IM
IronMonkey Threat Research
LIVE
|
Articles 27,084
|
CVEs 348,609
|
APT Groups 800
|
Tools 2,196
|
Updated recently
Today Yesterday All 27,052 articles — Page 586 of 902
Hackread – Latest Cybersecurity, Hacking News, Tech, AI & Crypto ·

A misconfigured, non-password-protected database belonging to TicketToCash exposed data from 520,000 customers, including PII and partial financial details.…

Tick Financial Services Commercial Facilities
The Hacker News ·

SonicWall has revealed that two now-patched security flaws impacting its SMA100 Secure Mobile Access (SMA) appliances have been exploited in the wild. The vulnerabilities in question are listed...

Information Technology Energy
Latest stories for ZDNET in Security ·

Smarter TV operating systems bring added convenience - but also new privacy concerns, especially from automatic content recognition (ACR), which quietly tracks everything you watch.

Commercial Facilities Critical Manufacturing
SOC Prime Blog ·

Loading legitimate system drivers from illegitimate or suspicious directories is a known tactic for persistence, evasion, or execution by adversaries. One high-value target in this category is...

Information Technology
SOC Prime Blog ·

Loading legitimate system drivers from illegitimate or suspicious directories is a known tactic for persistence, evasion, or execution by adversaries. One high-value target in this category is...

Information Technology
SOC Prime Blog ·

Potentially Unwanted Applications (PUAs) like NimScan are increasingly used by adversaries during the reconnaissance phase to map open ports or identify network assets. Detecting their execution...

Information Technology
Cisco Talos Blog ·

Threat actors are bypassing MFA with adversary-in-the-middle attacks via reverse proxies. Phishing-as-a-Service tools like Evilproxy make these threats harder to detect.

Energy Financial Services
Latest stories for ZDNET in Security ·

Although passkeys remain an evolving ecosystem, we'd be wise to embrace tomorrow's authentication standard today. Here are ZDNET's 10 recommendations for reaching passkey paradise.

Financial Services
infosecurity-magazine ·

The ICO has decided not to fine the British Library for a 2023 ransomware breach

Information Technology Financial Services
SOC Prime Blog ·

When malware like the Kalambur backdoor leverages native tools like curl.exe to route traffic through TOR, defenders need visibility at the process and command-line level. But in tools like...

Information Technology
SOC Prime Blog ·

One of the more advanced tactics in attacker playbooks is tampering with event log configurations to erase traces of compromise. Detecting such attempts via Windows Registry modifications is...

Information Technology
SOC Prime Blog ·

CrushFTP is a popular file transfer application, but in the wrong hands, it can become a stealthy foothold for lateral movement. A process like crushftpservice.exe spawning common Windows binaries...

Information Technology
SOC Prime Blog ·

File transfer services like CrushFTP are critical for business operations—but they can also be leveraged as stealthy launchpads for post-exploitation activity. When a server process such as...

Information Technology
SOC Prime Blog ·

In modern cyberattacks, attackers rely not only on payloads but also on clever evasion techniques. One of the most subtle methods? Whitespace padding in command-line arguments—a tactic often used...

Information Technology
Latest stories for ZDNET in Security ·

According to Bloomberg, the increasingly popular AI framework can vastly increase your chances of getting dangerous answers. What can you do?

Commercial Facilities Financial Services
Latest stories for ZDNET in Security ·

With password best practices continuing to evolve, now's a good time for a refresher. Consider this your annual cybersecurity to-do list.

Commercial Facilities Information Technology
infosecurity-magazine ·

The FBI has released details of 42,000 phishing domains associated with the LabHost operation, in order to help the security community

Information Technology Financial Services
infosecurity-magazine ·

The impact of the advancement in quantum computing on cybersecurity will be a key focus at this year’s Infosecurity Europe event

Financial Services Critical Manufacturing
Industrial Cyber ·

The French foreign ministry has attributed a series of cyberattacks on national interests to APT28, a group linked... The post French Foreign Ministry blames Russian GRU-linked APT28 for...

UAC-0063 Defense Industrial Base Energy
Industrial Cyber ·

Honeywell published its AI in the Energy Industry pulse survey, which reveals that the majority of participating U.S.... The post Honeywell survey finds AI poised to play critical role in energy...

Critical Manufacturing Energy
Industrial Cyber ·

The International Society of Automation (ISA) announced that UL Solutions has received full accreditation from the International Accreditation... The post UL Solutions earns ISASecure...

Critical Manufacturing Energy
Industrial Cyber ·

Exposure management company Tenable announced the appointment of Eric Doerr as Chief Product Officer (CPO). Doerr brings nearly... The post Tenable appoints Eric Doerr as chief product officer to...

Earth Kurma Critical Manufacturing Energy
Industrial Cyber ·

EUCC (EU Common Criteria) and the Cyber Resilience Act There were two inconspicuous developments in February and March... The post Mandatory, externally verified cybersecurity certificates are...

Critical Manufacturing
Security Latest ·

For years, North Korea has been secretly placing young IT workers inside Western companies. With AI, their schemes are now more devious—and effective—than ever.

Financial Services Defense Industrial Base
Have I Been Pwned latest breaches ·

In March 2025, almost 55k records were breached from the Hungarian education office website TehetségKapu. The data was subsequently published to a popular hacking forum and included email...

Financial Services
Malpedia Library (Latest) ·

2025-04-30 • ZAYOTEM • Tamer Burak Telseren • win.oski Open article on Malpedia

Recorded Future ·

Insikt Group reveals two emerging malware strains—TerraStealerV2 and TerraLogger—linked to Golden Chickens, a threat actor behind credential theft and keylogging MaaS platforms. Learn how these...

Venom Spider Golden Chickens Cobalt Group Financial Services
Recorded Future ·

There was much to see at RSAC 2025. Read the recap about a few highlights from the expo floor.

Communications
Automation.com - Industrial Cybersecurity, Networks, and Connectivity ·

​The summit will take place 18-21 June 2025 in Brussels, Belgium. Here’s why you should make it a priority to attend.

Commercial Facilities Energy
Automation.com - Industrial Cybersecurity, Networks, and Connectivity ·

How can we determine whether an enclosure suits the industrial environment in which it is deployed?

Critical Manufacturing Commercial Facilities