Lucene search
K

466 matches found

OSSF Malicious Packages
OSSF Malicious Packages
added 2026/07/02 12:0 a.m.5 views

Malicious code in @marketfront/infopopup (npm)

The @marketfront/infopopup package is part of a 25-package malicious campaign batch-published to the @marketfront npm scope by npm user 'marketfront' [email protected] within a roughly 3-minute window on 2026-07-01. All packages in the campaign were published at version 7.0.0 and use...

6.1AI score
Exploits0References2
Packet Storm News
Packet Storm News
added 2026/06/04 12:0 a.m.18 views

TinyML-Driven Cybersecurity for Autonomous Spacecraft: Latency-Accuracy Analysis for SPARTA RF and Cyber Threat Detection

Autonomous spacecraft require rapid, lightweight, and reliable onboard detection of cyber-RF threats. Using the SPARTA attack model, we analyze the latency-accuracy trade-offs of TinyML-compatible classical models -- Random Forest, Logistic Regression, SVM, and MLP -- for detecting uplink jamming...

5.6AI score
Exploits0
Packet Storm News
Packet Storm News
added 2026/06/04 12:0 a.m.57 views

GenTI: Benchmarking LLMs for Autonomous IDPS Rule Generation for Unseen Attacks

Rule-based Intrusion Detection and Prevention Systems IDPS offer precise attack detection as well as mitigation, however their manually crafted, signature-driven rules limit adaptability to emerging and zero-day threats. Additionally, existing public datasets e.g., CICIDS2017, UNSW-NB15 focus on...

5.5AI score
Exploits0
Packet Storm News
Packet Storm News
added 2026/06/03 12:0 a.m.37 views

ZERO-APT: A Closed-Loop Adversarial Framework for LLM-Driven Automated Penetration Testing under Intelligent Defense

LLM-driven automated penetration testing agents are typically evaluated against static targets that neither detect nor respond to attacks, so their behavior under intelligent defense remains untested. The causal consistency of multi-step attack chains likewise hinges on unstable LLM reasoning, an...

5.5AI score
Exploits0
Packet Storm News
Packet Storm News
added 2026/05/25 12:0 a.m.16 views

TTPrint: Evidence-Grounded TTP Extraction Via Diverge-Then-Converge Verification

Extracting MITRE ATT&CK techniques from cyber threat intelligence CTI reports is an open-set, multi-label problem requiring both high recall not missing techniques and high precision not hallucinating unsupported ones. Existing methods--rule-based, supervised, and LLM-based--struggle to achieve...

5.8AI score
Exploits0
Microsoft Secure
Microsoft Secure
added 2026/05/18 4:0 p.m.12 views

How to better protect your growing business in an AI-powered world

AI is rapidly reshaping how work gets done in companies and organizations. In celebrating National Small Business Month, we want to acknowledge the unique challenges that growing business leaders face as AI creates both opportunity and risk. They face constant tradeoffs between moving fast,...

5.8AI score
Exploits0
Packet Storm News
Packet Storm News
added 2026/05/15 12:0 a.m.9 views

Context-Aware Entity-Relation Extraction for Threat Intelligence Knowledge Graphs

Cybersecurity Knowledge Graphs CKGs unify diverse Cyber Threat Intelligence CTI sources into structured, queryable formats, offering scalable solutions for automating proactive and real-time security responses. Their increasing adoption has significantly enhanced the workflow and decision-making...

5.7AI score
Exploits0
GithubExploit
GithubExploit
added 2026/04/21 9:26 a.m.94 views

HONEYPOTX-AI-Powered-Cyber-Threat-Detection-System

No d...

5.7AI score
Exploits0
Packet Storm News
Packet Storm News
added 2026/04/13 12:0 a.m.5 views

Beyond RAG for Cyber Threat Intelligence: A Systematic Evaluation of Graph-Based and Agentic Retrieval

Cyber threat intelligence CTI analysts must answer complex questions over large collections of narrative security reports. Retrieval-augmented generation RAG systems help language models access external knowledge, but traditional vector retrieval often struggles with queries that require reasonin...

5.8AI score
Exploits0
Trend Micro Simply Security
Trend Micro Simply Security
added 2026/04/09 12:0 a.m.8 views

U.S. Public Sector Under Siege: Threat Intelligence for Q1 2026

The first quarter of 2026 has reinforced a hard truth: U.S. government agencies and educational institutions are operating in the most hostile cyber threat environment ever recorded...

5.8AI score
Exploits0
HackRead
HackRead
added 2026/04/08 2:19 p.m.5 views

Storm-1175 Deploys Medusa Ransomware Within 24 Hours of Flaw Disclosure

Microsoft researchers have uncovered a fast-moving group, Storm-1175, launching high-speed Medusa ransomware attacks against healthcare and education sectors in the UK, US, and Australia by exploiting security flaws in as little as 24 hours...

5.9AI score
Exploits0
Packet Storm News
Packet Storm News
added 2026/03/23 12:0 a.m.5 views

ProHunter APT Hunting Tool / Paper

Advanced Persistent Threats APTs remain difficult to detect due to their stealthy nature and long-term persistence. To tackle this challenge, provenance-based threat hunting has gained traction as a proactive defense mechanism. This technique models audit logs as a whole-system provenance graph a...

5.8AI score
Exploits0
Microsoft Secure
Microsoft Secure
added 2026/03/20 4:19 p.m.124 views

CTI-REALM: A new benchmark for end-to-end detection rule generation with AI agents

Excerpt: CTI-REALM is Microsoft’s open-source benchmark for evaluating AI agents on real-world detection engineering—turning cyber threat intelligence CTI into validated detections. Instead of measuring “CTI trivia,” CTI-REALM tests end-to-end workflows: reading threat reports, exploring telemetr...

5.7AI score
Exploits0
Packet Storm News
Packet Storm News
added 2026/03/04 12:0 a.m.3 views

From Threat Intelligence to Firewall Rules: Semantic Relations in Hybrid AI Agent and Expert System Architectures

Web security demands rapid response capabilities to evolving cyber threats. Agentic Artificial Intelligence AI promises automation, but the need for trustworthy security responses is of the utmost importance. This work investigates the role of semantic relations in extracting information for...

6AI score
Exploits0
Circl
Circl
added 2026/02/04 1:0 p.m.3 views

CERTFR-2026-CTI-001

creationtimestamp| type| source ---|---|--- 2026-02-04 13:00:41+00:00| seen| https://social.numerique.gouv.fr/users/certfr/statuses/116012485069158031...

5.8AI score
Exploits0References1
Packet Storm News
Packet Storm News
added 2026/01/08 12:0 a.m.2 views

Cyber Threat Detection and Vulnerability Assessment System Using Generative AI and Large Language Model

Background: Cyber-attacks have evolved rapidly in recent years, many individuals and business owners have been affected by cyber-attacks in various ways. Cyber-attacks include various threats such as ransomware, malware, phishing, and Denial of Service DoS-related attacks. Challenges: Traditional...

6.9AI score
Exploits0
hivepro
hivepro
added 2026/01/06 5:6 p.m.3 views

Cyber Threat Exposure Management: A 5-Step Guide

Attackers don’t care about your long list of CVEs. They look for the path of least resistance to your most valuable assets. So, why are we still managing security from a defender’s checklist instead of an attacker’s playbook? A modern security program needs to see the entire attack surface throug...

7AI score
Exploits0
The Hacker News
The Hacker News
added 2025/12/30 10:46 a.m.5 views

Silver Fox Targets Indian Users With Tax-Themed Emails Delivering ValleyRAT Malware

The threat actor known as Silver Fox has turned its focus to India, using income tax-themed lures in phishing campaigns to distribute a modular remote access trojan called ValleyRAT aka Winos 4.0. "This sophisticated attack leverages a complex kill chain involving DLL hijacking and the modular...

6.5AI score
Exploits0
Packet Storm News
Packet Storm News
added 2025/12/27 12:0 a.m.5 views

SCyTAG: Scalable Cyber-Twin for Threat-Assessment Based on Attack Graphs

Understanding the risks associated with an enterprise environment is the first step toward improving its security. Organizations employ various methods to assess and prioritize the risks identified in cyber threat intelligence CTI reports that may be relevant to their operations. Some methodologi...

6.6AI score
Exploits0
HackRead
HackRead
added 2025/12/18 5:7 p.m.9 views

Iranian APT ‘Prince of Persia’ Resurfaces With New Tools and Targets

SafeBreach reports the resurgence of the Iranian APT group Prince of Persia Infy. Discover how these state-sponsored hackers are now using Telegram bots and Thunder and Lightning malware to target victims globally across Europe, India, and Canada...

7AI score
Exploits0
Rows per page
Query Builder