IM
IronMonkey Threat Research
LIVE
|
Articles 27,087
|
CVEs 348,665
|
APT Groups 800
|
Tools 2,196
|
Updated recently
Today Yesterday All 27,055 articles — Page 394 of 902
BleepingComputer ·

Microsoft has fixed a major bug preventing Microsoft 365 users from launching the classic Outlook email client on Windows systems. [...]

Microsoft
Securelist ·

Kaspersky GReAT experts break down a recent PassiveNeuron campaign that targets servers worldwide with custom Neursite and NeuralExecutor APT implants and Cobalt Strike.

Mysterious Elephant Financial Services Critical Manufacturing Malware descriptions GReAT research
The Register - Security ·

Zero trust is the best kind of trust when it comes to securing your organization, says ZScaler Partner Content Many organizations across Europe have taken steps to implement Zero Trust principles,...

Critical Manufacturing Financial Services
The Register - Security ·

Calendar cock-up exposed recipients' details Anti-fraud nonprofit Cifas was left red-faced after sending out a calendar invite that exposed the email addresses of dozens of individuals working...

Government Facilities
BleepingComputer ·

Microsoft has released an emergency update to fix the Windows Recovery Environment (WinRE), which became unusable on systems with USB mice and keyboards after installing the October 2025 security...

Microsoft
The Hacker News ·

The U.S. Cybersecurity and Infrastructure Security Agency (CISA) on Monday added five security flaws to its Known Exploited Vulnerabilities (KEV) Catalog, officially confirming a recently...

Energy Information Technology
Cloud Threat Landscape ·

Attackers obtain remote code execution through abuse of SQL-server environments (exploitation, SQL injection, or credential compromise) and attempt to install web shells. When detection (e.g.,...

Vulnerabilities – The Cyber Express ·

The U.S. Cybersecurity and Infrastructure Security Agency (CISA) added five CVEs to its Known Exploited Vulnerabilities (KEV) catalog today, including Microsoft, Apple and Oracle vulnerabilities....

Communications Healthcare and Public Health Cyber News Firewall Daily
Security Latest ·

In just seven minutes, the thieves took off with crown jewels containing with thousands of diamonds along with other precious gems.

CIA Security Security / Security News
The Hacker News ·

It’s easy to think your defenses are solid — until you realize attackers have been inside them the whole time. The latest incidents show that long-term, silent breaches are becoming the norm. The...

Flax Typhoon Ethereal Panda Financial Services
The Hacker News ·

ClickFix, FileFix, fake CAPTCHA — whatever you call it, attacks where users interact with malicious scripts in their web browser are a fast-growing source of security breaches. ClickFix attacks...

Energy Information Technology
Threats | CyberScoop ·

The NSA did not confirm nor deny the allegations made by China’s Ministry of State Security. China said the origins of the attack date back to March 2022. The post China’s spy agency accuses NSA...

CIA Salt Typhoon Government Facilities Defense Industrial Base Cybersecurity Geopolitics
BleepingComputer ·

The DNS0.EU non-profit public DNS service focused on European users announced its immediate shut down due to time and resource constraints. [...]

Information Technology Communications Security Technology
The Hacker News ·

Cybersecurity researchers have uncovered a coordinated campaign that leveraged 131 rebranded clones of a WhatsApp Web automation extension for Google Chrome to spam Brazilian users at scale. The...

Energy Information Technology
DataBreaches.Net ·

Joseph Cox reports: A hacking group that recently doxed hundreds of government officials, including from the Department of Homeland Security (DHS) and Immigration and Customs Enforcement (ICE),...

Defense Industrial Base Government Facilities Hack DHS
DataBreaches.Net ·

Kim Zetter reports: The investigation into former national security advisor John Bolton’s handling of classified material stemmed in part from an admission Bolton made to the FBI in July 2021 that...

Government Facilities Commentaries and Analyses Government Sector
BleepingComputer ·

Microsoft has confirmed that this month's security updates disable USB mice and keyboards in the Windows Recovery Environment (WinRE), making it unusable. [...]

Communications Microsoft
BleepingComputer ·

Japanese retail company Muji has taken offline its store due to a logistics outage caused by a ransomware attack at its delivery partner, Askul. [...]

Commercial Facilities Transportation Systems Security
Security Latest ·

Amazon Web Services experienced DNS resolution issues on Monday morning, taking down wide swaths of the web—and highlighting a longstanding weakness in the internet's infrastructure.

CIA Information Technology Communications Security Security / Security News
WeLiveSecurity ·

Ransomware rages on and no organization is too small to be targeted by cyber-extortionists. How can your business protect itself against the threat?

Financial Services Video
Threat Intelligence ·

Written by: Wesley Shields Introduction COLDRIVER, a Russian state-sponsored threat group known for targeting high profile individuals in NGOs, policy advisors and dissidents, swiftly shifted...

Star Blizzard UNC4057 Commercial Facilities Financial Services Threat Intelligence
BleepingComputer ·

Nearly 76,000 WatchGuard Firebox network security appliances are exposed on the public web and still vulnerable to a critical issue (CVE-2025-9242) that could allow a remote attacker to execute...

Security
BleepingComputer ·

CISA says threat actors are now actively exploiting a high-severity Windows SMB privilege escalation vulnerability that can let them gain SYSTEM privileges on unpatched systems. [...]

Government Facilities Security Microsoft
Security Latest ·

Every VPN says it’s the best, but only some of them are telling the truth.

Communications Information Technology Gear Gear / Buying Guides
The Record from Recorded Future News ·

Polish developer Kuba Gretzky wanted to prove that multi-factor authentication wasn’t foolproof. He succeeded — maybe too well. What happens when a cybersecurity warning becomes the threat itself?

Scattered Spider Void Blizzard Laundry Bear Commercial Facilities Defense Industrial Base Technology People
BleepingComputer ·

A new and ongoing supply-chain attack is targeting developers on the OpenVSX and Microsoft Visual Studio marketplaces with self-spreading malware called GlassWorm that has been installed an...

Critical Manufacturing Financial Services Security
CERT Polska ·

Use of Default Credentials vulnerability (CVE-2025-10678) has been found in NetBird VPN software.

CVE vulnerability
BleepingComputer ·

Microsoft is rolling out a fix for Active Directory issues affecting some Windows Server 2025 systems after installing security updates released since September. [...]

Microsoft
The Hacker News ·

China on Sunday accused the U.S. National Security Agency (NSA) of carrying out a "premeditated" cyber attack targeting the National Time Service Center (NTSC), as it described the U.S. as a...

Energy Information Technology
Schneier on Security ·

The OODA loop—for observe, orient, decide, act—is a framework to understand decision-making in adversarial situations. We apply the same framework to artificial intelligence agents, who have to...

Critical Manufacturing Defense Industrial Base Uncategorized AI