Real-World Cloud Attack Intelligence

Between January 2025 and June 2026, threat actors have developed a 'search your target' service, transforming vast collections of credentials obtained through infostealer malware into searchable databases. This service enables buyers to request specific credentials based on company, platform, domain, geography, or account type, streamlining the process of acquiring targeted access. Researchers analyzed 470 underground forum posts, revealing that these services act as intermediaries between raw log trading and account takeover activities, often operated by Malware-as-a-Service (MaaS) providers and consumers. They offer functionalities such as targeted extraction, filtering, deduplication, and formatting from extensive infostealer databases containing tens of billions of records. The emergence of these services signifies a shift in the cybercriminal ecosystem, highlighting the increasing commoditization and specialization within underground markets. This trend underscores the necessity for organizations to enhance their credential management practices, implement robust monitoring systems, and adopt proactive security measures to mitigate the risks associated with credential-based attacks.

In June 2026, Microsoft disclosed a critical vulnerability chain, dubbed 'AutoJack,' in its AutoGen Studio—a tool for developing AI agents. This flaw allowed malicious web pages to exploit AI agents' web browsing capabilities, leading to remote code execution (RCE) on the host system. The attack combined three weaknesses: the AI agent's browser being treated as a trusted 'localhost' source, lack of authentication on the Model Context Protocol (MCP) WebSocket, and the ability to execute arbitrary commands via manipulated URL parameters. ([csoonline.com](https://www.csoonline.com/article/4187155/microsoft-says-web-enabled-ai-agents-can-trigger-host-level-rce.html?utm_source=openai)) The 'AutoJack' incident underscores the evolving security challenges in AI agent frameworks, highlighting the need for robust authentication and authorization mechanisms, especially when agents interact with untrusted web content. Organizations must reassess their security postures to address these emerging threats. ([microsoft.com](https://www.microsoft.com/en-us/security/blog/2026/05/07/prompts-become-shells-rce-vulnerabilities-ai-agent-frameworks/?utm_source=openai))

In June 2026, the FortiBleed campaign targeted over 430,000 Fortinet FortiGate firewalls globally, employing a custom Golang-based tool named 'FortigateSniffer' to intercept and extract authentication credentials from network traffic. Attackers initially gained administrative access through credential stuffing and brute-force attacks, subsequently deploying the sniffer to monitor 24 protocols, including RADIUS, NTLM, Kerberos, and LDAP, thereby harvesting sensitive authentication data. This incident underscores the escalating sophistication of cyber threats, highlighting the critical need for organizations to implement robust security measures such as multi-factor authentication, regular credential updates, and vigilant monitoring of network traffic to detect unauthorized activities.

In June 2026, a critical vulnerability known as 'PixelSmash' (CVE-2026-8461) was identified in FFmpeg's MagicYUV decoder, affecting versions prior to 8.1.2. This heap out-of-bounds write flaw allows attackers to execute arbitrary code or cause denial-of-service conditions by tricking users into opening malicious AVI, MKV, or MOV files. Applications utilizing FFmpeg's libavcodec, such as Jellyfin, Kodi, Emby, Nextcloud, PhotoPrism, and OBS Studio, are susceptible. Exploitation for remote code execution is feasible if Address Space Layout Randomization (ASLR) is disabled or bypassed. The widespread use of FFmpeg across various media applications amplifies the risk, highlighting the importance of prompt updates to mitigate potential attacks. This incident underscores the critical need for rigorous supply chain security practices and timely patch management to protect against emerging vulnerabilities.

In June 2026, the Ethereum-based MEV bot known as JaredFromSubway suffered a $15 million loss after an attacker exploited its opportunity-detection logic. The attacker created fake cryptocurrency trading opportunities by deploying contracts designed to appear as profitable MEV opportunities. The bot, upon analyzing these deceptive routes, granted ERC-20 token approvals to contracts controlled by the attacker, who subsequently withdrew WETH, USDC, and USDT from the bot's contract via the transferFrom function. This incident underscores the vulnerabilities inherent in automated trading systems and highlights the need for robust security measures in the rapidly evolving DeFi landscape. As MEV bots continue to play a significant role in blockchain ecosystems, their susceptibility to sophisticated attacks poses ongoing risks to financial stability and trust in decentralized platforms.

In June 2026, a sophisticated phishing campaign targeted WhatsApp users globally, distributing malicious VBScript files disguised as business documents. Attackers compromised WhatsApp accounts to send these deceptive messages, leading recipients to execute scripts that disabled User Account Control (UAC) protections and installed ManageEngine Endpoint Central, granting remote access to victims' systems. The campaign affected users in countries including Brazil, India, Mexico, Singapore, the UK, Spain, Taiwan, Australia, Russia, Vietnam, and Malaysia. This incident underscores the evolving tactics of cybercriminals leveraging trusted communication platforms to disseminate malware. The use of legitimate software for malicious purposes highlights the need for heightened vigilance and robust security measures to protect against such sophisticated attacks.

In June 2026, ShapedPlugin, a developer of premium WordPress plugins, experienced a supply chain attack where attackers compromised the company's update infrastructure. This breach led to the distribution of backdoored versions of several plugins, including Product Slider Pro for WooCommerce, Real Testimonials Pro, and Smart Post Show Pro. The malicious code, activated upon administrator access to the WordPress dashboard, connected to a command-and-control server to download additional payloads, resulting in unauthorized access and data exfiltration. ([thaicert.or.th](https://www.thaicert.or.th/en/2026/06/19/supply-chain-attack-through-shapedplugin-update-system-impacts-wordpress-websites/?utm_source=openai)) This incident underscores the growing threat of supply chain attacks targeting trusted software vendors. It highlights the critical need for organizations to implement robust security measures, including regular code audits and monitoring of update channels, to prevent similar compromises.

In June 2026, cybersecurity researchers from Zafran Security disclosed four critical vulnerabilities in Dify, an open-source agentic workflow platform. These flaws, collectively termed 'DifyTap,' allowed unauthorized access to AI conversations across different tenants without authentication. The vulnerabilities included authorization bypasses and path traversal issues, enabling attackers to read private AI chats, manipulate internal APIs, and access files across tenants. This incident underscores the growing risks associated with multi-tenant cloud services and the importance of stringent access controls. As AI platforms become integral to business operations, ensuring their security is paramount to prevent data breaches and maintain user trust.

In June 2026, a sophisticated malware campaign was identified, leveraging WhatsApp messages to distribute malicious Visual Basic Script (VBS) files. These scripts, once executed, initiated a multi-stage infection chain that ultimately installed Remote Monitoring and Management (RMM) software, granting attackers persistent remote access to compromised Windows systems. The campaign employed social engineering tactics, using deceptive file names to entice users into executing the scripts. Notably, the malware utilized renamed legitimate Windows utilities and retrieved payloads from trusted cloud services, effectively evading detection mechanisms. ([microsoft.com](https://www.microsoft.com/en-us/security/blog/2026/03/31/whatsapp-malware-campaign-delivers-vbs-payloads-msi-backdoors/?utm_source=openai)) This incident underscores a concerning trend in cyber threats, where attackers exploit widely-used communication platforms and legitimate tools to infiltrate systems. The use of trusted cloud services for payload delivery and the manipulation of standard Windows utilities highlight the evolving sophistication of threat actors. Organizations must remain vigilant, enhancing their security protocols to detect and mitigate such deceptive tactics.

In June 2026, cybercriminals orchestrated a sophisticated campaign to distribute a Rust-based clipboard hijacking malware targeting both Windows and macOS users. The attackers created a comprehensive fake reputation network, utilizing GitHub repositories, SourceForge projects, AI-generated YouTube videos, and manipulated VirusTotal comments to lend credibility to their malicious tools. These tools, masquerading as crypto trading and gambling aids, were designed to steal cryptocurrency by intercepting wallet addresses copied to the clipboard, affecting assets like Bitcoin, Ethereum, Monero, Binance Chain, and Solana. This incident underscores a significant evolution in cybercriminal tactics, highlighting their ability to exploit multiple trusted platforms to build false credibility and deceive users. The campaign's success demonstrates the urgent need for enhanced vigilance and skepticism towards online reputation signals, especially in the cryptocurrency domain, where the allure of quick profits can cloud judgment.

INTERPOL's 2025/2026 Asia and South Pacific Cyberthreat Assessment Report highlights a significant surge in cybercrime across the region, driven by rapid digitalization and organized criminal networks. Phishing has emerged as the most prevalent and financially damaging form of cybercrime, with over half of the surveyed countries reporting that cybercrime accounts for more than 30% of all recorded crimes. The report also notes a rise in ransomware attacks, deepfake scams, and AI-driven frauds targeting sectors such as real estate, manufacturing, and financial services. ([interpol.int](https://www.interpol.int/content/download/24327/file/CYBER_ASP%20Cyber%20Threat%20Assessment%20Report_2025_2026_v4.pdf?utm_source=openai)) This escalation underscores the urgent need for enhanced cybersecurity measures and international cooperation to combat the evolving threat landscape. The increasing sophistication of cybercriminal tactics, including the use of AI and ransomware-as-a-service models, poses a substantial risk to both public and private sectors. ([interpol.int](https://www.interpol.int/content/download/24327/file/CYBER_ASP%20Cyber%20Threat%20Assessment%20Report_2025_2026_v4.pdf?utm_source=openai))

In December 2025, a critical vulnerability known as React2Shell (CVE-2025-55182) was disclosed, affecting React Server Components versions 19.0.0 through 19.2.0. This flaw allowed unauthenticated remote code execution via improper deserialization in the Flight protocol. Within hours of disclosure, multiple state-sponsored threat groups, including China's Earth Lamia and Jackpot Panda, as well as North Korean actors, began exploiting the vulnerability to deploy malware, establish persistent access, and exfiltrate data. The rapid exploitation led to significant security incidents across various sectors globally. ([aws.amazon.com](https://aws.amazon.com/blogs/security/china-nexus-cyber-threat-groups-rapidly-exploit-react2shell-vulnerability-cve-2025-55182/?utm_source=openai)) The React2Shell incident underscores the critical importance of prompt patching and vigilant monitoring. The swift exploitation by sophisticated threat actors highlights the need for organizations to enhance their vulnerability management processes and adopt proactive security measures to mitigate emerging threats effectively.