IM
IronMonkey Threat Research
LIVE
|
Articles 27,088
|
CVEs 348,665
|
APT Groups 800
|
Tools 2,196
|
Updated recently
Today Yesterday All 27,056 articles — Page 389 of 902
Cybersecurity Blog | SentinelOne ·

Europol disrupts SIM-box fraudsters, Jingle Thief exploits cloud identities for gift card theft, and PhantomCaptcha targets Ukrainian NGOs.

Star Blizzard Government Facilities Commercial Facilities Company cyber
The Hacker News ·

A malicious network of YouTube accounts has been observed publishing and promoting videos that lead to malware downloads, essentially abusing the popularity and trust associated with the video...

Energy Information Technology
BleepingComputer ·

A widespread exploitation campaign is targeting WordPress websites with GutenKit and Hunk Companion plugins vulnerable to critical-severity, old security issues that can be used to achieve remote...

Security
Cyber Security Advisories - MS-ISAC ·

A vulnerability has been discovered in Microsoft Windows Server Update Services (WSUS) which could allow for remote code execution. WSUS is a tool that helps organizations manage and distribute...

Communications Information Technology
Cyble ·

Despite major changes in the leading ransomware groups, ransomware attacks have surged 50% in 2025, as cybercriminals have proven adept at finding new opportunities and exploiting vulnerabilities....

Safe Financial Services Healthcare and Public Health Threat Intelligence Threat Landscape Reports
Broadcom Software Blogs ·

The next cybersecurity arms race is already here, but it's not too late to get a head start

Information Technology Healthcare and Public Health
Blogs on Information Technology, Network & Cybersecurity | Seqrite ·

Introduction In August 2025, a Telegram channel named “Scattered LAPSUS$ Hunters” surfaced, linking itself to notorious cybercrime groups: Scattered Spider, ShinyHunters, and LAPSUS$. The group...

Scattered Spider ShinyHunters Commercial Facilities Financial Services Technical
The Hacker News ·

Cybersecurity researchers have discovered a self-propagating worm that spreads via Visual Studio Code (VS Code) extensions on the Open VSX Registry and the Microsoft Extension Marketplace,...

Critical Manufacturing Energy
BleepingComputer ·

Attackers are now exploiting a critical-severity Windows Server Update Service (WSUS) vulnerability, which already has publicly available proof-of-concept exploit code. [...]

Government Facilities Security Microsoft
The Register - Security ·

You didn't have plans, did you? Microsoft has released an out-of-band update to patch a critical vulnerability in Windows Server Update Services (WSUS).…

Financial Services
CERT Polska ·

SQL Injection vulnerability (CVE-2025-8536) has been found in Studio Fabryka DobryCMS software.

CVE vulnerability
WeLiveSecurity ·

Shadow IT leaves organizations exposed to cyberattacks and raises the risk of data loss and compliance failures

Video
Vulnerabilities – The Cyber Express ·

Microsoft has released an urgent out-of-band security update to address a severe remote code execution (RCE) vulnerability in Windows Server Update Services (WSUS). The flaw, tracked as...

Healthcare and Public Health Communications Firewall Daily Cyber News
BleepingComputer ·

Amazon says a major DNS failure was behind a massive AWS (Amazon Web Services) outage that took down many websites and online services on Monday. [...]

Information Technology Technology
The Register - Security ·

Starmer rebrands unpopular scheme as convenience tool after backlash UK Prime Minister Keir Starmer has relaunched his digital ID scheme as something that will make people's lives easier, less...

Financial Services Healthcare and Public Health
Schneier on Security ·

Two people found the solution. They used the power of research, not cryptanalysis, finding clues amongst the Sanborn papers at the Smithsonian’s Archives of American Art. This comes as an awkward...

Uncategorized CIA
BleepingComputer ·

LastPass is warning customers of a phishing campaign sending emails with an access request to the password vault as part of a legacy inheritance process. [...]

Financial Services Security CryptoCurrency
BleepingComputer ·

Password resets account for nearly 40% of IT help desk calls, costing orgs time and money. Specops Software's uReset lets users securely reset passwords with flexible MFA options like Duo, Okta,...

Financial Services Information Technology Security
Cisco Talos Blog ·

We’ve relied on passwords for years to protect our online accounts, but they’ve also become one of the easiest ways attackers get in. Cisco Duo helps clear up some of the biggest passwordless myths.

On The Radar
BleepingComputer ·

Starting next month, Mozilla will require Firefox extension developers to disclose whether their add-ons collect or share user data with third parties. [...]

Financial Services Software
Tenable Blog ·

As organizations eagerly adopt AI, cybersecurity teams are racing to protect these new systems. In this special edition of the Cybersecurity Snapshot, we round up some of the best recent guidance...

Information Technology Energy
The Register - Security ·

Runways? Where we're going, we don't need runways US defense technology biz Shield AI claims it can build a jet-powered vertical take-off and landing (VTOL) autonomous fighter drone that doesn't...

Defense Industrial Base
Vulnerabilities – The Cyber Express ·

Six weeks after Adobe shipped an emergency fix, attackers have begun weaponizing SessionReaper — and most Magento stores still stand exposed. Security firm Sansec’s forensics team said it blocked...

Healthcare and Public Health Financial Services Vulnerabilities Cyber Essentials
CERT Polska ·

XSS vulnerability (CVE-2025-9158) has been found in Best Practical Request Tracker software.

CVE vulnerability
The Register - Security ·

Group-IB says Tehran-linked crew used hijacked mailbox and VPN to sling phishing emails across Middle East Iran's favorite muddy-footed cyberespionage crew is at it again, this time breaching more...

Seedworm Communications Government Facilities
BleepingComputer ·

Microsoft has released out-of-band (OOB) security updates to patch a critical-severity Windows Server Update Service (WSUS) vulnerability with publicly available proof-of-concept exploit code. [...]

Security Microsoft
BleepingComputer ·

​The Pwn2Own Ireland 2025 hacking competition has ended with security researchers collecting $1,024,750 in cash awards after exploiting 73 zero-day vulnerabilities. [...]

Communications Security
The Record from Recorded Future News ·

Researchers at ESET said they found evidence of a new tentacle of the long-running Operation DreamJob campaign — where North Korea’s Lazarus group sends malware-laden emails purporting to be from...

Lazarus Group Defense Industrial Base Critical Manufacturing Cybercrime Government
The Register - Security ·

The 0-days have left the building Federal prosecutors have charged a former general manager of US government defense contractor L3Harris's cyber arm Trenchant with selling secrets to an...

Defense Industrial Base Financial Services
Recorded Future ·

Learn to how to prevent ransomware attacks before they materialize with proactive threat intelligence

Information Technology Dams Blog