SHADOWCORE_
INTELLIGENCE FEED

Threat
Intelligence

Proactive threat research, OSINT analysis, and adversary profiling. Know what's coming before it hits your network.

Live Threat Feed
[CRITICAL] CVE-2024-3094 XZ Utils backdoor — supply chain compromise [CRITICAL] CVE-2024-21762 Fortinet FortiOS RCE — actively exploited [CRITICAL] APT-SANDWORM Targeting European energy infrastructure [CRITICAL] CVE-2024-47575 FortiManager authentication bypass in fgfmsd [HIGH] CVE-2023-44487 HTTP/2 Rapid Reset DDoS attack vector [HIGH] APT-COZY-BEAR Spear-phishing campaign targeting EU government [HIGH] CVE-2024-4577 PHP-CGI argument injection on Windows [CRITICAL] CVE-2023-46805 Ivanti Connect Secure auth bypass chain [CRITICAL] CVE-2024-3094 XZ Utils backdoor — supply chain compromise [CRITICAL] CVE-2024-21762 Fortinet FortiOS RCE — actively exploited [CRITICAL] APT-SANDWORM Targeting European energy infrastructure [CRITICAL] CVE-2024-47575 FortiManager authentication bypass in fgfmsd [HIGH] CVE-2023-44487 HTTP/2 Rapid Reset DDoS attack vector [HIGH] APT-COZY-BEAR Spear-phishing campaign targeting EU government [HIGH] CVE-2024-4577 PHP-CGI argument injection on Windows [CRITICAL] CVE-2023-46805 Ivanti Connect Secure auth bypass chain
Research

Latest Reports

Curated threat intelligence from our research team.

critical CVE Analysis 2024-03-29

CVE-2024-3094: XZ Utils Supply Chain Backdoor Analysis

Technical breakdown of the sophisticated backdoor planted in XZ Utils affecting SSH authentication on Linux systems. Impact assessment and detection guidance.

CVE Supply Chain Linux
critical APT Profile 2024-02-15

APT-29 (Cozy Bear): OAuth Token Abuse Campaign Against EU Targets

Analysis of spear-phishing campaign leveraging compromised OAuth tokens targeting European government and diplomatic entities.

APT Nation State Phishing
critical CVE Analysis 2024-02-08

CVE-2024-21762: Fortinet FortiOS Out-of-Bounds Write RCE

Actively exploited vulnerability in FortiOS SSL VPN. Allows unauthenticated remote code execution. Patch urgency assessment and IoC indicators.

CVE Fortinet RCE
medium Compliance Brief 2024-01-20

NIS2 Compliance Landscape: What European SMBs Need to Know

Practical overview of NIS2 Directive requirements for small and medium businesses in essential and important sectors. Gap analysis checklist included.

NIS2 Compliance EU
high OSINT 2024-01-10

OSINT: Credential Exposure Trends in European Financial Sector

Report on credential leak trends affecting European financial institutions. Data sourced from dark web monitoring and paste site analysis.

OSINT Credentials Finance
high Research 2023-12-15

Cloud Security: Common AWS Misconfigurations in Pentest Engagements

Patterns of AWS misconfigurations discovered across our penetration testing engagements. S3 bucket exposure, overly permissive IAM, and metadata endpoint abuse.

Cloud AWS Pentest