ThreatsDay Bulletin: Claude Chat Abuse, NastyC2 npm Packages, Device-Code Phishing + 25 More Stories

Research page generated from configured evidence sources. Treat this as an analyst workbench: facts are sourced, gaps are labelled, and low-confidence chatter is separated from confirmed evidence.

Executive judgement

• Operational lane: patch priority
• Priority score: 50
• Confidence: medium
• Exploit status: poc — Public proof-of-concept signal observed; treat as elevated patch priority, but do not assume mass exploitation without corroboration.
• Urgent publishable: no
• CISA KEV: No CISA KEV match captured in configured source data at generation time.
• Published/observed: 2026-06-18
• EPSS score: not available

What happened

The internet did not break this week. It got used exactly as designed, which is worse. Searches were siphoned through shady browser add-ons. AI chat links turned into malware delivery paths. macOS attacks ran in memory and left almost nothing behind. Cloud agents looked like helpers until attackers treated them like open shells. Add exposed edge gear, poisoned packages, cash courier scams,

Why it matters

• The item was promoted because the pipeline observed: priority score 50, exploit status poc, confidence medium.
• No CVE was extracted from the source story yet, so this should be treated as a news/campaign cluster until primary technical identifiers are found.
• Public PoC language was detected, so defensive teams should assume exploit development will accelerate.

Evidence collected

• NEWS: ThreatsDay Bulletin: Claude Chat Abuse, NastyC2 npm Packages, Device-Code Phishing + 25 More Stories
• GITHUB RESEARCH: Public research/PoC repository

Exploitation and PoC status

• Current automated assessment: Public proof-of-concept signal observed; treat as elevated patch priority, but do not assume mass exploitation without corroboration.
• Public exploit/PoC: PoC signal present in configured sources; validate via research links below before taking operational claims at face value.
• Exploited in the wild: Not confirmed by configured sources at generation time.
• Ransomware association: No ransomware association captured at generation time.

Publication / validation flags

• no_primary_source

Dark web / low-confidence chatter

• AlienVault OTX pulse: From package to postinstall payload: Inside the Mastra npm supply chain compromise
• AlienVault OTX pulse: 140+ npm Packages Compromised in Coordinated Supply Chain Attack
• AlienVault OTX pulse: Bluekit Phishing as a Service (PhaaS)

Defender actions

• Block known malicious npm packages associated with NastyC2 campaign via software composition analysis tools (e.g., Black Duck, Snyk) with rules targeting packages like ’node-hide-console-windows’, ’temporary-secure-storage'.
• Implement URL filtering for AI chat platforms (Claude, ChatGPT) to block external file downloads from chat sessions via proxy rules denying .sharepoint.com/, .githubusercontent.com/ from AI domains.
• Deploy endpoint detection rules for macOS memory-only execution: Sysmon for Mac (process creation without disk writes) and CrowdStrike Falcon custom IOAs for ‘osascript’ with obfuscated arguments.

Defender / Sentinel hunting queries

MDE edge/service exploitation telemetry triage

Look for unusual network/process activity around exposed edge, OT, or management services. Tune product terms before operational use.

DeviceNetworkEvents
| where Timestamp > ago(14d)
| where RemotePort in (443, 8443, 9443, 8080, 8000, 5000) or LocalPort in (443, 8443, 9443, 8080, 8000, 5000)
| where RemoteUrl has "ThreatsDay" or InitiatingProcessCommandLine has "ThreatsDay" or AdditionalFields has "ThreatsDay" or RemoteUrl has "Bulletin" or InitiatingProcessCommandLine has "Bulletin" or AdditionalFields has "Bulletin" or RemoteUrl has "Claude" or InitiatingProcessCommandLine has "Claude" or AdditionalFields has "Claude" or RemoteUrl has "Chat" or InitiatingProcessCommandLine has "Chat" or AdditionalFields has "Chat" or RemoteUrl has "Abuse" or InitiatingProcessCommandLine has "Abuse" or AdditionalFields has "Abuse"
| project Timestamp, DeviceName, InitiatingProcessFileName, InitiatingProcessCommandLine, RemoteUrl, RemoteIP, RemotePort, LocalPort, ActionType, AdditionalFields
| order by Timestamp desc

Sentinel cloud app suspicious activity

Hunt for SaaS/cloud application abuse, OAuth misuse, or admin anomalies linked to this issue.

CloudAppEvents
| where Timestamp > ago(14d)
| where ActivityType has "ThreatsDay" or ObjectName has "ThreatsDay" or RawEventData has "ThreatsDay" or ActivityType has "Bulletin" or ObjectName has "Bulletin" or RawEventData has "Bulletin" or ActivityType has "Claude" or ObjectName has "Claude" or RawEventData has "Claude" or ActivityType has "Chat" or ObjectName has "Chat" or RawEventData has "Chat"
| project Timestamp, Application, AccountDisplayName, AccountObjectId, ActivityType, ObjectName, IPAddress, CountryCode, RawEventData
| order by Timestamp desc

MDO email delivery and threat hunt

Find delivered emails matching threat indicators for this campaign/vulnerability.

EmailEvents
| where Timestamp > ago(14d)
| where ThreatTypes has "Phish" or ThreatTypes has "Malware" or Subject has "ThreatsDay" or SenderFromAddress has "ThreatsDay" or SenderMailFromAddress has "ThreatsDay" or Subject has "Bulletin" or SenderFromAddress has "Bulletin" or SenderMailFromAddress has "Bulletin" or Subject has "Claude" or SenderFromAddress has "Claude" or SenderMailFromAddress has "Claude" or Subject has "Chat" or SenderFromAddress has "Chat" or SenderMailFromAddress has "Chat"
| project Timestamp, NetworkMessageId, SenderFromAddress, SenderMailFromAddress, RecipientEmailAddress, Subject, ThreatTypes, DeliveryAction, LatestDeliveryLocation
| order by Timestamp desc

MDO URL click/safe links hunt

Track clicks on potentially malicious URLs delivered via email for this campaign.

UrlClickEvents
| where Timestamp > ago(14d)
| where IsClickedThrough == 1 or ThreatTypes has "Phish" or Url has "ThreatsDay" or Url has "Bulletin" or Url has "Claude"
| project Timestamp, NetworkMessageId, Url, AccountUpn, Workload, IsClickedThrough, ThreatTypes, ActionType
| order by Timestamp desc

Exposure validation ideas

• Search asset inventory for affected vendor/product names and any CVE reference.
• Check internet-facing exposure through approved tools only: Shodan/Censys/GreyNoise links below are research starting points, not proof of exposure.
• Prioritise management interfaces, edge devices, identity/control-plane systems, and OT/ICS assets where relevant.

Detection / hunting ideas

• Review vendor logs for authentication failures, privilege changes, unexpected admin activity, and anomalous management-plane access.
• Search SIEM/EDR telemetry for product-specific process names, network services, and newly published indicators from primary sources.
• Monitor for scanner traffic or nuclei/metasploit module references once public exploit tooling appears.

Research links

• GitHub code/advisory search
• GitHub repository search
• Exploit-DB search
• Packet Storm search
• AlienVault OTX search
• GreyNoise search
• Shodan search
• Censys search

Open questions

• Is there a primary vendor advisory with exact affected versions and fixed versions?
• Has CISA KEV, Shadowserver, GreyNoise, or a trusted vendor confirmed exploitation?
• Are there credible PoC repositories or only secondary reporting mentioning PoC?
• Is there underground/forum/leak-site discussion, or only public reporting?

Generated: 2026-06-18T16:20:07+00:00