🟡 THREAT INTELLIGENCE

Progress Patches Critical MOVEit Automation Bug Enabling Authentication Bypass

Vulnerability | MEDIUM

Progress Software warned customers to patch a critical authentication bypass vulnerability in its MOVEit Automation enterprise-grade managed file...

Full analysis:
https://www.yazoul.net/news/article/progress-patches-critical-moveit-automation-bug-enabling-authentication-bypass

#InfoSec #ZeroDay #ThreatHunting

🟡 THREAT INTELLIGENCE

Progress Patches Critical MOVEit Automation Bug Enabling Authentication Bypass

Vulnerability | MEDIUM

Progress Software warned customers to patch a critical authentication bypass vulnerability in its MOVEit Automation enterprise-grade managed file...

Full analysis:
https://www.yazoul.net/news/article/progress-patches-critical-moveit-automation-bug-enabling-authentication-bypass

#InfoSec #ZeroDay #ThreatHunting

🔵 THREAT INTELLIGENCE

Critical cPanel and WHM bug exploited as a zero-day, PoC now available

Vulnerability | CRITICAL
CVEs: CVE-2026-41940

The critical CVE-2026-41940 authentication bypass vulnerability in cPanel, WHM, and WP Squared is being actively exploited in the wild and has been...

Full analysis:
https://www.yazoul.net/news/article/critical-cpanel-and-whm-bug-exploited-as-a-zero-day-poc-now-available

#ThreatIntel #Malware #ThreatHunting

⚡ THREAT INTELLIGENCE

CISA and U.S. Government Partners Unveil Guide to Accelerate Zero Trust Adoption in Operational Technology

Vulnerability | MEDIUM

Full analysis:
https://www.yazoul.net/news/article/cisa-and-u-s-government-partners-unveil-guide-to-accelerate-zero-trust-adoption-

#ThreatIntel #Malware #ThreatHunting

A partir de este 1 de mayo dejo de formar parte del equipo de especialistas de threat monitoring y paso a ser hunter en threat hunting.

No sé por qué, el mismo jueves 7 de mayo tengo una reunión con la gente de una herramienta NDR para convencerles de ser los ideales para ofrecer su producto como partners a clientes. Reunión en la que me van a pedir, como experto en su herramienta (que nunca he tocado), demostrar nuestras capacidades, e incluso un informe de hunting de prueba.

Sí, amigos y amigas: tengo ocho días para convertirme no solo en un hunter experimentado sino en un experto en esa herramienta (además de, de repente, tener habilidades negociadoras para conseguir contratos). Por qué me ha caído a mí el marrón lo desconozco, pero así es mi empresa.

#ciberseguridad #ThreatHunting

ICYMI: IrisQL, our new query language, makes it easier than ever to share logic across teams and ticketing systems.

Explore how to optimize your security stack here: https://www.domaintools.com/blog/supercharge-your-threat-investigations-with-irisql

#ThreatHunting #IrisQL #Infosec #DataScience

🔵 THREAT INTELLIGENCE

Weekly Threat Roundup: 2026-04-20 to 2026-04-26

Roundup | CRITICAL
CVEs: CVE-2026-21515, CVE-2026-32613, CVE-2026-33819

Cybersecurity roundup for 2026-04-20 to 2026-04-26. 10 CVE advisories, 2 breach reports, 5 threat news stories.

Full analysis:
https://www.yazoul.net/news/article/2026-w17-weekly-threat-roundup

#CyberSecurity #CVE #ThreatHunting

*Read it like an infomercial*

Are you tired of working with logs that contain arrays with multiple JSON like this?

Have you tried creating a new column with the value you want only to find out that this value has no fixed position in the array?

Now your problems are over! With this 5 line KQL snippet, written by a real human, you can finally have the peace of mind that all the fields are populated correctly and everything is neat inside a single JSON!

https://github.com/0x-cde/Threat-Hunting-with-KQL/blob/main/CodeSnippets/Converting-array-of-json-to-single-json.md

#kusto #kustoquery #kql #threathunting #threat_hunting #dfir #digitalforensics