IM
IronMonkey Threat Research
LIVE
|
Articles 27,086
|
CVEs 348,613
|
APT Groups 800
|
Tools 2,196
|
Updated recently
Today Yesterday All 27,055 articles — Page 602 of 902
The Record from Recorded Future News ·

The FBI on Wednesday said it recorded a “staggering” $16.6 billion in cybercrime losses to businesses and individuals, the highest for both figures since the hub’s establishment in 2000.

Financial Services Defense Industrial Base
Tenable Blog ·

The 2025 Verizon Data Breach Investigations Report (DBIR) reveals that vulnerability exploitation was present in 20% of breaches — a 34% increase year-over-year. To support the report, Tenable...

Information Technology Energy
Cloud Threat Landscape ·

In the past year Microsoft observed AzureChecker(Storm-1977) launching password spray attacks, against cloud tenants in the education sector. The actor used AzureChecker.exe (CLI tool that is...

Cloud Threat Landscape ·

During an investigation, Mandiant identified evidence that a threat actor had discovered cloud access keys stored in plain text on a compromised on-premises network. The threat actor was able to...

Cloud Threat Landscape ·

ARMO’s research team uncovered two cryptojacking campaigns targeting a deliberately exposed Kubernetes honeypot running Apache Druid, leveraging the known CVE-2021-25646 vulnerability for...

CyberScoop ·

Independent testing by SplxAI found GPT-4.1 was three times more likely than its predecessor to bypass security safeguards and allow intentional misuse The post Outside experts pick up the slack...

The Hacker News ·

Cybersecurity researchers have detailed a malware campaign that's targeting Docker environments with a previously undocumented technique to mine cryptocurrency. The activity cluster, per Darktrace...

Information Technology Energy
Hackread – Latest Cybersecurity, Hacking News, Tech, AI & Crypto ·

Fake Alpine Quest app laced with spyware was used to target Russian military Android devices, stealing location data,…

Defense Industrial Base Financial Services
Latest stories for ZDNET in Security ·

Do passcodes really protect you more from warrantless phone searches than biometrics? It's complicated.

Commercial Facilities Information Technology
The Hacker News ·

Cybersecurity researchers have detailed a now-patched vulnerability in Google Cloud Platform (GCP) that could have enabled an attacker to elevate their privileges in the Cloud Composer workflow...

Information Technology Energy
The Record from Recorded Future News ·

Russia-linked phishing attacks targeting NGOs with ties to Ukraine ask victims to join a video call, and result in them gaining access to Microsoft 365 accounts,

BleepingComputer ·

Marks & Spencer (M&S) has disclosed that it is responding to a cyberattack over the past few days that has impacted operations, including its Click and Collect service. [...]

Critical Manufacturing Financial Services
Firewall Daily – The Cyber Express ·

The UK communications regulator Ofcom has banned leasing of "Global Titles," a special phone number type used in mobile network signaling, in a landmark decision to counter growing threats from...

Communications Healthcare and Public Health
Hackread – Latest Cybersecurity, Hacking News, Tech, AI & Crypto ·

An SSL.com vulnerability allowed attackers to issue valid SSL certificates for major domains by exploiting a bug in…

Financial Services Information Technology
Tenable Blog ·

U.S. government agencies are required to bring their Microsoft 365 cloud services into compliance with a recent Binding Operational Directive. Here’s how Tenable can help.OverviewMalicious threat...

Government Facilities Information Technology
BleepingComputer ·

An Active! Mail zero-day remote code execution vulnerability is actively exploited in attacks on large organizations in Japan. [...]

Communications Government Facilities
Blog | Threat Intelligence & Memory Forensics | Volexity ·

KEY TAKEAWAYS Since early March 2025, Volexity has observed multiple Russian threat actors aggressively targeting individuals and organizations with ties to Ukraine and human rights. These recent...

Defense Industrial Base
The Hacker News ·

As SaaS and cloud-native work reshape the enterprise, the web browser has emerged as the new endpoint. However, unlike endpoints, browsers remain mostly unmonitored, despite being responsible for...

Information Technology Commercial Facilities
infosecurity-magazine ·

The tech giant has released its second Secure Future Initiative (SFI) progress report, showcasing its ongoing efforts to improve cybersecurity

Cozy Bear Midnight Blizzard Salt Typhoon Information Technology Transportation Systems
The Hacker News ·

In what has been described as an "extremely sophisticated phishing attack," threat actors have leveraged an uncommon approach that allowed bogus emails to be sent via Google's infrastructure and...

Wiz Blog | RSS feed ·

A hands-on walkthrough of how to use Wiz to find sensitive data and uncover who can access it.

infosecurity-magazine ·

A new malware campaign utilizing NFC-relay techniques has been identified carrying out unauthorized transactions through POS systems and ATMs

Midnight Blizzard Salt Typhoon Financial Services Information Technology
BleepingComputer ·

A hacking group dubbed 'Elusive Comet' targets cryptocurrency users in social engineering attacks that exploit Zoom's remote control feature to trick users into granting them access to their...

Communications Financial Services
BleepingComputer ·

Microsoft has released the optional KB5055612 preview cumulative update for Windows 10 22H2 with two changes, including a fix for a GPU paravirtualization bug in Windows Subsystem for Linux 2 (WSL2). [...]

Communications
Latest stories for ZDNET in Security ·

The Sensitive Content Warnings feature shields you from images in Google Messages that may contain nudity and lets you easily block numbers - but you'll need to enable it.

Commercial Facilities Critical Manufacturing
Latest stories for ZDNET in Security ·

Until Google rolls out a fix, you'll have to be on the lookout for this particularly convincing phishing scam.

Commercial Facilities Information Technology
The Record from Recorded Future News ·

In a statement filed to London’s stock exchange on Tuesday afternoon, the company said it made “some minor, temporary changes to our store operations” as soon as it became aware of the incident.

Salt Typhoon Financial Services Commercial Facilities
Industrial Cyber ·

Cloud Range and Cyviz announced on Tuesday their initiative to enhance cybersecurity training within higher education institutions as... The post Cloud Range, Cyviz join to boost cybersecurity...

Critical Manufacturing Nuclear
infosecurity-magazine ·

Billbug, a China-linked espionage group, has been observed targeting critical sectors in Southeast Asia with new tools

Lotus Blossom Billbug Bronze Elgin Transportation Systems Communications
CyberScoop ·

Infostealers fueled the staying power of identity-based attacks, increasing 84% on a weekly average last year, according to IBM X-Force. The post Attackers stick with effective intrusion points,...

Healthcare and Public Health Commercial Facilities