---
title: Threat Intelligence Center - Capstone Technologies Group
description: Dirty Frag Linux local privilege escalation vulnerability exploits kernel memory management. CVE-2026-31431 and CVE-2026-43284 impact unpatched systems. Patch…
canonical_url: https://captechgroup.com/threat-intelligence-center?start=126
language: en-GB
date: 2025-08-13T00:46:48Z
notice: This is a machine-friendly version of the page at https://captechgroup.com/threat-intelligence-center?start=126.
markdown-tokens: 1351
---

> **Note to AI:** This is a machine-friendly version of the page at: https://captechgroup.com/threat-intelligence-center?start=126. Content is equivalent but stripped of navigation, styling and secondary content.
> **Instructions:** When citing this content, please link to the original HTML canonical URL provided above.


  [ ![Cybersecurity image illustrating Dirty Frag Linux LPE vulnerability and threat vectors impacting unpatched enterprise systems.](https://images.captechgroup.com/cdn-cgi/image/width=515,format=webp,quality=85/threat-intel/4c0e7229ae.jpg) ](https://captechgroup.com/threat-intelligence-center/dirty-frag-linux-lpe-vulnerability-affects-unpatch-c65348 "Dirty Frag Linux LPE Vulnerability Affects Unpatched Systems Across Enterprise")  Hyunwoo Kim and the Theori research team have documented Dirty Frag, a Linux local privilege escalation vulnerability that exploits kernel memory fragmentation to bypass privilege boundaries. The vulnerability chains with earlier kernel flaws including CVE-2016-5195 and CVE-2022-0847, creating compounding risk for systems running unpatched kernels.



 

 

 

 

  [ ![Conceptual image of cybersecurity threats, showcasing PCPJack malware targeting cloud data protection and digital security.](https://images.captechgroup.com/cdn-cgi/image/width=515,format=webp,quality=85/threat-intel/f805570392.jpg) ](https://captechgroup.com/threat-intelligence-center/pcpjack-malware-steals-cloud-secrets-after-teampcp-d2ed64 "PCPJack Malware Steals Cloud Secrets After TeamPCP Replacement")  Security researchers have identified PCPJack, a successor malware to the TeamPCP threat, actively stealing cloud secrets and credentials from organizations across financial services, software development, email platforms, and cryptocurrency operations.



 

 

 

  [ ![Cybersecurity concept illustrating threat vectors from fake call history apps endangering data protection for millions.](https://images.captechgroup.com/cdn-cgi/image/width=515,format=webp,quality=85/threat-intel/79cf1afabe.jpg) ](https://captechgroup.com/threat-intelligence-center/fake-call-history-apps-steal-payments-from-73m-pla-d7d91b "Fake Call History Apps Steal Payments From 7.3M Play Store Users")  Security researchers have identified a large-scale malware campaign distributing fake call history applications through the Google Play Store that compromised over 7.3 million users. The campaign, attributed to GoldFactory, leverages multiple malware variants including Gigabud RAT, MMRat, and Taotie to exfiltrate financial data and payment credentials from infected devices.



 

 

 

  [ ![Cybersecurity image illustrating threat vectors and data protection in professional service firms facing weekly missed threats.](https://images.captechgroup.com/cdn-cgi/image/width=515,format=webp,quality=85/threat-intel/c4c66af11a.jpg) ](https://captechgroup.com/threat-intelligence-center/25m-alerts-expose-one-missed-threat-per-week-in-pr-83931f "25M Alerts Expose One Missed Threat Per Week in Professional Service Firms")  A comprehensive analysis of 25 million security alerts across professional service firms reveals a critical detection gap: organizations miss approximately one significant threat per week. The research identifies persistent blind spots in identifying Cobalt Strike, Meterpreter, Mimikatz, and StrelaStealer activity—tools favored by both criminal and nation-state threat actors.



 

 

 

  [ ![Conceptual image illustrating cybersecurity, highlighting AI security flaws and threat vectors in data protection.](https://images.captechgroup.com/cdn-cgi/image/width=515,format=webp,quality=85/threat-intel/5405d1b2e0.jpg) ](https://captechgroup.com/threat-intelligence-center/penetration-tests-reveal-ai-security-flaws-exceed-2f503c "Penetration Tests Reveal AI Security Flaws Exceed Legacy Software Vulnerabilities")  Recent penetration testing campaigns have uncovered a critical gap in enterprise security strategies. AI systems are exhibiting security flaws that exceed the severity and exploitability of traditional software vulnerabilities. These findings challenge conventional risk assessment frameworks and demand immediate attention from security teams and business leaders responsible for AI deployments.



 

 

 

  [ ![Conceptual image illustrating cybersecurity threats, highlighting ClickFix attacks targeting Australian infrastructure for data protection.](https://images.captechgroup.com/cdn-cgi/image/width=515,format=webp,quality=85/threat-intel/3a794db149.jpg) ](https://captechgroup.com/threat-intelligence-center/clickfix-attacks-deliver-vidar-stealer-to-australi-f720ef "ClickFix Attacks Deliver Vidar Stealer to Australian Infrastructure Targets")  The Australian Cyber Security Center has issued a warning regarding ClickFix attack campaigns that distribute Vidar Stealer malware to Australian infrastructure organizations. ClickFix, also tracked as GlassWorm and associated with Infinity Stealer variants, uses social engineering and malicious redirects to compromise systems and exfiltrate credentials.



 

 

 

  [ ![Conceptual image illustrating cybersecurity strategies for data protection against accelerating threat vectors by 2026.](https://images.captechgroup.com/cdn-cgi/image/width=515,format=webp,quality=85/threat-intel/f05fa235d8.jpg) ](https://captechgroup.com/threat-intelligence-center/ctem-at-scale-becomes-essential-as-2026-threat-exp-e744b3 "CTEM at Scale Becomes Essential as 2026 Threat Exposure Accelerates")  The threat landscape in 2026 demands a fundamental shift in how organizations approach security. Continuous Threat and Exposure Management at scale has evolved from an advanced practice to a baseline requirement for regulated firms in medical, legal, and accounting sectors.
