Threat Intelligence

This category covers threat intelligence reports, emerging attack trends, adversary activity, tactics and techniques, threat actor insights, and broader developments shaping the cybersecurity landscape.

Pre-Stuxnet Fast16 Malware Tampered with Nuclear Weapons Simulations

Pre-Stuxnet Fast16 Malware Tampered with Nuclear Weapons Simulations

Pre-Stuxnet Fast16 Malware Tampered with Nuclear Weapons Simulations

Advisoryloom Editor May 18, 2026

A new analysis of the Lua-based fast16 malware has confirmed that it was a cyber sabotage tool...

NGINX CVE-2026-42945 Exploited in the Wild, Causing Worker Crashes and Possible RCE

NGINX CVE-2026-42945 Exploited in the Wild, Causing Worker Crashes and Possible RCE

NGINX CVE-2026-42945 Exploited in the Wild, Causing Worker Crashes and Possible RCE

Advisoryloom Editor May 17, 2026

A newly disclosed security flaw impacting NGINX Plus and NGINX Open has come under active exploitation in...

Grafana GitHub Token Breach Led to Codebase Download and Extortion Attempt

Grafana GitHub Token Breach Led to Codebase Download and Extortion Attempt

Grafana GitHub Token Breach Led to Codebase Download and Extortion Attempt

Advisoryloom Editor May 17, 2026

Grafana has disclosed that an “unauthorized party” obtained a token that granted them the ability to access...

Funnel Builder Flaw Under Active Exploitation Enables WooCommerce Checkout Skimming

Funnel Builder Flaw Under Active Exploitation Enables WooCommerce Checkout Skimming

Funnel Builder Flaw Under Active Exploitation Enables WooCommerce Checkout Skimming

Advisoryloom Editor May 16, 2026

A critical security vulnerability impacting the Funnel Builder plugin for WordPress has come under active exploitation in...

Cybercriminal Twins Caught After They Forgot to Turn Off Microsoft Teams Recording

Cybercriminal Twins Caught After They Forgot to Turn Off Microsoft Teams Recording

Cybercriminal Twins Caught After They Forgot to Turn Off Microsoft Teams Recording

Advisoryloom Editor May 16, 2026

Plus: Instructure’s Canvas ransomware debacle comes to a close, an alleged dark net market kingpin gets arrested,...

Friday Squid Blogging: Bigfin Squid

Friday Squid Blogging: Bigfin Squid

Friday Squid Blogging: Bigfin Squid

Advisoryloom Editor May 15, 2026

Article about the bigfin squid. As usual, you can also use this squid post to talk about...

Turla Turns Kazuar Backdoor Into Modular P2P Botnet for Persistent Access

Turla Turns Kazuar Backdoor Into Modular P2P Botnet for Persistent Access

Turla Turns Kazuar Backdoor Into Modular P2P Botnet for Persistent Access

Advisoryloom Editor May 15, 2026

The Russian state-sponsored hacking group known as Turla has transformed its custom backdoor Kazuar into a modular...

Four OpenClaw Flaws Enable Data Theft, Privilege Escalation, and Persistence

Four OpenClaw Flaws Enable Data Theft, Privilege Escalation, and Persistence

Four OpenClaw Flaws Enable Data Theft, Privilege Escalation, and Persistence

Advisoryloom Editor May 15, 2026

Cybersecurity researchers have disclosed a set of four security flaws in OpenClaw that could be chained to...

TanStack Supply Chain Attack Hits Two OpenAI Employee Devices, Forces macOS Updates

TanStack Supply Chain Attack Hits Two OpenAI Employee Devices, Forces macOS Updates

TanStack Supply Chain Attack Hits Two OpenAI Employee Devices, Forces macOS Updates

Advisoryloom Editor May 15, 2026

OpenAI has disclosed that two of its employee devices in its corporate environment were impacted via the...

What 45 Days of Watching Your Own Tools Will Tell You About Your Real Attack Surface

What 45 Days of Watching Your Own Tools Will Tell You About Your Real Attack Surface

What 45 Days of Watching Your Own Tools Will Tell You About Your Real Attack Surface

Advisoryloom Editor May 15, 2026

In Your Biggest Security Risk Isn’t Malware — It’s What You Already Trust, we made a simple...