Author: Tudorel Iancu

Threat Overview In a recent publication dated 2026-01-21, security researchers from AlienVault have identified a sophisticated threat actor known as PurpleBravo, a North Korean state-sponsored group that has been targeting software developers through deceptive recruitment campaigns.

Command Evade Turla Kazuar Loader The Turla group, a long‑standing threat actor with a history of sophisticated operations, has recently deployed a new loader that demonstrates advanced evasion techniques. The loader, which we refer to as

Threat Overview On 19 January 2026, AlienVault released a detailed threat report titled 'New Remcos Campaign Distributed Through Fake Shipping Document'. The report describes a phishing operation that delivers a fileless variant of the Remcos RAT,

Threat Overview On 2026-01-16 AlienVault released a new threat report titled Targets critical infrastructure sectors in North America (UAT-8837). The report identifies a China‑nexus advanced persistent threat (APT) actor that has been actively targeting critical infrastructure

Threat Overview On January 15, 2026, AlienVault released a comprehensive threat report titled HUMINT Operations Uncover Cryptojacking Campaign: Discord-Based Distribution of Clipboard Hijacking Malware Targeting Cryptocurrency Communities. The report details a sophisticated operation carried out by

Shadow Reactor is a sophisticated multi‑stage Windows malware campaign that first surfaced in a threat report published by AlienVault on 13 January 2026. The campaign demonstrates a complex infection chain that relies on obfuscated VBS scripts,

On January 13, 2026, AlienVault released a comprehensive threat report titled Booking.com Phishing Campaign Targeting Hotels and Customers. The analysis uncovers a sophisticated, multi‑stage phishing operation that specifically targets the hospitality sector. By compromising Booking.com administrator

Black Cat Gang Threat Overview In a recent intelligence briefing released by AlienVault on 9 January 2026, security analysts were warned about a sophisticated campaign conducted by the criminal group known as the "Black Cat" gang.

Threat Overview The latest intelligence from AlienVault, published on 2026-01-09, reveals a sophisticated campaign dubbed PHALT#BLYX that targets the hospitality industry. The adversaries employ a multi‑stage social engineering attack that begins with a phishing email designed

Threat OverviewOn January 7 2026 AlienVault published a new threat report titled Phishing actors exploiting complex routing scenarios and misconfigured spoof protections. The analysis reveals that adversaries are leveraging advanced email routing techniques and weak spoof‑protection