OTX PULSE FEED
// SUBSCRIBED THREAT INTELLIGENCE PULSES — PAGE 1
All Malware Phishing APT Ransomware Botnet
50 results
108 Chrome Extensions Linked to Data Exfiltration and Session Theft via Shared C2 Infrastructure
session hijackingchrome extensionsgoogle identity theftbrowser backdoor
2026-04-14 AlienVault TLP:WHITE
44
IOCs
59 Victims, Zero Authentication: A ClickFix Campaign Force-Installs a Chrome Extension Banking Stealer and Leaves the Entire C2 Wide Open
session-hijackingclickfixcredential-theftbanking-stealer
2026-04-14 AlienVault Brazil TLP:WHITE
19
IOCs
ANTONIO EDUARDO FREDERICO
Pretexting-Based Targeted Intrusion: Analysis of Facebook Reconnaissance and Software Tampering Attacks
apt37zoho workdrive c2north korearokratshellcode injectionsocial engineering +4
2026-04-14 AlienVault TLP:WHITE
21
IOCs
APT37
Q1 2026 Malware Statistics Report for Linux SSH Servers
shellbotprometeicredential attacksddos botnetchinese attributionmirai +11
2026-04-14 AlienVault TLP:WHITE
2
IOCs
Q1 2026 Malware Statistics Report for Windows Database Servers
dictionary attackbrute forcescannerloveminergh0stratdatabase servers +10
2026-04-14 AlienVault TLP:WHITE
13
IOCs
Larva-26002
March 2026 CVE Landscape: 31 High-Impact Vulnerabilities Identified, Interlock Ransomware Group Exploits Cisco FMC Zero-Day
cve-2026-27944ransomwarecve-2021-30952ghostsabercve-2026-3909cve-2026-33032 +28
2026-04-14 AlienVault TLP:WHITE
27
IOCs
Interlock Ransomware Group
Q1 2026 malware statistics report for Windows web servers
iisapache tomcatjspratcve-2019-1458windows web serversprivilege escalation +9
2026-04-14 AlienVault TLP:WHITE
8
IOCs
Larva-26001
Polymarket Trader Funds at Risk: DPRK npm Package Steals Wallet Keys and Installs SSH Backdoor
sleek-prettyssh backdoorauthorized_keys persistencepolymarketdprkclob api +3
2026-04-13 AlienVault TLP:WHITE
6
IOCs
Famous Chollima
Live C2 Dump Recovering Every Stage of the Kill Chain: CHM Dropper, VBScript Stager, PowerShell Keylogger
apt43korean targetingchm droppervbscript stagernaver phishingcredential harvesting +2
2026-04-13 AlienVault TLP:WHITE
47
IOCs
Kimsuky
Fake recruiter campaign targets crypto developers with RAT
netstructbigmathlibgraphrixterminal-kleurbignumpypi packages +32
2026-04-13 AlienVault TLP:WHITE
319
IOCs
Lazarus Group
REFUNDEE: Inside a Shadow Panel Phishing-as-a-Service Operation
phishing-as-a-servicerefundeewebdavbulgarian-infrastructureshadow panelshadow-panel +4
2026-04-13 AlienVault TLP:WHITE
37
IOCs
ASO RAT: Arabic-Language Android Surveillance Platform Targeting Syria
apk-builderarabic-languagec2-infrastructureddnscve-2023-44487surveillance +7
2026-04-13 AlienVault TLP:WHITE
31
IOCs
Obfuscation Without Effort: Breaking a GIFTEDCROOK Stealer
cve-2025-8088data exfiltrationcve-2025-6218stealerukraine targetingwinrar exploitation +4
2026-04-13 AlienVault Ukraine TLP:WHITE
8
IOCs
UAC-0226
Tracking an OtterCookie Infostealer Campaign Across npm
credential theftkoalemoscontagious interviewinfostealerinvisibleferretssh backdoor +7
2026-04-13 AlienVault TLP:WHITE
9
IOCs
FAMOUS CHOLLIMA
Adobe Reader 0-day
adobe reader0-day
2026-04-13 AlienVault TLP:WHITE
9
IOCs