Threat Intelligence
Latest Threat Reports
CyberAlberta transforms complex cyber data into clear, actionable intelligence. The reports below reflect active campaigns and high-priority vulnerabilities relevant to Alberta organizations.
2026-04-20
CAA-2026-0018 Device Code Phishing Attacks Abuse Legitimate Authentication Methods to Bypass MFA
Since 25 March 2026, CyberAlberta Threat intelligence observed phishing attacks targeting the OAuth Device Code authentication method. This authentication method was created for input-constrained devices but has been inc
2026-03-31
Malicious npm Packages Installing Dropper and RAT
Cyber threat intelligence plays a pivotal role in enhancing cybersecurity defenses of any organization.
2026-03-26
CAA-2026-0015 TeamPCP Supply Chain Attack Distributes Information Stealer via Trusted Dependencies
A threat actor known as TeamPCP has conducted multiple supply chain attacks targeting popular open-source security scanners, resulting in the distribution of malicious updates containing information stealer malware. This
2026-03-13
CAA-2026-0012 Cyber Preparedness for Alberta Organizations Amid Iran-Linked Threats
Preparedness guidance for elevated geopolitical cyber risk and sector-specific defensive actions.
Operations
How We Monitor
Cyber threats are constantly evolving, and so is CyberAlberta's response. Our intelligence team monitors active campaigns, analyzes attacker behaviour, and publishes guidance tailored to Alberta's threat environment.
Our work focuses on understanding threat actor motivations, methods, and exploited vulnerabilities - then translating that analysis into practical recommendations organizations can implement quickly.
Through coordinated information sharing across sectors and jurisdictions, we help Alberta organizations stay informed, prepared, and resilient against emerging digital risk.
Take Action