Skip to content

Threat Hunting

Weekly Cybersecurity Intelligence Report Cyber Threats & Breaches 27 Jan – 2 Feb 2026

This week saw three critical attack vectors converge: network perimeter takeover via Fortinet CVE-2026-24858, state-sponsored Office zero-day exploitation by APT28, and antivirus supply chain compromise through eScan’s update infrastructure. Attackers demonstrated unprecedented speed—weaponizing fresh vulnerabilities within 72 hours and leveraging trusted security software distribution channels for malware delivery. Key Metrics: 3 critical vulnerabilities actively exploited… Read More »Weekly Cybersecurity Intelligence Report Cyber Threats & Breaches 27 Jan – 2 Feb 2026

Panera Bread Data Breach

Date of Incident: January 2026 Overview: In January 2026, Panera Bread experienced a data breach that exposed 5.1 million unique email addresses and associated personal information such as names, phone numbers, and physical addresses, along with the personal data of over 26,000 employees. The breach occurred due to a vulnerability in Panera Bread’s customer database,… Read More »Panera Bread Data Breach

SonicWall cloud backup hack leading to Marquis ransomware attack

Date of Incident: August 2025 Overview: In August 2025, a breach involving SonicWall’s cloud backup led to a ransomware attack on Marquis Software Systems, significantly impacting numerous US banks and credit unions. The attack exploited vulnerabilities in SonicWall’s firewall management system. Threat actors gained unauthorized access, stole firewall configuration files, and used them for lateral… Read More »SonicWall cloud backup hack leading to Marquis ransomware attack

Weekly Report: New Hacking Techniques and Critical CVEs 20 Jan – 26 Jan 2026

Three actively exploited zero-days, two CVSS 10.0 flaws, and critical supply chain compromises. Threat activity spans infrastructure (Cisco, Microsoft, Fortinet), AI/DevOps platforms (n8n, Chainlit, Zoom), and legacy systems. Dominant pattern: improper input validation enabling unauthenticated infrastructure takeover. Key Metrics: 3 zero-days exploited | 2 CVSS 10.0 flaws | 509 GB (ASRock Rack) + 861 GB… Read More »Weekly Report: New Hacking Techniques and Critical CVEs 20 Jan – 26 Jan 2026

SoundCloud Data Breach

Date of Incident: December 15, 2025 Overview: In December 2025, SoundCloud experienced a data breach that compromised the personal and contact information of over 29.8 million user accounts. The breach, reported in January 2026, involved unauthorized access through weak API authentication and possibly compromised employee credentials. Attackers targeted the Broadcasting, Media & Internet sector, specifically… Read More »SoundCloud Data Breach

Use Cases
Technology
About
Partner
Resources

FireCompass – An EC Council Ecosystem Company.
©2025 . All Rights Reserved.