IM
IronMonkey Threat Research
LIVE
|
Articles 27,087
|
CVEs 348,665
|
APT Groups 800
|
Tools 2,196
|
Updated recently
Today Yesterday All 27,055 articles — Page 126 of 902
The Hacker News ·

In 2024, compromised service accounts and forgotten API keys were behind 68% of cloud breaches. Not phishing. Not weak passwords. Unmanaged non-human identities that nobody was watching. For every...

The Hacker News ·

Cisco has announced patches to address four critical security flaws impacting Identity Services and Webex Services that could result in arbitrary code execution and allow an attacker to...

Proofpoint News Feed ·

Losses from cargo theft in North America rose to $6.6 billion in 2025, driven largely by digital attacks, according to the fleet management company Geotab.

Critical Manufacturing Information Technology
BleepingComputer ·

A researcher known as "Chaotic Eclipse" has published a proof-of-concept exploit for a second Microsoft Defender zero-day, dubbed "RedSun," in the past two weeks, protesting how the company works...

Information Technology Microsoft Security
The Hacker News ·

A "novel" social engineering campaign has been observed abusing Obsidian, a cross-platform note-taking application, as an initial access vector to distribute a previously undocumented Windows...

The Register - Security ·

Fortune 500 companies and one US defense contractor got taken for $5m in four-year scam Two Americans have been jailed for a combined 200 months for helping North Korea generate $5 million through...

Financial Services Information Technology
Industrial Cyber ·

A new analysis from the Foundation for Defense of Democracies (FDD) warns that Chinese-produced cellular modules, embedded across... The post Hidden risks in Chinese cellular modules grow across...

Information Technology Communications Analysis Attacks and Vulnerabilities
Industrial Cyber ·

Asset intelligence platform for unified security operations and exposure management vendor Axonius announced on Wednesday a major expansion... The post Axonius brings AI-driven exposure management...

Critical Manufacturing Information Technology News Vendors
Tenable Blog ·

See how Tenable Hexa AI custom agents empower you to counter machine-speed threats by automating vulnerability remediation. Learn how the Model Context Protocol (MCP) automates execution of...

Information Technology
Industrial Cyber ·

Exposure management company Tenable announced a new OT asset discovery engine that enables security teams to quickly bring... The post Tenable embeds native OT visibility into Tenable One to...

Critical Manufacturing Information Technology News Vendors
Threat Intelligence ·

Introduction Advances in AI model-powered exploitation have demonstrated that general-purpose AI models can excel at vulnerability discovery, even without being purpose-built for the task....

Information Technology Threat Intelligence
Wiz Blog | RSS feed ·

Extending the Wiz AI APP into the code layer to detect AI-specific risks at inception, validate exploitability at runtime, and orchestrate remediation with agents that understand your codebase

Information Technology
BleepingComputer ·

Hackers are exploiting a critical vulnerability in Marimo reactive Python notebook to deploy a new variant of NKAbuse malware hosted on Hugging Face Spaces. [...]

Information Technology Security
The Register - Security ·

Forged metadata made AI reviewer treat hostile changes as though they came from known maintainer Security boffins say Anthropic's Claude can be tricked into approving malicious code with just two...

Information Technology
Articles – Threat Beat ·

AI companies like OpenAI and Anthropic should play a bigger role in software vulnerability disclosures in the future, according to a leader of the world’s largest vulnerability disclosure scheme....

Information Technology Government Facilities News
WeLiveSecurity ·

Your biggest risk may be a vendor you trust. How can SMBs map their third-party blind spots and build operational resilience?

Information Technology Financial Services Business Security
The Hacker News ·

The Computer Emergencies Response Team of Ukraine (CERT-UA) has disclosed details of a new campaign that has targeted governments and municipal healthcare institutions, mainly clinics and...

The Register - Security ·

Publisher claims misconfigured Salesforce-hosted page leaked data Textbook giant McGraw Hill has landed on a ransomware crew's leak site after an alleged Salesforce-linked misconfiguration spilled...

ShinyHunters Information Technology Commercial Facilities
Kaspersky ICS CERT (English) ·

The permanent leader in the percentage of ICS computers on which threats from removable media were blocked.

Critical Manufacturing Energy Publications
BleepingComputer ·

Google says it is increasingly using its Gemini AI models to detect and block harmful ads on its advertising platforms, as scammers and threat actors continue to evolve their tactics to evade...

Information Technology Google Security
Proofpoint News Feed ·

Cargo-stealing hackers have a new trick up their sleeve: using a third-party code-signing service makes their remote management and monitoring software installers

Information Technology Financial Services
Cyber Security Advisories - MS-ISAC ·

Multiple vulnerabilities have been discovered in Google Chrome, the most severe of which could allow for arbitrary code execution. Successful exploitation of the most severe of these...

Government Facilities Information Technology
BleepingComputer ·

A new cybercrime platform called ATHR can harvest credentials via fully automated voice phishing attacks that use both human operators and AI agents for the social engineering phase. [...]

Information Technology Financial Services Security Artificial Intelligence
BleepingComputer ·

AI-powered SOC tools promise automation, but most only speed up triage instead of reducing real workload. Tines shows how real gains come from end-to-end workflows that execute actions across...

Information Technology Security
The Register - Security ·

Just migrate already, would you? But if you can't, Redmond will take your cash Microsoft will keep delivering security updates for old versions of Exchange Server and Skype for Business Server,...

Information Technology
Cisco Talos Blog ·

Cisco Talos discovered an ongoing malicious campaign, operating since at least December 2025, affecting a broader workforce in the Czech Republic with a previously undocumented botnet we call “PowMix.”

Financial Services Information Technology Threat Spotlight Cisco Talos Antivirus
Cisco Talos Blog ·

Wendy shares the unique challenges and rewards of bridging the gap between artistic expression and highly technical research.

Information Technology Humans of Talos
SECURITY.COM ·

AI agents are becoming a new class of enterprise identity—and most platforms weren’t built for them

Information Technology
Schneier on Security ·

Interesting research: “Humans expect rationality and cooperation from LLM opponents in strategic games.” Abstract: As Large Language Models (LLMs) integrate into our social and economic...

Information Technology Uncategorized academic papers
Industrial Cyber ·

The Information Technology Industry Council (ITIC) warns that the U.S. is entering a decisive phase in its pursuit... The post ITI warns US must move from quantum strategy to execution as...

Information Technology Transportation Systems Attacks and Vulnerabilities Control device security