🔵 THREAT INTELLIGENCE
Threat Actors Exploit Critical FortiClient EMS Flaw to Deploy Credential Stealer
Vulnerability | CRITICAL
CVEs: CVE-2026-35616
Hackers are exploiting an authentication bypass vulnerability (CVE-2026-35616) in FortiClient Enterprise Management Server (EMS) to deliver an...
Full analysis:
https://www.yazoul.net/news/article/threat-actors-exploit-critical-forticlient-ems-flaw-to-deploy-credential-stealer
🔵 THREAT INTELLIGENCE
Threat Actors Exploit Critical FortiClient EMS Flaw to Deploy Credential Stealer
Vulnerability | CRITICAL
CVEs: CVE-2026-35616
Hackers are exploiting an authentication bypass vulnerability (CVE-2026-35616) in FortiClient Enterprise Management Server (EMS) to deliver an...
Full analysis:
https://www.yazoul.net/news/article/threat-actors-exploit-critical-forticlient-ems-flaw-to-deploy-credential-stealer
🚨 Cloud attackers don’t always trigger alerts.
That’s why proactive threat hunting matters.
👉 https://7asecurity.com/blog/2026/05/cloud-threat-hunting/
🚨 New #ClickFix IOC domains observed:
• bigblower[.]click
• ganiballektor[.]cfd
• lenders[.]digital
• pusanik[.]shop
Related research points to exposed / publicly accessible ClickFix infrastructure and operational dashboards tied to ongoing malware delivery and social engineering activity.
Read more: https://potato.id/en/posts/weak-secops-exposed-clickfix-dashboard/
#ThreatIntel #IOC #CyberSecurity #Infosec #DFIR #SOC #ThreatHunting #OSINT #Malware #Phishing #ClickFix #LummaStealer #DarkGate #CredentialTheft #BlueTeam #CTI #DetectionEngineering #IncidentResponse
🚀 OhMyPCAP 4.0.0 is HERE!
The ultimate FOSS PCAP analyzer just got a massive upgrade for deeper file intelligence.
New in v4.0:
• Upgraded to YARA Forge Full ruleset — more comprehensive malware & threat detection
• Exiftool + rich file metadata analysis — get more file information even if there are no YARA matches
All the power you love is still here:
Suricata alerts, file alerts, Sankey diagrams, full-text search, ASCII transcripts, hexdumps, stream carving + single Docker/Podman container (perfect for air-gapped or quick spins).
Ideal for malware analysis, incident response, threat hunting, forensics & teaching.
Who’s pulling this version right now? Drop a ❤️+ reply with your main use case (malware samples? CTFs? real-world incidents? teaching?)
#PCAP #DFIR #Cybersecurity #Infosec #BlueTeam #ThreatHunting #Suricata #YARA #MalwareAnalysis
🔹 THREAT INTELLIGENCE
Weekly Threat Roundup: 2026-05-18 to 2026-05-24
Roundup | HIGH
CVEs: CVE-2026-34926, CVE-2026-41091, CVE-2026-45498
Cybersecurity roundup for 2026-05-18 to 2026-05-24. 4 CVE advisories, 5 breach reports, 3 threat news stories.
Full analysis:
https://www.yazoul.net/news/article/2026-w21-weekly-threat-roundup
🔹 THREAT INTELLIGENCE
Weekly Threat Roundup: 2026-05-18 to 2026-05-24
Roundup | HIGH
CVEs: CVE-2026-34926, CVE-2026-41091, CVE-2026-45498
Cybersecurity roundup for 2026-05-18 to 2026-05-24. 4 CVE advisories, 5 breach reports, 3 threat news stories.
Full analysis:
https://www.yazoul.net/news/article/2026-w21-weekly-threat-roundup
Deploying active defenses against the 'Underminr' CDN vulnerability? The Cyber Mind Co™ drops the v6.9 TSUITE Technical Playbook. Get hard-hitting metrics on SNI validation, host header cross-verification, and deep packet TLS inspection for Tier-3 SOCs. https://thecybermind.co
#ThreatHunting #SecOps
Deploying active defenses against the 'Underminr' CDN vulnerability? The Cyber Mind Co™ drops the v6.9 TSUITE Technical Playbook. Get hard-hitting metrics on SNI validation, host header cross-verification, and deep packet TLS inspection for Tier-3 SOCs. https://thecybermind.co
#ThreatHunting #SecOps
Yazoul - Cybersecurity Alerts
Yazoul - Cybersecurity Alerts
7ASecurity
laztname
sydney
Doug Burks
Michael I Ransier
thecybermind