IM
IronMonkey Threat Research
LIVE
|
Articles 27,088
|
CVEs 348,689
|
APT Groups 800
|
Tools 2,196
|
Updated recently
Today Yesterday All 27,056 articles — Page 616 of 902
Firewall Daily – The Cyber Express ·

By Salleh Kodri, SE Regional Manager, Cyble Southeast Asia is undergoing rapid digital transformation—bringing a surge in cybercrime that threatens national security, public trust, and regional...

Defense Industrial Base Financial Services
BleepingComputer ·

Microsoft warned IT admins that some Windows Server 2025 domain controllers might become inaccessible after a restart, causing apps and services to fail or remain unreachable. [...]

Cloud Threat Landscape ·

Trend Micro uncovered a previously unseen controller used in BPFDoor campaigns, attributing it to Earth Bluecrow (also known as Red Menshen), a state-sponsored APT group. BPFDoor is a stealthy...

Commercial Facilities
ASEC ·

1) Introduction During the breach investigation process, the AhnLab SEcurity intelligence Center (ASEC) discovered a new operation related to the Kimsuky group and named it Larva-24005.1 The...

Kimsuky Energy
BleepingComputer ·

​Google is fixing a long-standing privacy issue that, for years, enabled websites to determine users' browsing history through the previously visited links. [...]

Industrial Cyber ·

Growing hostile cyber threats and attacks have led to a surge in critical organizations increasingly focusing their resources... The post Addressing role of network segmentation, perimeter...

Critical Manufacturing Financial Services
Security Latest ·

An email sent by the Department of Homeland Security instructs people in the US on a temporary legal status to leave the country. But who the email actually applies to—and who actually received...

Government Facilities Transportation Systems
Have I Been Pwned latest breaches ·

In March 2025, data from Samsung Germany was compromised in a data breach of their logistics provider, Spectos. Allegedly due to credentials being obtained by malware running on a Spectos...

Financial Services Transportation Systems
BleepingComputer ·

OpenAI is working on yet another AI model, reportedly called GPT-4.1, a successor to GPT-4o. [...]

Defense Industrial Base
BleepingComputer ·

Phishing-as-a-service (PhaaS) platform Tycoon2FA, known for bypassing multi-factor authentication on Microsoft 365 and Gmail accounts, has received updates that improve its stealth and evasion...

Defense Industrial Base
Security Latest ·

Plus: The Department of Homeland Security begins surveilling immigrants' social media, President Donald Trump targets former CISA director who refuted his claims of 2020 election fraud, and more.

Volt Typhoon Government Facilities Transportation Systems
BleepingComputer ·

A new class of supply chain attacks named 'slopsquatting' has emerged from the increased use of generative AI tools for coding and the model's tendency to "hallucinate" non-existent package names. [...]

Critical Manufacturing Defense Industrial Base
Latest stories for ZDNET in Security ·

Here are the biggest warning signs that your phone may be compromised and the secret codes that can tell you all about it.

Commercial Facilities Critical Manufacturing
Maxwell Dulin's Resources ·

transmute converts between types in unsafe code by reinterpretting the bytes in Rust and forgets the original reference. It effectively disables Rusts built-in type checker by design. While as...

maxwelldulin ·

Discord created a new end to end encryption protocol they call DAVE. This will be used on DMs, group DMs, voice channels and live streams on Discord in the future. For key exchange, they use the...

Energy
Maxwell Dulin's Resources ·

Sec-Gemini is an experimental AI model focused on cybersecurity. The model has been proven to do very well on cybersecurity-specific topics - better than other models on similar concepts. Pretty neat!

Salt Typhoon
Maxwell Dulin's Resources ·

One fantastic hacker is better than five good ones. We can make all of the checklists that we want and this will always be the case. Most bugs are not just items from a checklist - they are broken...

Food and Agriculture
The Hacker News ·

Fortinet has revealed that threat actors have found a way to maintain read-only access to vulnerable FortiGate devices even after the initial access vector used to breach the devices was patched....

Information Technology Critical Manufacturing
CyberScoop ·

The top Democrat on a cybersecurity subcommittee says the “drastic reorganization” obligates CISA’s acting director to discuss its plans with lawmakers. The post Rep. Swalwell demands Hill...

Healthcare and Public Health Commercial Facilities
Sharp insights on cybersecurity ·

The lack of proper equipment disposal is horrible not only for the environment but also for cybersecurity. Businesses and MSPs can securely dispose of outdated IT assets by following a proper procedure.

Critical Manufacturing Information Technology
Hackread – Latest Cybersecurity, Hacking News, Tech, AI & Crypto ·

As organizations increasingly rely on SaaS applications to run their operations, securing them has become a necessity. Without…

Information Technology Healthcare and Public Health
The Hacker News ·

The threat actor known as Paper Werewolf has been observed exclusively targeting Russian entities with a new implant called PowerModul. The activity, which took place between July and December...

Energy
Hackread – Latest Cybersecurity, Hacking News, Tech, AI & Crypto ·

Russian APT group Storm-2372 employs device code phishing to bypass Multi-Factor Authentication (MFA). Targets include government, technology, finance,…

Financial Services Healthcare and Public Health
Hackread – Latest Cybersecurity, Hacking News, Tech, AI & Crypto ·

TL;DR: A critical deserialization vulnerability (CVSS 9.8 – CVE-2025-27520) in BentoML (v1.3.8–1.4.2) lets attackers execute remote code without…

Financial Services
McAfee Labs | McAfee Blogs ·

In today’s digital age, online payment platforms like PayPal have become essential tools for our everyday transactions. Unfortunately, they’ve also... The post Stolen with a Click: The Booming...

Financial Services Transportation Systems
The Hacker News ·

What are IABs? Initial Access Brokers (IABs) specialize in gaining unauthorized entry into computer systems and networks, then selling that access to other cybercriminals. This division of labor...

Lumen Blog ·

Word on the street is that SASE (Secure Access Service Edge) is here to replace MPLS VPN (multiprotocol label switching virtual private network), like streaming services made cable TV less...

Commercial Facilities Financial Services
BleepingComputer ·

Microsoft is testing a new Defender for Endpoint capability that will block traffic to and from undiscovered endpoints to thwart attackers' lateral network movement attempts. [...]

Defense Industrial Base
infosecurity-magazine ·

The NVD program manager has announced undergoing process improvements to catch up with its growing vulnerability backlog

Nuclear Government Facilities
Broadcom Software Blogs ·

Here’s why you deserve better, stronger multi-factor authentication

Financial Services