IM
IronMonkey Threat Research
LIVE
|
Articles 27,086
|
CVEs 348,613
|
APT Groups 800
|
Tools 2,196
|
Updated recently
Today Yesterday All 27,055 articles — Page 5 of 902
Threat Intelligence ·

Written by: Corné de Jong Introduction Mandiant security assessments frequently identify publicly exposed serverless applications that lack authentication, often as a result of specific business...

Information Technology Threat Intelligence
Wiz Blog | RSS feed ·

Part 3: How the Red Agent bypassed a credit and paywall system by changing a single client-side value from false to true.

Financial Services Information Technology
Tenable Blog ·

SonicWall patched two recently exploited zero-day vulnerabilities in its SMA 1000 Series secure remote access appliances which may have been chained for unauthenticated remote code execution.Key...

Information Technology
The Record from Recorded Future News ·

The Los Angeles Police Department is the latest U.S. municipal agency to rethink its relationship to ALPR company Flock Safety.

Information Technology Government Facilities Privacy News
CERT Polska ·

CERT Polska has received a report about 2 vulnerabilities (CVE-2026-46458 and CVE-2026-46459) found in ICU Scandinavia Boomerang software.

Information Technology CVE vulnerability
Tenable Blog ·

Anthropic’s new AI agent for Slack acts under an admin-configured access bundle rather than each user’s own credentials. Here’s how that model works, what admins should understand and how to...

Information Technology
Schneier on Security ·

Amazing: Researchers from ETH Zurich in Switzerland, however, managed to create a new type of pixel that can simultaneously do both. This hypercharged pixel, called a Fourier pixel, can generate...

Information Technology Communications Uncategorized academic papers
The Hacker News ·

SonicWall has warned of active exploitation of two zero-day vulnerabilities impacting Secure Mobile Access (SMA) 1000 series appliances, one of which could be exploited to achieve arbitrary...

Scattered Spider Information Technology
Unit 42 ·

TuxBot v3 Evolution, an IoT botnet framework built with LLMs. Read our analysis of its cross-compiled binaries, C2 architecture and bugs. The post TuxBot v3: Inside an IoT Botnet Framework With...

Information Technology Malware Threat Research
Securelist ·

Kaspersky GReAT experts dissect the new OkoBot campaign targeting cryptocurrency users. This complex framework employs TookPS, exfiltrates seed phrases, monitors Chromium-based browsers, and...

Kimsuky Cloud Atlas ToddyCat Financial Services Information Technology GReAT research Malware descriptions
SECURITY.COM ·

Four years after Symantec first uncovered Daxin, the most advanced malware we had seen from a China-linked actor, it has been found running inside a Taiwan manufacturing firm, deployed with a...

Critical Manufacturing Information Technology
Tenable Blog ·

When you incorporate data from application security scanners into your exposure management platform, you can assess the threat from formerly isolated code flaws using a broader risk context, which...

Information Technology
Have I Been Pwned latest breaches ·

In July 2026, electronic test and measurement equipment company Fluke was targeted in a ShinyHunters "pay or leak" extortion campaign. The group subsequently published more than 100GB of data...

Have I Been Pwned latest breaches ·

In June 2026, a party claiming to have access to data from Goose Creek Candle Company sent emails to a number of the company's customers, claiming the company had a security vulnerability and...

The Hacker News ·

Microsoft shipped its largest Patch Tuesday on record today, and two of the fixes close holes that attackers are already exploiting. The release covers 622 of Microsoft's own CVEs by its Security...

Scattered Spider Information Technology
@BushidoToken Threat Intel ·

What HappenedOn 9 June 2026, the University of Nottingham was listed as a victim on the ShinyHunters Tor data leak site.The attackers leaked over 40GB of billing and payment records, student...

ALPHV ShinyHunters Government Facilities Information Technology Cybercrime Google
Recorded Future ·

Explore how recent US export controls on frontier AI models like Anthropic's Fable signal a new era of regulatory uncertainty. Learn how security leaders can build resilient AI strategies by...

Information Technology Government Facilities Blog
The Hacker News ·

SAP has rolled out updates to address multiple vulnerabilities as part of its July 2026 security updates, including a critical flaw in SAP NetWeaver Application Server ABAP. The vulnerability in...

The Hacker News ·

Any other browser extension that can run a script on claude.ai can still trigger Claude for Chrome tasks aimed at your Gmail, your latest Google Doc and its comments, and your Calendar. Both this...

www.theregister.com - Articles ·

Remember when last month's 206 CVEs seemed eye-watering? Yeah, those were the days

Information Technology security
The Hacker News ·

Cybersecurity researchers have flagged a previously undocumented Rust-based remote access trojan (RAT) codenamed LabubaRAT that masquerades as NVIDIA software to blend into target environments....

Scattered Spider Information Technology
Cisco Talos Blog ·

Microsoft has released its monthly security update for July 2026, which includes 622 vulnerabilities affecting a range of products, including 57 that Microsoft marked as "critical".Microsoft notes...

Information Technology Patch Tuesday
Alerts and advisories ·

SonicWall security advisory (AV26-699)

Information Technology Critical Manufacturing
Alerts and advisories ·

Microsoft security advisory – July 2026 monthly rollup (AV26-698)

Information Technology
Threats | CyberScoop ·

The company forewarned customers and defenders that a flood of defects would be uncovered by AI. It delivered with a striking exponential increase. The post Microsoft discloses ‘the mother of all’...

Information Technology Cybersecurity Research
Alerts and advisories ·

Adobe security advisory (AV26-697)

Information Technology Commercial Facilities
The Hacker News ·

Cybersecurity researchers have disclosed details of two access control-related flaws impacting the RabbitMQ message broker service that could allow attackers to leak OAuth client secrets, expose...

Scattered Spider Information Technology
Alerts and advisories ·

Ivanti security advisory (AV26-696)

Information Technology Government Facilities
Alerts and advisories ·

Fortinet security advisory (AV26-695)

Information Technology
The Hacker News ·

Cybersecurity researchers have discovered 11 old, Microsoft-signed, Unified Extensible Firmware Interface (UEFI) applications that could be abused to bypass Secure Boot on most systems using the...

Scattered Spider Information Technology