
Threat Intelligence Snapshot: Week 7, 2026
Exchange URL Rule Failure Sparks Mass Email Quarantine, ZeroDayRAT Spyware, SSH Botnets and DPRK LinkedIn Fraud Expand Global Threat Landscape

Exchange URL Rule Failure Sparks Mass Email Quarantine, ZeroDayRAT Spyware, SSH Botnets and DPRK LinkedIn Fraud Expand Global Threat Landscape

GitHub repositories used to distribute SmartLoader and Lumma Stealer | Yemen’s Houthis to resume attacks on Israeli ships

Urgent patches for actively exploited VMware zero-day | ENISA launches NIS360 to assess cyber maturity and criticality across NIS2 sectors

Chinese state-sponsored Salt Typhoon exploits Cisco router vulnerabilitieS | US signals efforts toward normalizing relations with Russia

Chinese state-sponsored Salt Typhoon exploits Cisco router vulnerabilities | Eurosystem updates the TIBER-EU framework to align with DORA

Mirai-based botnet exploits zero-day, Ivanti Secure Connect zero-days are actively exploited in the wild | US imposes sanctions on a

Malware designed to terminate Siemens engineering processes, Mirai targets Juniper SSR devices | Italy’s Data Protection Authority fines OpenAI for

Russian state-sponsored Earth Koshchei targets high-profile EU Orgs, Lazarus Group evolves its infection chain | ECB Calls for Stronger Bank
Try searching our blog

Browser-Native Ransomware Abuse Path in DeepSeek-Attributed Sample | Iran and US Trade Attacks, Tanker Struck in Hormuz

Compromised Klue Integration Enables Bulk Salesforce CRM Record Exfiltration | EU Aviation Safety Agency Warns Airlines Should Still Avoid Airspace Over Iran, Iraq, and Lebanon

QuoIntelligence’s latest report tracks the weaponization of AI across the attack lifecycle and sets out what that means for European security teams heading into 2026.

ErrTraffic MaaS Distributes Infostealers Through Compromised WordPress Sites and ClickFix Lures | Italy Arrests Seven Over Anarchist Network Linked to Winter Olympics Rail Sabotage