Webinar

October 2025 TRU Intelligence Briefing On-Demand

Join eSentire’s Threat Response Unit (TRU) as they share new research-driven observations of malware, notable vulnerabilities, threat actor groups, and cyber activity affecting the threat landscape.

During the October Threat Intelligence Briefing, TRU reviewed:

  • What’s the Fuss About NPM Attacks? The rising threat of malicious NPM packages from a threat intelligence viewpoint. The TRU team will examine how attackers exploit the software supply chain, highlight emerging trends and attacker behaviors, with real world examples, allowing you to understand the threat landscape and patterns observed across the ecosystem.
  • NPM Package Compromise & Shai-Hulud Campaign: Safeguarding GitHub from Supply Chain Attacks. The TRU team will discuss how malicious actors compromise supply chains with our observations, highlight detection engineering and threat hunt efforts, and offer best practices to fortify against these emerging threats.
  • Threat Landscape: Notable threats including malware observed by eSentire’s SOC (CastleBot, EthNodeBot, DarkCloud Stealer) as well as recently disclosed vulnerabilities (CVE-2025-26399 – SolarWinds, CVE-2025-20352 & CVE-2025-20333 – Cisco, CVE-2025-10035 - GoAnyWhere MFT).
  • A brief geopolitical update on activity recently attributed to Iranian state-sponsored threat actors.

This webinar also included a live Q&A.

Watch the Webinar

Join eSentire’s Threat Response Unit (TRU) as they share new research-driven observations of malware, notable vulnerabilities, threat actor groups, and cyber activity affecting the threat landscape.

During the October Threat Intelligence Briefing, TRU reviewed:

  • What’s the Fuss About NPM Attacks? The rising threat of malicious NPM packages from a threat intelligence viewpoint. The TRU team will examine how attackers exploit the software supply chain, highlight emerging trends and attacker behaviors, with real world examples, allowing you to understand the threat landscape and patterns observed across the ecosystem.
  • NPM Package Compromise & Shai-Hulud Campaign: Safeguarding GitHub from Supply Chain Attacks. The TRU team will discuss how malicious actors compromise supply chains with our observations, highlight detection engineering and threat hunt efforts, and offer best practices to fortify against these emerging threats.
  • Threat Landscape: Notable threats including malware observed by eSentire’s SOC (CastleBot, EthNodeBot, DarkCloud Stealer) as well as recently disclosed vulnerabilities (CVE-2025-26399 – SolarWinds, CVE-2025-20352 & CVE-2025-20333 – Cisco, CVE-2025-10035 - GoAnyWhere MFT).
  • A brief geopolitical update on activity recently attributed to Iranian state-sponsored threat actors.

This webinar also included a live Q&A.

Get The Webinar