IM
IronMonkey Threat Research
LIVE
|
Articles 27,085
|
CVEs 348,613
|
APT Groups 800
|
Tools 2,196
|
Updated recently
Today Yesterday All 27,053 articles — Page 517 of 902
Industrial Cyber ·

The U.S. Cybersecurity and Infrastructure Security Agency (CISA) has published a cybersecurity advisory warning of ransomware hackers leveraging... The post CISA flags exploitation of SimpleHelp...

Critical Manufacturing Healthcare and Public Health
Industrial Cyber ·

Cyfirma researchers this week profiled MISSION2025, a Chinese state-sponsored threat group tied to APT41. Active since at least... The post MISSION2025 cyber campaign expands global targeting of...

Double Dragon Earth Baku Earth Longzhi Critical Manufacturing Communications
Industrial Cyber ·

Democratic members of the House Homeland Security Committee have asked the U.S. Government Accountability Office (GAO) to review... The post House Democrats call for GAO probe into CISA and NIST...

Critical Manufacturing Healthcare and Public Health
Unit 42 ·

Understand the mechanics of serverless authentication: three simulated attacks across major CSPs offer effective approaches for application developers. The post Serverless Tokens in the Cloud:...

Information Technology
infosecurity-magazine ·

A CISA advisory urged all software vendors and downstream customers to check if they are impacted by unpatched versions of the SimpleHelp RMM tool

Scattered Spider Financial Services Information Technology
Malpedia Library (Latest) ·

2025-06-06 • Seqrite • Sathwik Ram Prakki, Subhajeet Singha • win.vshell Open article on Malpedia

Communications
Malpedia Library (Latest) ·

2025-06-09 • Sentinel LABS • Aleksandar Milenkoski, Tom Hegel • elf.goreshell, elf.nimbo_c2, win.shadowpad Open article on Malpedia

BleepingComputer ·

Microsoft is investigating a known issue that triggers Secure Boot errors and prevents Surface Hub v1 devices from starting up. [...]

infosecurity-magazine ·

Researchers have found a flaw in Microsoft 365 Copilot that allows the exfiltration of sensitive corporate data with a simple email

Information Technology
Malpedia Library (Latest) ·

2025-06-10 • Check Point Research • Check Point Research Open article on Malpedia

Stealth Falcon
Tenable Blog ·

Check out NIST best practices for adopting a zero trust architecture. Plus, learn how OpenAI disrupted various attempts to abuse ChatGPT. In addition, find out what Tenable webinar attendees said...

Information Technology Energy
SOC Prime Blog ·

Linux Syscall Threat Detection in Splunk with Uncoder AI How It Works The detection logic here is built around monitoring use of the mknod syscall, which is rarely used in legitimate workflows but...

Fancy Bear Commercial Facilities Transportation Systems
BleepingComputer ·

Microsoft is investigating an ongoing incident that is causing users to experience errors with some Microsoft 365 authentication features. [...]

SOC Prime Blog ·

How It Works The Sigma rule shown is designed to detect Notepad opening files with names suggesting password storage, which may indicate unauthorized credential access or suspicious behavior on...

Fancy Bear Information Technology
SOC Prime Blog ·

Convert Sigma DNS Rules to Cortex XSIAM with Uncoder AI How It Works Uncoder AI reads a Sigma rule designed to detect DNS queries to malicious infrastructure used by Katz Stealer malware, and...

Fancy Bear Information Technology Transportation Systems
SOC Prime Blog ·

How It Works The showcased feature translates a Linux-based Sigma rule — specifically targeting the sysinfo system call — into Microsoft Sentinel KQL. This system call provides an attacker with...

Fancy Bear Information Technology
BleepingComputer ·

Victoria's Secret has restored all critical systems impacted by a May 24 security incident that forced it to shut down corporate systems and the e-commerce website. [...]

Scattered Spider Commercial Facilities
Have I Been Pwned latest breaches ·

In May 2025, the South American mobility services platform Ualabee had hundreds of thousands of records scraped from an interface on their platform. The data included 472k unique email addresses...

Financial Services
BleepingComputer ·

Cloudflare has confirmed that the massive service outage yesterday was not caused by a security incident and no data has been lost. [...]

Information Technology
Recorded Future ·

Insikt Group exposes GrayAlpha’s evolving infrastructure and infection methods—including PowerNet and MaskBat loaders, fake 7-Zip sites, and the undocumented TAG-124 network—linking the group to...

FIN7 GrayAlpha Commercial Facilities Communications
Automation.com - Industrial Cybersecurity, Networks, and Connectivity ·

Weidmuller Canada’s journey began in 1975, as Weidmuller Terminations Ltd., operating from a modest, warehouse-style office.

Energy Critical Manufacturing
The Hacker News ·

The threat actors behind the VexTrio Viper Traffic Distribution Service (TDS) have been linked to other TDS services like Help TDS and Disposable TDS, indicating that the sophisticated...

Information Technology Government Facilities
Krebs on Security ·

Late last year, security researchers made a startling discovery: Kremlin-backed disinformation campaigns were bypassing moderation on social media platforms by leveraging the same malicious...

Information Technology Communications
Sharp insights on cybersecurity ·

Google has issued a security update for Chrome desktop to address CVE-2025-5419, which has a CVSS score of 8.8. It is a critical zero-day flaw in the V8 JavaScript engine that is actively...

The Record from Recorded Future News ·

The recommendation to the bankruptcy judge overseeing the sale is partially based on messages from 23andMe customers who told him they are worried about their genetic data’s inclusion in the sale.

Healthcare and Public Health
Security Latest ·

Law enforcement has more tools than ever to track your movements and access your communications. Here’s how to protect your privacy if you plan to protest.

Communications Government Facilities
The Hacker News ·

Cybersecurity researchers have discovered a novel attack technique called TokenBreak that can be used to bypass a large language model's (LLM) safety and content moderation guardrails with just a...

Threats | CyberScoop ·

The spyware’s developer, Intellexa, has been under pressure due to sanctions and public disclosure, but Recorded Future uncovered fresh activity. The post Predator spyware activity surfaces in new...

Defense Industrial Base Financial Services
CyberScoop ·

The spyware’s developer, Intellexa, has been under pressure due to sanctions and public disclosure, but Recorded Future uncovered fresh activity. The post Predator spyware activity surfaces in new...

Defense Industrial Base Financial Services
The Hacker News ·

AI is changing everything — from how we code, to how we sell, to how we secure. But while most conversations focus on what AI can do, this one focuses on what AI can break — if you’re not paying...

Scattered Spider Information Technology Energy