Get to know # Unit 42 The Unit 42 team brings together world-renowned threat researchers with incident responders and security consultants. Together, they create an intelligence-driven, response-ready organization who are passionate about helping customers more proactively manage cyber risk. With a deeply rooted reputation for delivering world-class threat intelligence, the Unit 42 team provides industry-leading incident response and cyber risk management services to security leaders around the globe. [![linkedin](https://origin-researchcenter.paloaltonetworks.com/blog/wp-content/themes/panwblog2023/dist/images/linkedin.svg)](https://www.linkedin.com/company/unit42/) *** ** * ** *** Blogs by Unit 42 Sort By: Recent Recent Popular *** ** * ** *** [![知名品牌域名最易被模仿抢注,用于欺骗消费者](https://origin-researchcenter.paloaltonetworks.com/blog/wp-content/uploads/2020/09/Cybersquatting-v3.png)](https://origin-researchcenter.paloaltonetworks.com/blog/2020/09/cybersquatting/?lang=zh-hans) ## [未分类](https://www.paloaltonetworks.com/blog/category/%e6%9c%aa%e5%88%86%e7%b1%bb/?lang=zh-hant&ts=markdown) ### [知名品牌域名最易被模仿抢注,用于欺骗消费者](https://origin-researchcenter.paloaltonetworks.com/blog/2020/09/cybersquatting/?lang=zh-hans) Palo Alto Networks威脅情報團隊Unit 42旗下的域名搶注檢測系統發現,共有13,857個域名於2019年12月遭搶注,平均每天450個。 Sep 02, 2020 By [Unit 42](https://www.paloaltonetworks.com/blog/author/unit-42/?lang=zh-hans&ts=markdown "Posts by Unit 42") *** ** * ** *** [![最新安全威胁评估报告](https://origin-researchcenter.paloaltonetworks.com/blog/wp-content/uploads/2020/06/Threat-brief-r3d3.png)](https://origin-researchcenter.paloaltonetworks.com/blog/2020/06/threat-assessment-hangover-threat-group/?lang=zh-hans) ## [未分类](https://www.paloaltonetworks.com/blog/category/%e6%9c%aa%e5%88%86%e7%b1%bb/?lang=zh-hant&ts=markdown) ### [最新安全威胁评估报告](https://origin-researchcenter.paloaltonetworks.com/blog/2020/06/threat-assessment-hangover-threat-group/?lang=zh-hans) Hangover组织是一个网络间谍组织,2013年12月首次被发现针对挪威一家电信公司进行网络攻击。网络安全公司Norman报道称,网络攻击是在印度出现的,该组织寻找并对巴基斯坦和中国等国家利益目标进行攻击。不过,也有迹象表明美国和欧洲同样存在Hangover组织的活动,主要针对政府、军方和民间组织。 Jun 07, 2020 By [Unit 42](https://www.paloaltonetworks.com/blog/author/unit-42/?lang=zh-hans&ts=markdown "Posts by Unit 42") *** ** * ** *** [![超过45万个云网络连接中带有COVID-19主题恶意软件](https://origin-researchcenter.paloaltonetworks.com/blog/wp-content/uploads/2020/05/Cloud-providers-r3d3-1.png)](https://origin-researchcenter.paloaltonetworks.com/blog/2020/05/covid-19-themed-malware-within-cloud-environments/?lang=zh-hans) ## [未分类](https://www.paloaltonetworks.com/blog/category/%e6%9c%aa%e5%88%86%e7%b1%bb/?lang=zh-hant&ts=markdown) ### [超过45万个云网络连接中带有COVID-19主题恶意软件](https://origin-researchcenter.paloaltonetworks.com/blog/2020/05/covid-19-themed-malware-within-cloud-environments/?lang=zh-hans) 威胁情报团队Unit 42的研究人员发现,公有云基础设施与传播COVID-19主题恶意软件的域名已建立了通信。 May 18, 2020 By [Unit 42](https://www.paloaltonetworks.com/blog/author/unit-42/?lang=zh-hans&ts=markdown "Posts by Unit 42") *** ** * ** *** [![网络犯罪分子正在利用新冠病毒疫情发动攻击](https://origin-researchcenter.paloaltonetworks.com/blog/wp-content/uploads/2020/04/covid19.png)](https://origin-researchcenter.paloaltonetworks.com/blog/2020/04/how-cybercriminals-prey-on-the-covid-19/?lang=zh-hans) ## [未分类](https://www.paloaltonetworks.com/blog/category/%e6%9c%aa%e5%88%86%e7%b1%bb/?lang=zh-hant&ts=markdown) ### [网络犯罪分子正在利用新冠病毒疫情发动攻击](https://origin-researchcenter.paloaltonetworks.com/blog/2020/04/how-cybercriminals-prey-on-the-covid-19/?lang=zh-hans) 随着新冠病毒的全球蔓延,疫情相关话题持续受到人们的高度关注。Palo Alto Networks(派拓网络)威胁情报团队Unit 42的研究人员发现,自2月初以来,与新冠病毒相关的谷歌搜索量和网址浏览量大幅增加。网络犯罪分子也正是利用这些热门话题为诱饵来从中牟利。他们毫无道德底线,尤其是在当前疫情危难时刻,这将给数十亿人的生活雪上加霜。正是由于不法分子经常利用这些话题来进行恶意活动,Unit 42的研究人员密切监测了派拓网络客户对热门话题及与这些话题相关的新注册域名的关注度,以保护用户安全。 Apr 22, 2020 By [Unit 42](https://www.paloaltonetworks.com/blog/author/unit-42/?lang=zh-hans&ts=markdown "Posts by Unit 42") *** ** * ** *** [![98%的美国物联网设备流量未加密](https://origin-researchcenter.paloaltonetworks.com/blog/wp-content/uploads/2020/03/unit42-iot-report-sch-1200x500-1.jpg)](https://origin-researchcenter.paloaltonetworks.com/blog/2020/03/unit42-iot-threat-report/?lang=zh-hans) ## [未分类](https://www.paloaltonetworks.com/blog/category/%e6%9c%aa%e5%88%86%e7%b1%bb/?lang=zh-hant&ts=markdown) ### [98%的美国物联网设备流量未加密](https://origin-researchcenter.paloaltonetworks.com/blog/2020/03/unit42-iot-threat-report/?lang=zh-hans) 威胁情报团队Unit 42于日前发布了《2020年Unit 42物联网威胁报告》,对大洋彼岸的美国物联网设备的网络安全问题进行盘点与总结。其中的重要观点同样值得正在高速发展的中国物联网行业注意和借鉴。 Mar 18, 2020 By [Unit 42](https://www.paloaltonetworks.com/blog/author/unit-42/?lang=zh-hans&ts=markdown "Posts by Unit 42") *** ** * ** *** Load more *** ** * ** *** Blogs by Unit 42 Sort By: Popular Popular Recent *** ** * ** *** [![知名品牌域名最易被模仿抢注,用于欺骗消费者](https://origin-researchcenter.paloaltonetworks.com/blog/wp-content/uploads/2020/09/Cybersquatting-v3.png)](https://origin-researchcenter.paloaltonetworks.com/blog/2020/09/cybersquatting/?lang=zh-hans) ## [未分类](https://www.paloaltonetworks.com/blog/category/%e6%9c%aa%e5%88%86%e7%b1%bb/?lang=zh-hant&ts=markdown) ### [知名品牌域名最易被模仿抢注,用于欺骗消费者](https://origin-researchcenter.paloaltonetworks.com/blog/2020/09/cybersquatting/?lang=zh-hans) Palo Alto Networks威脅情報團隊Unit 42旗下的域名搶注檢測系統發現,共有13,857個域名於2019年12月遭搶注,平均每天450個。 Sep 02, 2020 By [Unit 42](https://www.paloaltonetworks.com/blog/author/unit-42/?lang=zh-hans&ts=markdown "Posts by Unit 42") *** ** * ** *** [![网络犯罪分子正在利用新冠病毒疫情发动攻击](https://origin-researchcenter.paloaltonetworks.com/blog/wp-content/uploads/2020/04/covid19.png)](https://origin-researchcenter.paloaltonetworks.com/blog/2020/04/how-cybercriminals-prey-on-the-covid-19/?lang=zh-hans) ## [未分类](https://www.paloaltonetworks.com/blog/category/%e6%9c%aa%e5%88%86%e7%b1%bb/?lang=zh-hant&ts=markdown) ### [网络犯罪分子正在利用新冠病毒疫情发动攻击](https://origin-researchcenter.paloaltonetworks.com/blog/2020/04/how-cybercriminals-prey-on-the-covid-19/?lang=zh-hans) 随着新冠病毒的全球蔓延,疫情相关话题持续受到人们的高度关注。Palo Alto Networks(派拓网络)威胁情报团队Unit 42的研究人员发现,自2月初以来,与新冠病毒相关的谷歌搜索量和网址浏览量大幅增加。网络犯罪分子也正是利用这些热门话题为诱饵来从中牟利。他们毫无道德底线,尤其是在当前疫情危难时刻,这将给数十亿人的生活雪上加霜。正是由于不法分子经常利用这些话题来进行恶意活动,Unit 42的研究人员密切监测了派拓网络客户对热门话题及与这些话题相关的新注册域名的关注度,以保护用户安全。 Apr 22, 2020 By [Unit 42](https://www.paloaltonetworks.com/blog/author/unit-42/?lang=zh-hans&ts=markdown "Posts by Unit 42") *** ** * ** *** [![98%的美国物联网设备流量未加密](https://origin-researchcenter.paloaltonetworks.com/blog/wp-content/uploads/2020/03/unit42-iot-report-sch-1200x500-1.jpg)](https://origin-researchcenter.paloaltonetworks.com/blog/2020/03/unit42-iot-threat-report/?lang=zh-hans) ## [未分类](https://www.paloaltonetworks.com/blog/category/%e6%9c%aa%e5%88%86%e7%b1%bb/?lang=zh-hant&ts=markdown) ### [98%的美国物联网设备流量未加密](https://origin-researchcenter.paloaltonetworks.com/blog/2020/03/unit42-iot-threat-report/?lang=zh-hans) 威胁情报团队Unit 42于日前发布了《2020年Unit 42物联网威胁报告》,对大洋彼岸的美国物联网设备的网络安全问题进行盘点与总结。其中的重要观点同样值得正在高速发展的中国物联网行业注意和借鉴。 Mar 18, 2020 By [Unit 42](https://www.paloaltonetworks.com/blog/author/unit-42/?lang=zh-hans&ts=markdown "Posts by Unit 42") *** ** * ** *** [![Docker Hub镜像中首次发现名为Graboid的加密挖矿蠕虫病毒](https://origin-researchcenter.paloaltonetworks.com/blog/wp-content/uploads/2019/10/Graboid-Worm.jpg)](https://origin-researchcenter.paloaltonetworks.com/blog/2019/10/graboid-first-ever-cryptojacking-worm/?lang=zh-hans) ## [未分类](https://www.paloaltonetworks.com/blog/category/%e6%9c%aa%e5%88%86%e7%b1%bb/?lang=zh-hant&ts=markdown) ### [Docker Hub镜像中首次发现名为Graboid的加密挖矿蠕虫病毒](https://origin-researchcenter.paloaltonetworks.com/blog/2019/10/graboid-first-ever-cryptojacking-worm/?lang=zh-hans) Palo Alto Networks (派拓网络)威胁情报团队Unit 42近日宣布发现一种新型加密挖矿蠕虫病毒,已有2000多台Docker主机因保护 Oct 16, 2019 By [Unit 42](https://www.paloaltonetworks.com/blog/author/unit-42/?lang=zh-hans&ts=markdown "Posts by Unit 42") *** ** * ** *** [![最新安全威胁评估报告](https://origin-researchcenter.paloaltonetworks.com/blog/wp-content/uploads/2020/06/Threat-brief-r3d3.png)](https://origin-researchcenter.paloaltonetworks.com/blog/2020/06/threat-assessment-hangover-threat-group/?lang=zh-hans) ## [未分类](https://www.paloaltonetworks.com/blog/category/%e6%9c%aa%e5%88%86%e7%b1%bb/?lang=zh-hant&ts=markdown) ### [最新安全威胁评估报告](https://origin-researchcenter.paloaltonetworks.com/blog/2020/06/threat-assessment-hangover-threat-group/?lang=zh-hans) Hangover组织是一个网络间谍组织,2013年12月首次被发现针对挪威一家电信公司进行网络攻击。网络安全公司Norman报道称,网络攻击是在印度出现的,该组织寻找并对巴基斯坦和中国等国家利益目标进行攻击。不过,也有迹象表明美国和欧洲同样存在Hangover组织的活动,主要针对政府、军方和民间组织。 Jun 07, 2020 By [Unit 42](https://www.paloaltonetworks.com/blog/author/unit-42/?lang=zh-hans&ts=markdown "Posts by Unit 42") *** ** * ** *** Load more {#footer} {#footer} ## Products and Services * [AI-Powered Network Security Platform](https://www.paloaltonetworks.com/network-security?ts=markdown) * [Secure AI by Design](https://www.paloaltonetworks.com/precision-ai-security/secure-ai-by-design?ts=markdown) * [Prisma AIRS](https://www.paloaltonetworks.com/prisma/prisma-ai-runtime-security?ts=markdown) * [AI Access Security](https://www.paloaltonetworks.com/sase/ai-access-security?ts=markdown) * [Cloud Delivered Security Services](https://www.paloaltonetworks.com/network-security/security-subscriptions?ts=markdown) * [Advanced Threat Prevention](https://www.paloaltonetworks.com/network-security/advanced-threat-prevention?ts=markdown) * [Advanced URL Filtering](https://www.paloaltonetworks.com/network-security/advanced-url-filtering?ts=markdown) * [Advanced WildFire](https://www.paloaltonetworks.com/network-security/advanced-wildfire?ts=markdown) * [Advanced DNS Security](https://www.paloaltonetworks.com/network-security/advanced-dns-security?ts=markdown) * [Enterprise Data Loss Prevention](https://www.paloaltonetworks.com/sase/enterprise-data-loss-prevention?ts=markdown) * [Enterprise IoT Security](https://www.paloaltonetworks.com/network-security/enterprise-device-security?ts=markdown) * [Medical IoT Security](https://www.paloaltonetworks.com/network-security/medical-device-security?ts=markdown) * [Industrial OT Security](https://www.paloaltonetworks.com/network-security/medical-device-security?ts=markdown) * [SaaS Security](https://www.paloaltonetworks.com/sase/saas-security?ts=markdown) * [Next-Generation Firewalls](https://www.paloaltonetworks.com/network-security/next-generation-firewall?ts=markdown) * [Hardware Firewalls](https://www.paloaltonetworks.com/network-security/hardware-firewall-innovations?ts=markdown) * [Software Firewalls](https://www.paloaltonetworks.com/network-security/software-firewalls?ts=markdown) * [Strata Cloud Manager](https://www.paloaltonetworks.com/network-security/strata-cloud-manager?ts=markdown) * [SD-WAN for NGFW](https://www.paloaltonetworks.com/network-security/sd-wan-subscription?ts=markdown) * [PAN-OS](https://www.paloaltonetworks.com/network-security/pan-os?ts=markdown) * [Panorama](https://www.paloaltonetworks.com/network-security/panorama?ts=markdown) * [Secure Access Service Edge](https://www.paloaltonetworks.com/sase?ts=markdown) * [Prisma SASE](https://www.paloaltonetworks.com/sase?ts=markdown) * [Application Acceleration](https://www.paloaltonetworks.com/sase/app-acceleration?ts=markdown) * [Autonomous Digital Experience Management](https://www.paloaltonetworks.com/sase/adem?ts=markdown) * [Enterprise DLP](https://www.paloaltonetworks.com/sase/enterprise-data-loss-prevention?ts=markdown) * [Prisma Access](https://www.paloaltonetworks.com/sase/access?ts=markdown) * [Prisma Browser](https://www.paloaltonetworks.com/sase/prisma-browser?ts=markdown) * [Prisma SD-WAN](https://www.paloaltonetworks.com/sase/sd-wan?ts=markdown) * [Remote Browser Isolation](https://www.paloaltonetworks.com/sase/remote-browser-isolation?ts=markdown) * [SaaS Security](https://www.paloaltonetworks.com/sase/saas-security?ts=markdown) * [AI-Driven Security Operations Platform](https://www.paloaltonetworks.com/cortex?ts=markdown) * [Cloud Security](https://www.paloaltonetworks.com/cortex/cloud?ts=markdown) * [Cortex Cloud](https://www.paloaltonetworks.com/cortex/cloud?ts=markdown) * [Application Security](https://www.paloaltonetworks.com/cortex/cloud/application-security?ts=markdown) * [Cloud Posture Security](https://www.paloaltonetworks.com/cortex/cloud/cloud-posture-security?ts=markdown) * [Cloud Runtime Security](https://www.paloaltonetworks.com/cortex/cloud/runtime-security?ts=markdown) * [Prisma Cloud](https://www.paloaltonetworks.com/prisma/cloud?ts=markdown) * [AI-Driven SOC](https://www.paloaltonetworks.com/cortex?ts=markdown) * [Cortex XSIAM](https://www.paloaltonetworks.com/cortex/cortex-xsiam?ts=markdown) * [Cortex XDR](https://www.paloaltonetworks.com/cortex/cortex-xdr?ts=markdown) * [Cortex XSOAR](https://www.paloaltonetworks.com/cortex/cortex-xsoar?ts=markdown) * [Cortex Xpanse](https://www.paloaltonetworks.com/cortex/cortex-xpanse?ts=markdown) * [Unit 42 Managed Detection \& Response](https://www.paloaltonetworks.com/cortex/managed-detection-and-response?ts=markdown) * [Managed XSIAM](https://www.paloaltonetworks.com/cortex/managed-xsiam?ts=markdown) * [Threat Intel and Incident Response Services](https://www.paloaltonetworks.com/unit42?ts=markdown) * [Proactive Assessments](https://www.paloaltonetworks.com/unit42/assess?ts=markdown) * [Incident Response](https://www.paloaltonetworks.com/unit42/respond?ts=markdown) * [Transform Your Security Strategy](https://www.paloaltonetworks.com/unit42/transform?ts=markdown) * [Discover Threat Intelligence](https://www.paloaltonetworks.com/unit42/threat-intelligence-partners?ts=markdown) ## Company * [About Us](https://www.paloaltonetworks.com/about-us?ts=markdown) * [Careers](https://jobs.paloaltonetworks.com/en/) * [Contact Us](https://www.paloaltonetworks.com/company/contact-sales?ts=markdown) * [Corporate Responsibility](https://www.paloaltonetworks.com/about-us/corporate-responsibility?ts=markdown) * [Customers](https://www.paloaltonetworks.com/customers?ts=markdown) * [Investor Relations](https://investors.paloaltonetworks.com/) * [Location](https://www.paloaltonetworks.com/about-us/locations?ts=markdown) * [Newsroom](https://www.paloaltonetworks.com/company/newsroom?ts=markdown) ## Popular Links * [Blog](https://www.paloaltonetworks.com/blog/?ts=markdown) * [Communities](https://www.paloaltonetworks.com/communities?ts=markdown) * [Content Library](https://www.paloaltonetworks.com/resources?ts=markdown) * [Cyberpedia](https://www.paloaltonetworks.com/cyberpedia?ts=markdown) * [Event Center](https://events.paloaltonetworks.com/) * [Manage Email Preferences](https://start.paloaltonetworks.com/preference-center) * [Products A-Z](https://www.paloaltonetworks.com/products/products-a-z?ts=markdown) * [Product Certifications](https://www.paloaltonetworks.com/legal-notices/trust-center/compliance?ts=markdown) * [Report a Vulnerability](https://www.paloaltonetworks.com/security-disclosure?ts=markdown) * [Sitemap](https://www.paloaltonetworks.com/sitemap?ts=markdown) * [Tech Docs](https://docs.paloaltonetworks.com/) * [Unit 42](https://unit42.paloaltonetworks.com/) * [Do Not Sell or Share My Personal Information](https://panwedd.exterro.net/portal/dsar.htm?target=panwedd) ![PAN logo](https://www.paloaltonetworks.com/etc/clientlibs/clean/imgs/pan-logo-dark.svg) * [Privacy](https://www.paloaltonetworks.com/legal-notices/privacy?ts=markdown) * [Trust Center](https://www.paloaltonetworks.com/legal-notices/trust-center?ts=markdown) * [Terms of Use](https://www.paloaltonetworks.com/legal-notices/terms-of-use?ts=markdown) * [Documents](https://www.paloaltonetworks.com/legal?ts=markdown) Copyright © 2026 Palo Alto Networks. All Rights Reserved * [![Youtube](https://www.paloaltonetworks.com/etc/clientlibs/clean/imgs/social/youtube-black.svg)](https://www.youtube.com/user/paloaltonetworks) * [![Podcast](https://www.paloaltonetworks.com/content/dam/pan/en_US/images/icons/podcast.svg)](https://www.paloaltonetworks.com/podcasts/threat-vector?ts=markdown) * [![Facebook](https://www.paloaltonetworks.com/etc/clientlibs/clean/imgs/social/facebook-black.svg)](https://www.facebook.com/PaloAltoNetworks/) * [![LinkedIn](https://www.paloaltonetworks.com/etc/clientlibs/clean/imgs/social/linkedin-black.svg)](https://www.linkedin.com/company/palo-alto-networks) * [![Twitter](https://www.paloaltonetworks.com/etc/clientlibs/clean/imgs/social/twitter-x-black.svg)](https://twitter.com/PaloAltoNtwks) * EN Select your language