ThreatBook Blog

Actionable research, threat intelligence trends, product updates, and thought leadership from ThreatBook.

4 min read

Lazarus Group Poisons Axios: Inside the npm Supply Chain Attack

Picture of ThreatBook Research Team ThreatBook Research Team: 1 April 2026, 12:04 AM

Regarding yesterday's Axios npm supply chain poisoning incident, ThreatBook has conducted in-depth sample analysis and attack tracing. Drawing on long-term threat intelligence accumulated through tracking key APT organizations, we attribute this...

Threat Research
Read More

3 min read

OpenClaw Users at Risk: Axios on npm Backdoored with Cross-Platform RAT

Picture of ThreatBook Research Team ThreatBook Research Team: 31 March 2026, 02:03 PM

Axios — one of the most foundational dependencies in the JavaScript ecosystem, with over 3.6 billion annual downloads — was compromised on npm on...

Threat Research
Read More

3 min read

When Security Tools Get Compromised: The LiteLLM Supply Chain Poisoning Incident

Picture of ThreatBook Research Team ThreatBook Research Team: 25 March 2026, 03:03 PM

On March 24, 2026, ThreatBook Research Team detected a large-scale supply chain attack targeting LiteLLM — a core component widely used across the AI...

Threat Research
Read More

2 min read

The AI Tools Your Security Team Doesn't Know Are Running

Picture of Nicholas Tan Nicholas Tan: 24 March 2026, 08:03 AM

A security director at a mid-sized enterprise came to us recently with a question that sounds simple but turns out to be surprisingly hard to answer:...

Security Operations
Read More

3 min read

Phishing With Google Ads and Fake AI Docs: A Criminal Campaign Targeting the AI Ecosystem

Picture of ThreatBook Research Team ThreatBook Research Team: 20 March 2026, 08:03 AM

ThreatBook Research and Response Team has identified and tracked an organized threat group conducting a large-scale malware distribution campaign...

Threat Research Security Operations
Read More

3 min read

Inside the Attack: Complete Technical Breakdown of the AI Ecosystem Threat Campaign

Picture of ThreatBook Research Team ThreatBook Research Team: 20 March 2026, 08:03 AM

This is the full technical companion to our campaign overview published in Part 1. It documents the Windows and macOS malware chains in detail, and...

Threat Research
Read More

2 min read

How a Malicious Plugin Turned OpenClaw Into a Credential Stealer

Picture of ThreatBook Research Team ThreatBook Research Team: 18 March 2026, 08:03 AM

Last week, ThreatBook's endpoint detection product, OneSEC EDR, identified and fully captured an active attack targeting OpenClaw users. The attack...

Threat Research
Read More

3 min read

Singapore's Cyber Threat Landscape: Inside the 2025 Data

Picture of ThreatBook Research Team ThreatBook Research Team: 16 March 2026, 12:03 AM

The Threat Landscape An Open Economy, an Outsized Target Singapore's unique geographic position and economic standing have made it a frontline...

Threat Research
Read More

2 min read

Hong Kong's Cyber Threat Landscape: Inside the 2025 Data

Picture of ThreatBook Research Team ThreatBook Research Team: 16 March 2026, 12:03 AM

The Threat Landscape A City Built on Commerce — and Cross-Border Risk Hong Kong's cyberattack landscape reflects the city's unique position. Unlike...

Threat Research
Read More

3 min read

ThreatBook Achieves 5.0 Rating in 20 Overall Responses in Gartner® Voice of the Customer for Endpoint Protection Platforms

Picture of Nicholas Tan Nicholas Tan: 26 February 2026, 11:02 AM

We're thrilled to share incredible news: ThreatBook has achieved a full 5.0 out of 5 rating in 20 overall responses in the latest Gartner Peer...

Awards & Recognition
Read More
1 2 Next