#threat-intelligence

2 posts tagged with threat-intelligence

Detecting Coruna: New YARA Rules for the Nation-State iOS Exploit Kit Targeting Safari

March 8, 2026•6 min read

ScanMalware adds 16 new YARA detection rules for Coruna (CryptoWaters), the nation-state-grade iOS exploit kit targeting Safari/WebKit on iOS 13-17.2.1. Our rules detect both specific IOCs and generic browser exploitation techniques including in-browser Mach-O parsing, ARM64 gadget scanning, and NaN-boxing type confusion.

threat-intelligencephishingmfa-bypass

Inside ShinyHunters' Phishing Kit: Technical Analysis of Real-Time SSO Credential Theft and MFA Bypass

February 3, 2026•14 min read

Deep technical analysis of ShinyHunters' sophisticated real-time phishing kit used for SSO credential theft and MFA bypass. Detailed breakdown of the attack infrastructure, JavaScript malware, and MFA bypass mechanisms used against healthcare and fintech companies.