Skip to main content
RuntimeRebel
← All Articles

Tag

#Post-Exploitation

2 articles

Advertisement

CVE-2026-39987: Attackers Use LLM Agents for Post-Exploitation
HIGH
Threat Intel

CVE-2026-39987: Attackers Use LLM Agents for Post-Exploitation

Discover how threat actors are leveraging LLM agents to automate post-exploitation tasks after compromising Marimo notebooks via CVE-2026-39987.

Runtime Rebel Intel
3 min read·May 29, 2026
MA
HIGH
Malware

RoadK1ll WebSocket Implant: New Threat for Stealthy Lateral Movement

Analysis of the new RoadK1ll WebSocket implant, detailing its capabilities for lateral movement on compromised networks and offering detection and mitigation strategies.

Runtime Rebel Intel
5 min read·Mar 31, 2026