Home

Blog

Des 2025

Threat Hunting Blog

Threat Hunting Blog

Threat Hunting Blog

Check out our latest threat hunting articles, tips and stories

Check out our latest threat hunting articles, tips and stories

Check out our latest threat hunting articles, tips and stories

React2Shell (CVE-2025-55182): Node.js RCE Against a Production Next.js App
Dec 10, 2025

React2Shell (CVE-2025-55182): Dissecting a Node.js RCE Against a Production Next.js App

A detailed analysis of how React2Shell (CVE-2025-55182) was used to launch a multi-stage attack against a production Next.js app, exposing Node.js systems to real-world exploitation techniques and operational C2 infrastructure.

Threat Research

Malicious VSCode Extension Launches Multi-Stage Attack Chain with Anivia Loader and OctoRAT
Dec 3, 2025

Malicious VSCode Extension Launches Multi-Stage Attack Chain with Anivia Loader and OctoRAT

A fake VSCode extension triggered a multi-stage attack deploying the Anivia loader and OctoRAT. Learn how the chain worked and where defenders can detect it. Learn more.

Threat Research

React2Shell (CVE-2025-55182): Node.js RCE Against a Production Next.js App
Dec 10, 2025

React2Shell (CVE-2025-55182): Dissecting a Node.js RCE Against a Production Next.js App

A detailed analysis of how React2Shell (CVE-2025-55182) was used to launch a multi-stage attack against a production Next.js app, exposing Node.js systems to real-world exploitation techniques and operational C2 infrastructure.

Threat Research

Malicious VSCode Extension Launches Multi-Stage Attack Chain with Anivia Loader and OctoRAT
Dec 3, 2025

Malicious VSCode Extension Launches Multi-Stage Attack Chain with Anivia Loader and OctoRAT

A fake VSCode extension triggered a multi-stage attack deploying the Anivia loader and OctoRAT. Learn how the chain worked and where defenders can detect it. Learn more.

Threat Research

React2Shell (CVE-2025-55182): Node.js RCE Against a Production Next.js App
Dec 10, 2025

React2Shell (CVE-2025-55182): Dissecting a Node.js RCE Against a Production Next.js App

A detailed analysis of how React2Shell (CVE-2025-55182) was used to launch a multi-stage attack against a production Next.js app, exposing Node.js systems to real-world exploitation techniques and operational C2 infrastructure.

Threat Research

Malicious VSCode Extension Launches Multi-Stage Attack Chain with Anivia Loader and OctoRAT
Dec 3, 2025

Malicious VSCode Extension Launches Multi-Stage Attack Chain with Anivia Loader and OctoRAT

A fake VSCode extension triggered a multi-stage attack deploying the Anivia loader and OctoRAT. Learn how the chain worked and where defenders can detect it. Learn more.

Threat Research

React2Shell (CVE-2025-55182): Node.js RCE Against a Production Next.js App
Dec 10, 2025

React2Shell (CVE-2025-55182): Dissecting a Node.js RCE Against a Production Next.js App

A detailed analysis of how React2Shell (CVE-2025-55182) was used to launch a multi-stage attack against a production Next.js app, exposing Node.js systems to real-world exploitation techniques and operational C2 infrastructure.

Threat Research

Malicious VSCode Extension Launches Multi-Stage Attack Chain with Anivia Loader and OctoRAT
Dec 3, 2025

Malicious VSCode Extension Launches Multi-Stage Attack Chain with Anivia Loader and OctoRAT

A fake VSCode extension triggered a multi-stage attack deploying the Anivia loader and OctoRAT. Learn how the chain worked and where defenders can detect it. Learn more.

Threat Research

Page 1 / 10

Previous
Next

Categories :

Categories :

Categories :

All
Threat Research
Product News
All
Threat Research
Product News

Archives :

Archives :

Archives :

Des 2025

2

Des 2025

2

Des 2025

2

Nov 2025

3

Nov 2025

3

Nov 2025

3

Oct 2025

6

Oct 2025

6

Oct 2025

6

Sep 2025

5

Sep 2025

5

Sep 2025

5

Aug 2025

4

Aug 2025

4

Aug 2025

4

Jul 2025

5

Jul 2025

5

Jul 2025

5

Jun 2025

6

Jun 2025

6

Jun 2025

6

May 2025

5

May 2025

5

May 2025

5

Apr 2025

7

Apr 2025

7

Apr 2025

7

Mar 2025

7

Mar 2025

7

Mar 2025

7

Feb 2025

7

Feb 2025

7

Feb 2025

7

Jan 2025

7

Jan 2025

7

Jan 2025

7

Dec 2024

5

Dec 2024

5

Dec 2024

5

Nov 2024

6

Nov 2024

6

Nov 2024

6

Oct 2024

9

Oct 2024

9

Oct 2024

9

Sep 2024

4

Sep 2024

4

Sep 2024

4

Aug 2024

4

Aug 2024

4

Aug 2024

4

Jul 2024

5

Jul 2024

5

Jul 2024

5

Jun 2024

7

Jun 2024

7

Jun 2024

7

May 2024

4

May 2024

4

May 2024

4

Apr 2024

4

Apr 2024

4

Apr 2024

4

Mar 2024

5

Mar 2024

5

Mar 2024

5

Feb 2024

5

Feb 2024

5

Feb 2024

5

Jan 2024

3

Jan 2024

3

Jan 2024

3

Dec 2023

0

Dec 2023

0

Dec 2023

0

Nov 2023

1

Nov 2023

1

Nov 2023

1

Oct 2023

3

Oct 2023

3

Oct 2023

3

Sep 2023

3

Sep 2023

3

Sep 2023

3

Aug 2023

2

Aug 2023

2

Aug 2023

2

Get biweekly intelligence to hunt adversaries before they strike.

Threat Hunting Blog: Latest Threat Intelligence Research

Threat Hunting Platform

Products

Web Interface

Feeds

Enrichment API

Pricing

Features

AttackCapture™

HuntSQL™

C2 Detection

IOC Hunter

Phishing Infrastructure

Resources

Blog

Change Log

Support Docs

Integrations

Malware Families

Glossary

Company

About Us

Use Cases

Testimonials

OEM Partners

Contact Us

Latest News

React2Shell (CVE-2025-55182): Node.js RCE Against a Production Next.js App

React2Shell (CVE-2025-55182): Dissecting a Node.js RCE Against a Production Next.js App

Dec 10, 2025

Malicious VSCode Extension Launches Multi-Stage Attack Chain with Anivia Loader and OctoRAT

Malicious VSCode Extension Launches Multi-Stage Attack Chain with Anivia Loader and OctoRAT

Dec 3, 2025

The Complete Guide to Hunting Cobalt Strike - Part 2: 10+ HuntSQL Recipes to Find Cobalt Strike

The Complete Guide to Hunting Cobalt Strike - Part 2: 10+ HuntSQL Recipes to Find Cobalt Strike

Nov 19, 2025

©2025

Hunt Intelligence, Inc.

Terms & Conditions

|

Privacy Policy

Get biweekly intelligence to hunt adversaries before they strike.

Threat Hunting Blog: Latest Threat Intelligence Research

Threat Hunting Platform

Products

Web Interface

Feeds

Enrichment API

Pricing

Features

AttackCapture™

HuntSQL™

C2 Detection

IOC Hunter

Phishing Infrastructure

Resources

Blog

Change Log

Support Docs

Integrations

Malware Families

Glossary

Company

About Us

Use Cases

Testimonials

OEM Partners

Contact Us

Latest News

React2Shell (CVE-2025-55182): Node.js RCE Against a Production Next.js App

React2Shell (CVE-2025-55182): Dissecting a Node.js RCE Against a Production Next.js App

Dec 10, 2025

Malicious VSCode Extension Launches Multi-Stage Attack Chain with Anivia Loader and OctoRAT

Malicious VSCode Extension Launches Multi-Stage Attack Chain with Anivia Loader and OctoRAT

Dec 3, 2025

The Complete Guide to Hunting Cobalt Strike - Part 2: 10+ HuntSQL Recipes to Find Cobalt Strike

The Complete Guide to Hunting Cobalt Strike - Part 2: 10+ HuntSQL Recipes to Find Cobalt Strike

Nov 19, 2025

©2025

Hunt Intelligence, Inc.

Terms & Conditions

|

Privacy Policy

Get biweekly intelligence to hunt adversaries before they strike.

Threat Hunting Blog: Latest Threat Intelligence Research

Threat Hunting Platform

Products

Web Interface

Feeds

Enrichment API

Pricing

Features

AttackCapture™

HuntSQL™

C2 Detection

IOC Hunter

Phishing Infrastructure

Resources

Blog

Change Log

Support Docs

Integrations

Malware Families

Glossary

Company

About Us

Use Cases

Testimonials

OEM Partners

Contact Us

Latest News

React2Shell (CVE-2025-55182): Node.js RCE Against a Production Next.js App

React2Shell (CVE-2025-55182): Dissecting a Node.js RCE Against a Production Next.js App

Dec 10, 2025

Malicious VSCode Extension Launches Multi-Stage Attack Chain with Anivia Loader and OctoRAT

Malicious VSCode Extension Launches Multi-Stage Attack Chain with Anivia Loader and OctoRAT

Dec 3, 2025

The Complete Guide to Hunting Cobalt Strike - Part 2: 10+ HuntSQL Recipes to Find Cobalt Strike

The Complete Guide to Hunting Cobalt Strike - Part 2: 10+ HuntSQL Recipes to Find Cobalt Strike

Nov 19, 2025

©2025

Hunt Intelligence, Inc.

Terms & Conditions

|

Privacy Policy