Active Threats

Explore the latest active threats being deployed by malicious actors as of Q4 2025. Each report may offer attack flows, actionable detection rules, and simulation instructions to help SOC teams stay ahead of evolving adversary techniques.

15 Jun 2026 19:03

CVE-2026-35273: Oracle PeopleSoft Zero-Day Exploited in the Wild

SOC Prime Bias: Critical

Rapid7

15 Jun 2026 18:57

Tengu Ransomware: From Initial Access to Encryption

SOC Prime Bias: High

picussecurity.com

15 Jun 2026 18:51

From Fiscal Lures to NinjaOne RMM Abuse

SOC Prime Bias: High

Cato Networks

15 Jun 2026 08:49

[Op Report] From SSA Phish to AdaptixC2: A Multi-RAT Intrusion

SOC Prime Bias: High

Deception.Pro Blog

12 Jun 2026 21:47

Solana FakeFix: 25 Malicious npm and PyPI Packages Pose as Stable Builds

SOC Prime Bias: Critical

JFrog Security Research

12 Jun 2026 21:43

Massive PyPI Supply Chain Attack Harvests Cloud Credentials via Python Startup Hooks

SOC Prime Bias: Critical

Orca Security

12 Jun 2026 09:33

Technical Analysis of Suspicious Emails Targeting the Hotel Industry

SOC Prime Bias: High

ITOCHU Cyber & Intelligence Inc.

12 Jun 2026 09:27

AsyncRAT Delivered Through AI-Themed Threat Campaigns

SOC Prime Bias: High

Fortinet Blog

12 Jun 2026 09:16

Analysis of Suspicious Emails Targeting the Hotel Industry

SOC Prime Bias: Medium

ITOCHU Cyber & Intelligence Inc.

12 Jun 2026 09:10

Khmer Shadow Targets Cambodian Government Entities in Espionage Campaign

SOC Prime Bias: High

Acronis