IM
IronMonkey Threat Research
LIVE
|
Articles 27,091
|
CVEs 348,840
|
APT Groups 800
|
Tools 2,196
|
Updated recently
Today Yesterday All 27,059 articles — Page 401 of 902
Cisco Talos Blog ·

Microsoft has released its monthly security update for October 2025, addressing 175 Microsoft CVEs and 21 non-Microsoft CVEs. Among these, 17 vulnerabilities are considered critical and 11 are...

Patch Tuesday
Threats | CyberScoop ·

The tech giant addressed a record-high number of defects for the year in its latest update. The post Microsoft’s Patch Tuesday fixes 175 vulnerabilities, including two actively exploited zero-days...

Flax Typhoon CIA Government Facilities Cybersecurity Threats
DataBreaches.Net ·

Jay Peters reports: 5CA is a customer service support company that works with Discord. Recently, the chat platform said the vendor had been breached as part of a “security incident” where 70,000...

Scattered Spider Healthcare and Public Health Financial Services Business Sector
BleepingComputer ·

A threat actor called TigerJack is constantly targeting developers with malicious extensions published on Microsoft's Visual Code (VSCode) marketplace and OpenVSX registry to steal cryptocurrency...

Financial Services Security
Security Latest ·

Officials in the US and UK have taken sweeping action against “one of the largest investment fraud operations in history,” confiscating a historic amount of funds in the process.

Financial Services Commercial Facilities Security Security / Security News
DataBreaches.Net ·

NEW YORK – New York Attorney General Letitia James today secured $14.2 million from eight car insurance companies for failing to protect the private information of more than 825,000 New Yorkers....

Financial Services Healthcare and Public Health Breach Incidents Exposure
Threats | CyberScoop ·

The cryptocurrency seizure and sanctions targeting the Prince Group, associates and affiliated businesses mark the most extensive action taken against cybercrime operations in the region to date....

Lazarus Group Flax Typhoon CIA Financial Services Transportation Systems Cybercrime Cybersecurity
The Hacker News ·

Every October brings a familiar rhythm - pumpkin-spice everything in stores and cafés, alongside a wave of reminders, webinars, and checklists in my inbox. Halloween may be just around the corner,...

Information Technology Energy
The Hacker News ·

Chipmaker AMD has released fixes to address a security flaw dubbed RMPocalypse that could be exploited to undermine confidential computing guarantees provided by Secure Encrypted Virtualization...

Information Technology Energy
The Hacker News ·

Android devices from Google and Samsung have been found vulnerable to a side-channel attack that could be exploited to covertly steal two-factor authentication (2FA) codes, Google Maps timelines,...

Energy Critical Manufacturing
The Hacker News ·

Before an attacker ever sends a payload, they’ve already done the work of understanding how your environment is built. They look at your login flows, your JavaScript files, your error messages,...

Commercial Facilities Energy
Schneier on Security ·

This is a current list of where and when I am scheduled to speak: I and Nathan E. Sanders will be giving a book talk on Rewiring Democracy at the Harvard Kennedy School’s Ash Center in Cambridge,...

Uncategorized Schneier news
Maxwell Dulin's Resources ·

To support debugging applications written in Unity, the Android library adds a handler for the intent containing unity data onto a UnityPlayerAcivity. Android does manage feature flags it does not...

The Record from Recorded Future News ·

California's governor signed a bill that requires chatbot operators to set up a system to prevent suicidal ideation — an issue that several federal lawmakers have also focused on in recent months.

Critical Manufacturing Government News
Maxwell Dulin's Resources ·

Meta's Facebook Messenger can use end-to-end encryption. In particular, you can select a friend and decide to start a conversation with them. Because the chat is encrypted, everything must be...

Maxwell Dulin's Resources ·

Vibe Coding is the practice of using an AI-assisted programmer to write all of the code without paying attention to whether it's correct or not. So, what's the term for a seasoned professional who...

Communications Defense Industrial Base
BleepingComputer ·

In what marks the end of an era, Microsoft has released the Windows 10 KB5066791 cumulative update, the final free update for the operating system as it reaches the end of its support lifecycle. [...]

Microsoft
Broadcom Software Blogs ·

How Symantec Endpoint Security Complete delivered 180% ROI over three years in a Forrester TEI study

Financial Services Information Technology
BleepingComputer ·

A new side-channel attack called Pixnapping enables a malicious Android app with no permissions to extract sensitive data by stealing pixels displayed by applications or websites, and...

Security Mobile
BleepingComputer ·

Microsoft has reminded that Exchange Server 2016 and 2019 reached the end of support and advised IT administrators to upgrade servers to Exchange Server SE or migrate to Exchange Online. [...]

Microsoft
WeLiveSecurity ·

As the number of software vulnerabilities continues to increase, delaying or skipping security updates could cost your business dearly.

Video
Tenable Blog ·

7Critical158Important2Moderate0LowMicrosoft addresses 167 CVEs in its largest Patch Tuesday to date, including three zero-day vulnerabilities, two of which were exploited in the wild.Microsoft...

Information Technology Energy
BleepingComputer ·

Today is Microsoft's October 2025 Patch Tuesday, which includes security updates for 172 flaws, including six zero-day vulnerabilities. Get patching! [...]

Information Technology Transportation Systems Microsoft Security
BleepingComputer ·

Microsoft has released Windows 11 KB5066835 and KB5066793 cumulative updates for versions 25H2/24H2 and 23H2 to fix security vulnerabilities and issues. [...]

Microsoft Software
BleepingComputer ·

The U.S. Department of Justice has seized $15 billion in bitcoin from the leader of Prince Group, a criminal organization that stole billions of dollars from victims in the United States through...

Financial Services Security CryptoCurrency
The Hacker News ·

Cybersecurity researchers have identified several malicious packages across npm, Python, and Ruby ecosystems that leverage Discord as a command-and-control (C2) channel to transmit stolen data to...

Critical Manufacturing Information Technology
BleepingComputer ·

Oracle has silently fixed an Oracle E-Business Suite vulnerability (CVE-2025-61884) that was actively exploited to breach servers, with a proof-of-concept exploit publicly leaked by the...

ShinyHunters Security
BleepingComputer ·

Oracle has silently fixed an Oracle E-Business Suite vulnerability (CVE-2025-61884) that was actively exploited to breach servers, with a proof-of-concept exploit publicly leaked by the...

ShinyHunters Security
Vulnerabilities – The Cyber Express ·

Microsoft has officially ended support for Windows 10, affecting hundreds of millions of users worldwide. This decision comes nearly a decade after the operating system's initial release and...

Healthcare and Public Health Communications Firewall Daily Cyber News
Security Latest ·

There are dozens of iPhone VPNs at your disposal, but these are the services that will actually keep your browsing safe.

Communications Information Technology Gear Gear / Buying Guides