IM
IronMonkey Threat Research
LIVE
|
Articles 27,088
|
CVEs 348,712
|
APT Groups 800
|
Tools 2,196
|
Updated recently
Today Yesterday All 27,056 articles — Page 340 of 902
Securelist ·

Kaspersky researchers uncover a new version of the Shai Hulud npm worm, which is attacking targets in Russia, India, Brazil, China, and other countries, and has wiper features.

ToddyCat Hacking Team Critical Manufacturing Financial Services Crimeware reports Malware Descriptions
Tenable Blog ·

A maximum severity vulnerability (CVSS 10) was discovered in React, one of the most popular JavaScript frameworks. If your app supports React Server Components, you are likely vulnerable out of...

Information Technology Energy
Threats | CyberScoop ·

The open-source code library is one of the most extensively used application frameworks. Wiz found vulnerable versions in around 39% of cloud environments. The post Developers scramble as critical...

Salt Typhoon Communications Critical Manufacturing Cybercrime Cybersecurity
Maxwell Dulin's Resources ·

The impact of security vulnerabilities is hard to price, unless you're dealing with smart contract funds. So, Anthropic decided to see how well AI could find vulnerabilities in smart contracts....

Maxwell Dulin's Resources ·

The authors of this post competed in the Paradigm CTF in 2023. One of the challenges was a Solana Jump Oriented Programming (JOP) challenge. The idea was to adapt a traditional binary exploitation...

Critical Manufacturing Transportation Systems
Maxwell Dulin's Resources ·

Most Solana programs are written using Anchor. If you're really chasing performance, you may write raw Rust code too. Recently, the Pinocchio framework was developed as a middle ground between the...

DataBreaches.Net ·

Dysruption Hub reports: Puerto Rico officials say a Thanksgiving-week cyberattack on IT contractor Truenorth Corporation briefly disrupted systems at three major agencies but did not compromise...

Healthcare and Public Health Government Facilities Government Sector Malware
maxwelldulin ·

Some applications have very strong security requirements. For instance, you should be able to execute code but not know what's executing. In cases like Secret Network, these secure enclaves are...

Healthcare and Public Health Transportation Systems
maxwelldulin ·

Cryptography is a fragile beast. It's powerful but can break with any small mistakes. One of these "small mistakes" is around comparisons. If one operation takes a different amount of time than...

Financial Services
The Hacker News ·

Remember when phishing emails were easy to spot? Bad grammar, weird formatting, and requests from a "Prince" in a distant country? Those days are over. Today, a 16-year-old with zero coding skills...

Information Technology Critical Manufacturing
maxwelldulin ·

ERC-4337 for Account Abstraction is great for UX improvements, but it has added significant complexity to smart contract interactions. Ethereum natively only allows transactions that originate by...

Energy Critical Manufacturing
SECURITY.COM ·

How organizations in highly regulated industries like defense, finance and healthcare secure their most sensitive assets

Healthcare and Public Health Critical Manufacturing
The Record from Recorded Future News ·

The cameras, made by the police technology juggernaut Axon Enterprise, were deployed on a trial basis by as many as 50 officers on Wednesday, according to local news reports.

Energy Government News
Wiz Blog | RSS feed ·

Detect and mitigate CVE-2025-55182, a critical RCE vulnerability in React. Organizations should patch urgently.

The Record from Recorded Future News ·

Mobile phone makers will no longer be required to load the Indian government's Sanchar Saathi app onto new devices after the initial announcement prompted pushback from companies and privacy groups.

Critical Manufacturing Energy Technology Government
DataBreaches.Net ·

One of the most worrying concerns DataBreaches and Protenus reported each year when reporting on breaches of health data was the insider threat. Often the insider threat takes the form of...

Healthcare and Public Health Commentaries and Analyses Health Data
The Hacker News ·

Most people know the story of Paul Bunyan. A giant lumberjack, a trusted axe, and a challenge from a machine that promised to outpace him. Paul doubled down on his old way of working, swung...

Information Technology
The Hacker News ·

Three critical security flaws have been disclosed in an open-source utility called Picklescan that could allow malicious actors to execute arbitrary code by loading untrusted PyTorch models,...

Information Technology Critical Manufacturing
eCrime.ch Ransomware News | RSS ·

We are writing to notify you of a data security incident in a third-party Oracle software application at the University of Pennsylvania (“Penn” or “University”) that involved some of your personal...

Government Facilities
The Hacker News ·

Cybersecurity researchers have discovered a malicious Rust package that's capable of targeting Windows, macOS, and Linux systems, and features malicious functionality to stealthily execute on...

Information Technology Financial Services
SpiderLabs Blog ·

Sha1-Hulud is back with a new evolution of its supply-chain attack that targets development environments via Node Package Manager (npm). npm is a very popular package manager for Node.js that...

Financial Services Critical Manufacturing Emerging Threats Vulnerabilities
SpiderLabs Blog ·

Sha1-Hulud is back with a new evolution of its supply-chain attack that targets development environments via Node Package Manager (npm). npm is a very popular package manager for Node.js that...

Financial Services Critical Manufacturing Emerging Threats Vulnerabilities
[DO NOT USE] SpiderLabs Blog ·

Sha1-Hulud is back with a new evolution of its supply-chain attack that targets development environments via Node Package Manager (npm). npm is a very popular package manager for Node.js that...

Energy Critical Manufacturing Emerging Threats Vulnerabilities
Blue Team Archives - Black Hills Information Security, Inc. ·

What happens when you ditch the tiered ticket queues and replace them with collaboration, agility, and real-time response? In this interview, Hayden Covington takes us behind the scenes of the...

Blue Team Incident Response
Threat Intelligence ·

Introduction Despite extensive scrutiny and public reporting, commercial surveillance vendors continue to operate unimpeded. A prominent name continues to surface in the world of mercenary...

Commercial Facilities Communications Threat Intelligence
Cyble Podcast | Cybersecurity & Threat Intelligence Insights ·

Executive Summary Cyble Research & Intelligence Labs (CRIL) has identified an active Linux-targeting campaign that deploys a Mirai-derived botnet, paired with a stealthy, fileless-configured...

Information Technology Critical Manufacturing Botnet Cryptominer
EclecticIQ Blog ·

EclecticIQ is proud to sponsor and exhibit at Black Hat Europe 2025, one of the world’s leading cybersecurity and threat intelligence conferences. This year’s event brings more than 3,000 security...

Commercial Facilities Transportation Systems
Wiz Blog | RSS feed ·

Check out new product releases that help security and engineers work together to keep cloud environments secure

Transportation Systems Information Technology
Blogs on Information Technology, Network & Cybersecurity | Seqrite ·

Contents Introduction Key Targets. Industries Affected. Geographical Focus. Infection Chain. Initial Findings. Looking into the decoy-document Technical Analysis Stage 1 – Malicious LNK Script...

Healthcare and Public Health Technical
Blogs on Information Technology, Network & Cybersecurity | Seqrite ·

Contents Introduction Key Targets. Industries Affected. Geographical Focus. Infection Chain. Initial Findings. Looking into the decoy-document Technical Analysis Stage 1 – Malicious LNK Script...

Healthcare and Public Health Technical