro? A Full Comparison
See why security teams choose to replace Kenna (cisco vulnerability management) with Hive Pro for better threat exposure management and real-world risk insights.
Security team using a Breach and Attack Simulation (BAS) platform to monitor for cyber threats.
Blog
Blog
What is Breach and Attack Simulation (BAS)? A Guide
Breach and Attack Simulation (BAS) helps you test your security controls with automated, real-world attack scenarios for stronger cyber defense.

Book a demo and find out more about how Hive Pro can double your operational efficiency

Book a Demo