IM
IronMonkey Threat Research
LIVE
|
Articles 27,088
|
CVEs 348,689
|
APT Groups 800
|
Tools 2,196
|
Updated recently
Today Yesterday All 27,056 articles — Page 407 of 902
Threats | CyberScoop ·

Multiple researchers and CISA have confirmed active exploitation of the maximum-severity defect. Fortra, the company behind the file-transfer service, remains silent. The post Microsoft pins...

CIA Government Facilities Critical Manufacturing Cybercrime Cybersecurity
The Hacker News ·

For years, security leaders have treated artificial intelligence as an “emerging” technology, something to keep an eye on but not yet mission-critical. A new Enterprise AI and SaaS Data Security...

Information Technology Energy
The Hacker News ·

Cybersecurity researchers have charted the evolution of XWorm malware, turning it into a versatile tool for supporting a wide range of malicious actions on compromised hosts. "XWorm's modular...

Energy Defense Industrial Base
Wiz Blog | RSS feed ·

Turning attacker insights into stronger cloud security protections.

Information Technology
Broadcom Software Blogs ·

Why SOC teams need more than red string and overgrown process trees to solve today’s complex cases

Transportation Systems
The Record from Recorded Future News ·

The new rule imposes a mandatory 24-hour mobile internet blackout for anyone entering Russia with a foreign SIM card.

Financial Services Energy Government News
The Hacker News ·

Redis has disclosed details of a maximum-severity security flaw in its in-memory database software that could result in remote code execution under certain circumstances. The vulnerability,...

Information Technology Energy
The Hacker News ·

Microsoft on Monday attributed a threat actor it tracks as Storm-1175 to the exploitation of a critical security flaw in Fortra GoAnywhere software to facilitate the deployment of Medusa...

Energy Information Technology
Vulnerabilities – The Cyber Express ·

Researchers have uncovered a 13-year-old critical remote-code-execution flaw in Redis that let attackers escape the product’s Lua sandbox and execute native code on the host, creating a straight...

Healthcare and Public Health Communications Vulnerabilities Cyber News
Schneier on Security ·

Citizen Lab has uncovered a coordinated AI-enabled influence operation against the Iranian government, probably conducted by Israel. Key Findings A coordinated network of more than 50 inauthentic...

Food and Agriculture Defense Industrial Base Uncategorized AI
The Hacker News ·

CrowdStrike on Monday said it's attributing the exploitation of a recently disclosed security flaw in Oracle E-Business Suite with moderate confidence to a threat actor it tracks as Graceful...

Graceful Spider Scattered Spider Slippy Spider Energy Government Facilities
Cisco Talos Blog ·

A simple yet effective tactic, known as hidden text salting, is increasingly used by cybercriminals over the past few months to evade even the most advanced email security solutions, including...

Transportation Systems Energy Threat Spotlight
Tenable Blog ·

Cloud security teams are often blind to one of the biggest threats to cloud environments: a web of over-privileged identities that create pathways for attackers. Learn how to regain control of...

Information Technology Energy
WeLiveSecurity ·

Company leaders need to recognize the gravity of cyber risk, turn awareness into action, and put security front and center

Financial Services Healthcare and Public Health Business Security
EclecticIQ Blog ·

For CTI teams, reporting is more than a checkbox - it’s how intelligence becomes action. But outdated tools and workflows often make report creation slow, frustrating, and disconnected from the...

Product CTI Ops
Vulnerabilities – The Cyber Express ·

A security vulnerability has been identified in Zabbix Agent and Agent2 for Windows, potentially allowing local users to escalate their privileges to the SYSTEM level. Tracked as CVE-2025-27237,...

Healthcare and Public Health Financial Services Firewall Daily Cyber News
Have I Been Pwned latest breaches ·

In February 2025, data allegedly obtained from an earlier Adpost breach surfaced. The dataset contained 3.3M records including email addresses, usernames, and display names. Multiple attempts to...

Financial Services
Threats | CyberScoop ·

The notorious ransomware group exploited multiple vulnerabilities, including a zero-day, for at least eight weeks before alleged victims received extortion demands. The post Oracle zero-day defect...

CIA Government Facilities Research Ransomware
Wiz Blog | RSS feed ·

Wiz Research discovers vulnerability stemming from 13-year-old bug present in all Redis versions, used in 75% of cloud environments.

Information Technology
DoublePulsar - Medium ·

Red Hat Consulting breach puts over 5000 high profile enterprise customers at risk — in detailLast week, a little known extortion group called Crimson Collective caught my attention. At the time...

Scattered Spider Financial Services Transportation Systems lapsus cybersecurity-news
The Hacker News ·

A Chinese company named the Beijing Institute of Electronics Technology and Application (BIETA) has been assessed to be likely led by the Ministry of State Security (MSS). The assessment comes...

Kimsuky Defense Industrial Base Energy
The Hacker News ·

The cyber world never hits pause, and staying alert matters more than ever. Every week brings new tricks, smarter attacks, and fresh lessons from the field. This recap cuts through the noise to...

Scattered Spider Lunar Spider Information Technology Government Facilities
The Hacker News ·

In the era of rapidly advancing artificial intelligence (AI) and cloud technologies, organizations are increasingly implementing security measures to protect sensitive data and ensure regulatory...

Information Technology Energy
The Hacker News ·

Oracle has released an emergency update to address a critical security flaw in its E-Business Suite software that it said has been exploited in the recent wave of Cl0p data theft attacks. The...

Energy
The Hacker News ·

Cybersecurity researchers have shed light on a Chinese-speaking cybercrime group codenamed UAT-8099 that has been attributed to search engine optimization (SEO) fraud and theft of high-value...

Communications Energy
DataBreaches.Net ·

Paging the Federal Trade Commission to Aisle 5…. The Federal Trade Commission has repeatedly emphasized the importance of having a mechanism in place to receive data security alerts or concerns....

Financial Services Healthcare and Public Health Commentaries and Analyses U.S.
BleepingComputer ·

Microsoft is investigating a bug that causes Copilot issues when multiple Office apps are running simultaneously on the same system. [...]

Microsoft
BleepingComputer ·

A new hacking competition called Zeroday Cloud, focused on open-source cloud and AI tools, announced a total prize pool of $4.5 million in bug bounties for researchers that submit exploits for...

Information Technology Security Artificial Intelligence
Wiz Blog | RSS feed ·

How attackers exploit exposed databases for extortion—and the defenses that work.

Financial Services Information Technology
BleepingComputer ·

OpenAI's ChatGPT Pulse, which is a tool that gives you personalised updates based on usage patterns, is coming to the web. [...]

Artificial Intelligence Technology