IM
IronMonkey Threat Research
LIVE
|
Articles 27,088
|
CVEs 348,689
|
APT Groups 800
|
Tools 2,196
|
Updated recently
Today Yesterday All 27,056 articles — Page 108 of 902
The Hacker News ·

Cybersecurity researchers have disclosed details of a critical security vulnerability impacting GitHub.com and GitHub Enterprise Server that could allow an authenticated user to obtain remote code...

Information Technology
The Hacker News ·

A cybercrime group of Brazilian origin has resurfaced after more than three years to orchestrate a campaign that targets Minecraft players with a new stealer called LofyStealer (aka GrabBot). "The...

Graceful Spider
The Register - Security ·

'Full recovery is impossible for anyone, including the attacker'

Information Technology security
Cyber Intelligence Insights ·

Tracing Remus EtherHiding Infrastructure

Information Technology
The Hacker News ·

Threat hunters are warning that the cybercriminal operation known as VECT 2.0 acts more like a wiper than a ransomware due to a critical flaw in its encryption implementation across Windows,...

Information Technology
The Register - Security ·

'Full recovery is impossible for anyone, including the attacker' Organizations hit by the wave of Trivy and LiteLLM supply-chain compromises that paid Vect in hopes of recovering their data likely...

Information Technology
Security Latest ·

The war in Iran has drawn attention to arrests in the United Arab Emirates over online content, but the legal framework behind that enforcement has existed for years.

Security Security / Privacy
The Hacker News ·

Every security program is betting on the same assumption: once a system is connected, the problem is solved. Open a ticket, stand up a gateway, push the data through. Done. That assumption is...

BleepingComputer ·

Researchers are warning that the VECT 2.0 ransomware has a problem in the way it handles encryption nonces that leads to permanently destroying larger files rather than encrypt them. [...]

Information Technology Security
BleepingComputer ·

Hackers are targeting sensitive information stored in the LiteLLM open-source large-language model (LLM) gateway by exploiting a critical vulnerability tracked as CVE-2026-42208. [...]

Information Technology Security
The Hacker News ·

Cybersecurity researchers have disclosed details of a critical security flaw impacting LeRobot, Hugging Face's open-source robotics platform with nearly 24,000 GitHub stars, that could be...

Information Technology
The Register - Security ·

Names, phone numbers, physical addresses also included in Shiny Hunters alleged data dump

ShinyHunters Commercial Facilities Transportation Systems security
The Hacker News ·

When patching isn’t fast enough, NDR helps contain the next era of threats. If you’ve been tracking advancements in AI, you know the exploit window, the short buffer that organizations relied on...

Information Technology
Alerts and advisories ·

Mozilla security advisory (AV26-401)

Information Technology
Wiz Blog | RSS feed ·

Details on CVE-2026-3854: A critical flaw in GitHub’s internal git infrastructure enabling RCE on GitHub.com and GitHub Enterprise Server.

Information Technology
BleepingComputer ·

Vimeo has disclosed that data belonging to some of its customers and users has been accessed without authorization following the recent breach at the Anodot data anomaly detection company. [...]

ShinyHunters Information Technology Commercial Facilities Security
Kaspersky ICS CERT (English) ·

Southern Europe led all regions in terms of the growth in the percentage of ICS computers on which ransomware and worms were blocked. The review of key cybersecurity issues in European regions.

Critical Manufacturing Energy Publications
CERT Polska ·

Incorrect Permission Assignment for Critical Resource vulnerability (CVE-2026-40556) has been found in nano software.

Information Technology CVE vulnerability
The Register - Security ·

Names, phone numbers, physical addresses also included in Shiny Hunters alleged data dump Logistics technology company Pitney Bowes, which makes franking machines for US postage, is the latest...

ShinyHunters Commercial Facilities Transportation Systems
Alerts and advisories ·

Zyxel security advisory (AV26-399)

Information Technology Communications
Alerts and advisories ·

Citrix security advisory (AV26-400)

Information Technology
Cyber Security Advisories - MS-ISAC ·

Multiple vulnerabilities have been discovered in Mozilla products, the most severe of which could allow for arbitrary code execution. Mozilla Firefox is a web browser used to access the...

Government Facilities Information Technology
Cyber Security Advisories - MS-ISAC ·

Multiple vulnerabilities have been discovered in Oracle products, the most severe of which could allow for remote code execution. Successful exploitation of the most severe of these...

Information Technology Government Facilities
Alerts and advisories ·

SmarterTools security advisory (AV26-398)

Information Technology
The Hacker News ·

A Chinese national accused of being a member of the Silk Typhoon hacking group has been extradited to the U.S. from Italy. Xu Zewei, 34, was arrested in July 2025 by Italian authorities for his...

Cisco Talos Blog ·

With attackers moving faster than ever, it’s easy to feel overwhelmed. This blog breaks down five practical priorities from the Cisco Talos 2025 Year in Review to help defenders focus and...

Information Technology 2025YiR Year In Review
Check Point Research ·

Key Takeaways Background VECT Ransomware is a Ransomware-as-a-Service (RaaS) program that made its first appearance in December 2025 on a Russian-language cybercrime forum. After claiming their...

Safe Information Technology Check Point Research Publications
Security Latest ·

AI agents may soon be buying your stuff for you. The FIDO Alliance has teamed up with Google and Mastercard to try to ensure that shopping in the near future isn't a complete disaster.

Financial Services Information Technology Security Security / Privacy
The Hacker News ·

An administrative role meant for artificial intelligence (AI) agents within Microsoft Entra ID could enable privilege escalation and identity takeover attacks, according to new findings from...

Information Technology
Proofpoint News Feed ·

Proofpoint’s annual survey of 1,453 security professionals shows that organizations hit by an AI incident saw threats appear across every collaboration channel, not just the inbox.

Information Technology