IM
IronMonkey Threat Research
LIVE
|
Articles 27,088
|
CVEs 348,665
|
APT Groups 800
|
Tools 2,196
|
Updated recently
Today Yesterday All 27,056 articles — Page 106 of 902
The Hacker News ·

Cybersecurity researchers are sounding the alarm about a new supply chain attack campaign targeting SAP-related npm Packages with credential-stealing malware. According to reports from Aikido...

Information Technology Critical Manufacturing
The Register - Security ·

Second try's a charm?

Information Technology Government Facilities security
Wiz Blog | RSS feed ·

How AI Adoption, Autonomy, and Attacker Innovation Are Reshaping Cloud Security

Information Technology
The Register - Security ·

Microsoft readies the axe once again for yesterday's security

Information Technology Communications security
Alerts and advisories ·

AL26-008 - Vulnerability affecting cPanel and WebHost Manager (WHM) - CVE-2026-41940

Information Technology
The Hacker News ·

Cybersecurity researchers have discovered malicious code in an npm package after a malicious package as a dependency to the project by Anthropic's Claude Opus large language model (LLM). The...

Lazarus Group Information Technology
The Register - Security ·

ORNL says portable detector kit can separate real GPS signals from fake ones even at equal strength GPS spoofing, which sends fake satellite-like signals, and GPS jamming, which drowns receivers...

Communications Information Technology
The Citizen Lab ·

Citizen Lab director Ron Deibert recently spoke on All Things Considered about the Lab’s new investigation of Webloc, a geolocation surveillance system. The post A New Study Shows How Ad-Based...

Information Technology Government Facilities
The Register - Security ·

Second try's a charm? Microsoft and the US Cybersecurity and Infrastructure Security Agency (CISA) warned that attackers are exploiting a zero-click Windows flaw that can expose sensitive...

Information Technology Government Facilities
The Citizen Lab ·

A group of 25 rights and privacy organizations and experts delivered an open letter to Parliament calling for the full withdrawal of Bill C-22. The post Kill Bill C-22: Says Civil Society to...

Government Facilities Information Technology
The Register - Security ·

There is no 6 Nimmt! champion, but a $12 domain registration and one Wikipedia edit convinced several bots there was

Information Technology software
BleepingComputer ·

Multiple official SAP npm packages were compromised in what is believed to be a TeamPCP supply-chain attack to steal credentials and authentication tokens from developers' systems. [...]

Information Technology Critical Manufacturing Security
The Register - Security ·

Microsoft readies the axe once again for yesterday's security Microsoft has warned users still clinging to legacy TLS versions that the end is nigh for TLS 1.0 and 1.1 on POP3 and IMAP4...

Information Technology Communications
BleepingComputer ·

The Quick Page/Post Redirect plugin, installed on more than 70,000 WordPress sites, had a backdoor added five years ago that allows injecting arbitrary code into users' sites. [...]

Information Technology Security
The Register - Security ·

GrassMarlin leaks sensitive information, provided your targeting phishing skills are sharp enough

Critical Manufacturing Energy security
Alerts and advisories ·

SonicWall security advisory (AV26-405)

Information Technology Critical Manufacturing
The Hacker News ·

In February 2026, researchers uncovered a shift that completely changed the game: threat actors are now using custom AI setups to automate attacks directly into the kill chain. We aren't just...

Alerts and advisories ·

cPanel security advisory (AV26-404)

Information Technology
The Hacker News ·

Every security team has a version of the same story. The quarter ends with hundreds of vulnerabilities closed. The dashboards are bursting with green. Then someone in a leadership meeting asks:...

Information Technology
BleepingComputer ·

Hackers are exploiting two authentication bypass vulnerabilities in the Qinglong open-source task scheduling tool to deploy cryptominers on developers' servers. [...]

Information Technology Security
The Register - Security ·

GrassMarlin leaks sensitive information, provided your targeting phishing skills are sharp enough The Cybersecurity and Infrastructure Security Agency (CISA) is warning anyone who uses...

Critical Manufacturing Energy
Wiz Blog | RSS feed ·

Detect and mitigate malicious npm packages linked to the recent Shai-Hulud-style campaign - Mini Shai Hulud.

Information Technology Critical Manufacturing
The Hacker News ·

cPanel has released security updates to address a security issue impacting various authentication paths that could allow an attacker to obtain access to the control panel software. The problem...

Information Technology
The Register - Security ·

Claude ploughs through months of work in rapid time, helps Wiz researchers nab lucrative award

Information Technology security
Alerts and advisories ·

Jenkins security advisory (AV26-403)

Information Technology
BleepingComputer ·

The Ukrainian police have arrested three individuals who hacked more than 610,000 Roblox gaming accounts and sold them for a profit of $225,000. [...]

Financial Services Security Gaming
The Hacker News ·

The U.S. Cybersecurity and Infrastructure Security Agency (CISA) on Tuesday added two security flaws impacting ConnectWise ScreenConnect and Microsoft Windows to its Known Exploited...

Information Technology Government Facilities
LevelBlue SpiderLabs Blog ·

Internet of Things (IoT) systems in hospitality environments are often overlooked as harmless amenities, but in reality, they can operate within highly interconnected networks, turning them into...

Commercial Facilities Transportation Systems Vulnerabilities Penetration Testing
Blue Team Archives - Black Hills Information Security, Inc. ·

This blog will not dive too deeply into BloodHound itself; instead, we will focus on various methods to collect AD data to provide BloodHound as input. The post A Practical Guide to BloodHound...

Information Technology Alyssa Snow Blue Team
Wiz Blog | RSS feed ·

Providing Application Security teams with visibility and guardrails to secure agentic software development and the modern software supply chain

Information Technology