IM
IronMonkey Threat Research
LIVE
|
Articles 27,088
|
CVEs 348,665
|
APT Groups 800
|
Tools 2,196
|
Updated recently
Today Yesterday All 27,056 articles — Page 453 of 902
Maxwell Dulin's Resources ·

The author of this post was working on a project for the custom blockchain runtime Fuel VM. They created a fuzzing setup with special invariants to try to catch some bugs. The Fuel network team...

Energy Transportation Systems
Maxwell Dulin's Resources ·

Copilot added a Python sandbox running Jupyter Notebook that can execute code. Within CoPilot, we can use %command to execute arbitrary commands in the environment. The author points out that it...

Financial Services
BleepingComputer ·

The North Korean state-sponsored hackers known as Kimsuky has reportedly suffered a data breach after two hackers, who describe themselves as the opposite of Kimsuky's values, stole the group's...

Kimsuky Defense Industrial Base Security
The Record from Recorded Future News ·

A prominent hacking operation known as RomCom and a lesser-known group tracked as Paper Werewolf or Goffee each exploited a zero-day vulnerability in WinRAR software this summer, researchers said.

RomCom Critical Manufacturing Transportation Systems News Technology
Broadcom Software Blogs ·

Part 1 of 2: Identity and Access Management platforms produce oceans of data, but GenAI offers a lifeline

Information Technology Transportation Systems
GitHub Security Lab Archives - The GitHub Blog ·

Learn how the GitHub Secure Open Source Fund helped 71 open source projects significantly improve their security posture through direct funding, expert guidance, and actionable playbooks. The post...

Information Technology Energy Maintainers Open Source
BleepingComputer ·

The Netherlands' National Cyber Security Centre (NCSC) is warning that a critical Citrix NetScaler vulnerability tracked as CVE-2025-6543 was exploited to breach "critical organizations" in the...

Security
CERT Polska ·

TCC Bypass vulnerabilities has been found in GIMP (CVE-2025-8672), Mosh-Pro (CVE-2025-53811), Cursor (CVE-2025-9190), MacVim (CVE-2025-8597), Nozbe (CVE-2025-53813) and Invoice Ninja...

CVE vulnerability
The Record from Recorded Future News ·

Although the U.K.’s High Court of Justice dismissed the foundation’s challenge, it said it would revisit the case if the organization was classified as category 1 by Ofcom — the country’s...

Government Facilities Government News
BleepingComputer ·

Researchers have released a report detailing how a recent WinRAR path traversal vulnerability tracked as CVE-2025-8088 was exploited in zero-day attacks by the Russian 'RomCom' hacking group to...

Tropical Scorpius Defense Industrial Base Security
FortiGuard Labs Threat Research ·

A regionally targeted PowerShell-based campaign used phishing lures, obfuscation, and RAT delivery to infiltrate Israeli organizations. Learn how the attack chain worked—and how Fortinet blocked it.

MuddyWater Healthcare and Public Health Information Technology
BleepingComputer ·

Microsoft has announced the limited public preview of Windows 365 Reserve, a service that provides temporary desktop access to pre-configured cloud PCs for employees whose computers have become...

Information Technology Microsoft
BleepingComputer ·

OpenAI has responded to criticism that it shipped GPT-5 with token limits to minimize cost and maximize profit not with words, but rather with a new 3,000-per-week limit. [...]

Artificial Intelligence Technology
BleepingComputer ·

Microsoft confirmed that it's testing the ability to paste text only (plain format) to OneNote for Windows and Mac. [...]

Microsoft Software
BleepingComputer ·

Elon Musk-owned xAI is testing Grok 4.20, a small update to Grok 4, which already competes with GPT-5 in some benchmarks, such as ARC-AGI 2. [...]

Artificial Intelligence Technology
BleepingComputer ·

Native phishing turns trusted tools into attack delivery systems. Varonis shows how attackers weaponize Microsoft 365 apps, like OneNote & OneDrive, to send convincing internal lures and how to...

Security
BleepingComputer ·

Cybersecurity firm Profero cracked the encryption of the DarkBit ransomware gang's encryptors, allowing them to recover a victim's files for free without paying a ransom. [...]

Water Critical Manufacturing Security
WeLiveSecurity ·

ESET Research discovered a zero-day vulnerability in WinRAR being exploited in the wild in the guise of job application documents; the weaponized archives exploited a path traversal flaw to...

Tropical Scorpius RomCom Storm-0978 Critical Manufacturing Defense Industrial Base ESET research
BleepingComputer ·

The U.S. Department of Justice charged four Ghanaian nationals for their roles in a massive fraud ring linked to the theft of over $100 million in romance scams and business email compromise attacks. [...]

Financial Services Security
BleepingComputer ·

Over 29,000 Exchange servers exposed online remain unpatched against a high-severity vulnerability that can let attackers move laterally in Microsoft cloud environments, potentially leading to...

Government Facilities Energy Security Microsoft
BleepingComputer ·

Connex, one of Connecticut's largest credit unions, warned tens of thousands of members that unknown attackers had stolen their personal and financial information after breaching its systems in...

Scattered Spider ShinyHunters Financial Services Commercial Facilities Security
BleepingComputer ·

Sam Altman overhyped GPT-5 and the results are underwhelming. Some users are upset with GPT-5's new personality, but you can restore GPT-4o if you pay for the Plus plan. [...]

Artificial Intelligence
RSS Feed ·

PLM software from Siemens Xcelerator portfolio has been recognized for the most advanced Generative AI offerings in the market.

Chemical Energy
RSS Feed ·

The aerospace sector continues to invest at a rapid clip, increasing the value of orders by 6% in the first half of 2025.

Defense Industrial Base Chemical
RSS Feed ·

e-con Systems, a global leader in embedded vision solutions, has introduced the ONVIF-compliant 4K HDR GigE Camera - RouteCAM_CU86.

Chemical Energy
RSS Feed ·

Hargrove Controls & Automation has announced a new partnership with ABB, enabling a more sustainable and resource-efficient future.

Chemical Energy
RSS Feed ·

The largest focus will be in the mining sector, a major portion of this region’s industrial landscape.

Chemical Energy
RSS Feed ·

Kistler has developed the KCA 400T analog controller to make even more efficient use of analog sensors in stamping.

Chemical Energy
RSS Feed ·

Trelleborg Sealing Solutions has announced the significant expansion of its Innovation Center in Minnesota, US.

Chemical Energy
RSS Feed ·

Antaira LMP-1204G-SFP-bt 12-port PoE Gigabit Ethernet managed switches are a strategic choice for industrial organizations needing robust, efficient and flexible networking solutions.

Critical Manufacturing Chemical