IM
IronMonkey Threat Research
LIVE
|
Articles 27,091
|
CVEs 348,840
|
APT Groups 800
|
Tools 2,196
|
Updated recently
Today Yesterday All 27,060 articles — Page 392 of 902
BleepingComputer ·

Security researchers collected $792,750 in cash after exploiting 56​​​​​​​ unique zero-day vulnerabilities during the second day of the Pwn2Own Ireland 2025 hacking competition. [...]

Communications Transportation Systems Security
BleepingComputer ·

Hackers are actively exploiting the critical SessionReaper vulnerability (CVE-2025-54236) in Adobe Commerce (formerly Magento) platforms, with hundreds of attempts recorded. [...]

Security
The Hacker News ·

Government, financial, and industrial organizations located in Asia, Africa, and Latin America are the target of a new campaign dubbed PassiveNeuron, according to findings from Kaspersky. The...

Energy Information Technology
DataBreaches.Net ·

Rachel Means reports on what sounds like a cyberattack with encryption: Kaufman County officials have confirmed that the county experienced a “security incident” on October 20, disrupting access...

Government Facilities Emergency Services Government Sector Malware
DataBreaches.Net ·

Linsey Lewis reports: OYO Hotel & Casino Las Vegas was hit by a cyberattack sometime in early January, allegedly exposing the personal information of more than 4,700 people, according to documents...

Commercial Facilities Business Sector Hack
SpiderLabs Blog ·

In 2025, 36 years after the first ransomware attack was recorded, actors continue to zero in on the public sector, and there is no evidence they will slow down any time soon. In fact, our numbers...

Government Facilities Financial Services Vulnerabilities Data Breach
SpiderLabs Blog ·

In 2025, 36 years after the first ransomware attack was recorded, actors continue to zero in on the public sector, and there is no evidence they will slow down any time soon. In fact, our numbers...

Government Facilities Financial Services Vulnerabilities Data Breach
BleepingComputer ·

A high-severity vulnerability in the now-abandoned async-tar Rust library and its forks can be exploited to gain remote code execution on systems running unpatched software. [...]

Critical Manufacturing Security
The Register - Security ·

Forks of forks of forks, but which ones are patched? A vulnerability in the popular Rust crate async-tar has affected the fast uv Python package manager, which uses a forked version that's now...

Critical Manufacturing
DataBreaches.Net ·

If the court continues issuing such injunctions, the Department of Telecommunications may need an entire department and staff just to respond to these situations. Should the responsibility be on...

Financial Services Commentaries and Analyses Hack
The Hacker News ·

Cybersecurity researchers have disclosed details of a high-severity flaw impacting the popular async-tar Rust library and its forks, including tokio-tar, that could result in remote code execution...

Energy Information Technology
BleepingComputer ·

Meta has announced new tools to help WhatsApp and Messenger users protect themselves from potential scams and secure their accounts. [...]

Financial Services Security
BleepingComputer ·

The FinWise breach shows that when insider threats strike, encryption is the last line of defense. Penta Security's D.AMO platform unites encryption, key management, and access control to keep...

Financial Services Government Facilities Security
Schneier on Security ·

Interesting article on people with nonstandard faces and how facial recognition systems fail for them. Some of those living with facial differences tell WIRED they have undergone multiple...

Communications Financial Services Uncategorized biometrics
Tenable Blog ·

Tenable has been named a Continuous Threat Exposure Management (CTEM) Leader in Latio’s 2025 Cloud Security Market Report. This recognition is based on rigorous product testing conducted by Latio...

Information Technology Energy
Cyber Security Advisories - MS-ISAC ·

Multiple vulnerabilities have been discovered in Oracle products, the most severe of which could allow for remote code execution.

Financial Services Commercial Facilities
The Register - Security ·

That's a lot of extended warranties The Jaguar Land Rover (JLR) cyberattack could end up being the costliest such incident in UK history, billed at an estimated £1.9 billion and affecting over...

Critical Manufacturing Commercial Facilities
The Hacker News ·

TP-Link has released security updates to address four security flaws impacting Omada gateway devices, including two critical bugs that could result in arbitrary code execution. The vulnerabilities...

Energy Information Technology
Securelist ·

Kaspersky experts break down the recent BetterBank incident involving ESTEEM token bonus minting due to the lack of liquidity pool validation.

Mysterious Elephant Critical Manufacturing Financial Services Incidents SOC, TI and IR posts
Broadcom Software Blogs ·

The China-based actor behind the Warlock ransomware may not be a new player and has links to malicious activity dating as far back as 2019.

Violet Typhoon Linen Typhoon Defense Industrial Base Healthcare and Public Health
Broadcom Software Blogs ·

China-based threat actors also compromised networks of government agencies in countries in Africa and South America.

UNC5221 Earth Estries Violet Typhoon Communications Government Facilities
SentinelLabs - We are hunters, reversers, exploit developers, and tinkerers shedding light on the world of malware, exploits, APTs, and cybercrime across all platforms. ·

SentinelLABS uncovers a coordinated spearphishing campaign targeting organizations critical to Ukraine's war relief efforts.

Commercial Facilities Critical Manufacturing Ukraine
eCrime.ch Ransomware News | RSS ·

Qilin n'est pas un groupe de pirates informatiques, mais une "franchise" qui permet d'utiliser ses services contre rémunération. Apparue en 2022, elle reste nimbée de mystère. Des lycées du nord...

Emergency Services Energy
eCrime.ch Ransomware News | RSS ·

NEW YORK – New York Attorney General Letitia James today announced a settlement with a public accounting firm, Wojeski & Company (Wojeski), to strengthen its data security to protect consumers’...

Financial Services Healthcare and Public Health
BleepingComputer ·

A spearphishing attack that lasted a single day targeted members of the Ukrainian regional government administration and organizations critical for the war relief effort in Ukraine, including the...

Star Blizzard Security
eCrime.ch Ransomware News | RSS ·

On October 15, 2025, Jewett-Cameron Trading Co. Ltd. (the "Company") learned that a threat actor had gained unauthorized access to portions of the Company's information technology ("IT")...

Commercial Facilities Financial Services
Tenable Blog ·

Think you know all there is to know about cybersecurity? Guess again. Shadow AI is challenging security leaders with many of the same issues raised by other “shadow” technologies. Only this time,...

Information Technology Energy
WeLiveSecurity ·

Here’s what to know about the malware with an insatiable appetite for valuable data, so much so that it tops this year's infostealer detection charts

Financial Services Information Technology Malware
The Register - Security ·

ICO says probe unnecessary after reviewing ministry's handling of leak The UK's data protection regulator declined to launch an investigation into a leak at the Ministry of Defence that risked the...

Government Facilities
BleepingComputer ·

Hackers believed to be associated with China have leveraged the ToolShell vulnerability (CVE-2025-53770) in Microsoft SharePoint in attacks targeting government agencies, universities,...

Salt Typhoon Violet Typhoon Linen Typhoon Government Facilities Security