Skip to content

Threat Hunting

Weekly Report: New Hacking Techniques and Critical CVEs 09 Sep – 15 Sep, 2025

The final week of August was marked by an unprecedented intersection of SaaS, supply chain, and state infrastructure attacks. Standout incidents included the highly technical s1ngularity AI-assisted supply chain compromise of Nx, the widespread theft of Salesforce and Google data via the Salesloft Drift OAuth breach, and ransomware that brought Nevada’s government services to a… Read More »Weekly Report: New Hacking Techniques and Critical CVEs 09 Sep – 15 Sep, 2025

INC Ransom Attack on Panama Ministry of Economy and Finance

Date of Incident: September 2025 Overview: In September 2025, the Panama Ministry of Economy and Finance fell victim to an INC ransomware attack initiated via a spear-phishing email. The breach affected one workstation, leading to the theft of approximately 1.5 TB of data, including emails and financial documents. Key operational systems remained unaffected. The attack… Read More »INC Ransom Attack on Panama Ministry of Economy and Finance

Weekly Report: New Hacking Techniques and Critical CVEs 03 Sep – 09 Sep, 2025

The cybersecurity landscape during September 3-9, 2025, was dominated by several critical developments that demand immediate attention from security leaders. Most notably, a massive npm supply chain attack compromised over 18 widely-used JavaScript packages with billions of weekly downloads, while two actively exploited Android zero-day vulnerabilities (CVE-2025-38352 and CVE-2025-48543) underscored the persistent threat of mobile… Read More »Weekly Report: New Hacking Techniques and Critical CVEs 03 Sep – 09 Sep, 2025

Weekly Report: New Hacking Techniques and Critical CVEs 26 Aug – 01 Sep, 2025

The final week of August 2025 witnessed a convergence of sophisticated supply chain attacks, critical infrastructure targeting, and state-sponsored campaigns that collectively demonstrated the accelerating sophistication and impact of modern cyber threats. The most significant developments include the first-ever AI-assisted supply chain attack through the Nx build platform compromise, the widespread Salesloft Drift OAuth token… Read More »Weekly Report: New Hacking Techniques and Critical CVEs 26 Aug – 01 Sep, 2025

Weekly Cybersecurity Intelligence Report Cyber Threats & Breaches 26 Aug – 01 Sep, 2025

The past week has witnessed a sophisticated escalation in nation-state and organized crime group activities, with over 5 million individuals affected across six major cybersecurity incidents. The reporting period is dominated by supply chain attacks targeting OAuth integrations, advanced ransomware campaigns against critical infrastructure, and coordinated credential harvesting operations orchestrated by the Chinese-linked threat actor… Read More »Weekly Cybersecurity Intelligence Report Cyber Threats & Breaches 26 Aug – 01 Sep, 2025

Use Cases
Technology
About
Partner
Resources

FireCompass – An EC Council Ecosystem Company.
©2025 . All Rights Reserved.