IM
IronMonkey Threat Research
LIVE
|
Articles 27,091
|
CVEs 348,840
|
APT Groups 800
|
Tools 2,196
|
Updated recently
Today Yesterday All 27,060 articles — Page 68 of 902
www.theregister.com - Articles ·

AI flaw-finder still under lock and key for now while company figures out guardrails, but made available to more users including governments

Information Technology Government Facilities security
BleepingComputer ·

The FBI is warning about the Kali365 phishing-as-a-service platform (PhaaS) that is used to hijack Microsoft 365 accounts by abusing OAuth device code authentication to steal session tokens and...

ShinyHunters Information Technology Government Facilities Security
BleepingComputer ·

A large-scale campaign is exploiting a critical SQL injection vulnerability (CVE-2026-26980) in Ghost CMS to inject malicious JavaScript code that triggers ClickFix attack flows. [...]

Information Technology Security
Industrial Cyber ·

With increasing levels of connectivity within industrial environments, traditional notion of trusted users, devices, and networks being fundamentally... The post Zero trust in OT moves beyond...

Critical Manufacturing Energy AI Attacks and Vulnerabilities
eCrime.ch Ransomware News | RSS ·

The University of Mississippi Medical Center may have violated federal privacy law following a ransomware attack that crippled its systems in February, according to a 3 On Your Side investigation....

Healthcare and Public Health Government Facilities
Have I Been Pwned latest breaches ·

In April 2026, 7-Eleven was the victim of a "pay or leak" extortion campaign by ShinyHunters, with the data later published that month. The incident exposed 185k unique email addresses, along with...

ShinyHunters Commercial Facilities Food and Agriculture
Cloud Threat Landscape ·

Researchers identified multiple coordinated software supply chain attacks targeting Composer/Packagist packages and upstream GitHub repositories. The activity involved malicious postinstall hooks,...

Information Technology
The Hacker News ·

GitHub has rolled out new controls for npm to improve the security of the software supply chain, giving maintainers the ability to explicitly approve a release prior to the packages becoming...

Information Technology
The Hacker News ·

A new "coordinated" supply chain attack campaign has impacted eight packages on Packagist including malicious code designed to run a Linux binary retrieved from a GitHub Releases URL. "Although...

Information Technology
The Hacker News ·

Anthropic on Friday disclosed that Project Glasswing has helped uncover more than 10,000 high- or critical-severity vulnerabilities across some of the most "systemically" important software across...

Information Technology
BleepingComputer ·

A supply chain attack targeting the Laravel Lang localization packages has exposed developers to a sophisticated credential-stealing malware campaign after attackers abused GitHub version tags to...

Information Technology Security
The Hacker News ·

Cybersecurity researchers have flagged a fresh software supply chain attack campaign that has targeted multiple PHP packages belonging to Laravel-Lang to deliver a comprehensive...

Information Technology
@BushidoToken Threat Intel ·

What Happened:On 11 May 2026, the UK Information Commissioner’s Office (ICO) fined South Staffordshire Water £963,900 after the Cl0p ransomware group lurked completely undetected in its network...

ALPHV Government Facilities Water
The Hacker News ·

A maximum-severity security vulnerability impacting LiteSpeed User-End cPanel Plugin has come under active exploitation in the wild. The flaw, tracked as CVE-2026-48172 (CVSS score: 10.0), relates...

Information Technology
www.theregister.com - Articles ·

Or is it just life today, with AI constantly digging through code repositories in search of security holes?

Information Technology security
www.theregister.com - Articles ·

Dirty Frag, Copy Fail, and Fragesia show the new reality

Information Technology security
The Hacker News ·

The U.S. Cybersecurity and Infrastructure Security Agency (CISA) has added a recently patched critical security flaw impacting Drupal Core to its Known Exploited Vulnerabilities (KEV) catalog,...

Information Technology Government Facilities
Security Latest ·

Plus: Google publishes a live exploit for an unpatched flaw, the feds arrest two men accused of creating thousands of nonconsensual deepfake nudes, and more.

Madi Scattered Spider Government Facilities Information Technology Security Security / Cyberattacks and Hacks
BleepingComputer ·

Italian authorities have dismantled a piracy ecosystem centered around the CINEMAGOAL app that provided access to various streaming platforms, including Netflix, Disney+, and Spotify. [...]

Financial Services Information Technology Legal
www.theregister.com - Articles ·

Hey, Gemini, how much can we earn from one pump-and-dump cycle?

Financial Services Information Technology cyber-crime
The Hacker News ·

Authorities in Europe and North America have announced the dismantling of a criminal virtual private network (VPN) service used by criminal actors to obscure the origins of ransomware attacks,...

Information Technology Communications
The Hacker News ·

The Belarus-aligned threat actor known as Ghostwriter (aka UAC-0057 and UNC1151Ukraine's National Security and Defense Council) has been observed using lures related to Prometheus, a Ukrainian...

Government Facilities Information Technology
Schneier on Security ·

The South Pacific Regional Fisheries Management Organization (SPRFMO) needs to regulate squid fishing in the South Pacific. As usual, you can also use this squid post to talk about the security...

Food and Agriculture Government Facilities Uncategorized squid
www.theregister.com - Articles ·

Will Jason Statham save us?

Information Technology Critical Manufacturing security
Threats | CyberScoop ·

Kali365, which was first observed in April, abuses legitimate Microsoft device authorization pages to grant persistent access to cybercriminal-controlled applications. The post FBI warns about...

Information Technology Cybercrime Cybersecurity
The Record from Recorded Future News ·

The bellwether lawsuit was the first of at least 1,200 to be brought by a school district against Meta, Snap, YouTube and TikTok for similar alleged harms. The other cases have not yet been tried.

Government Facilities Information Technology News Technology
LevelBlue SpiderLabs Blog ·

Since April 2026, LevelBlue SpiderLabs’ Cyber Threat Intelligence team has tracked a series of public zero-day disclosures targeting Microsoft Windows, attributed to an anonymous actor operating...

Information Technology Government Facilities Emerging Threats Vulnerabilities
The Hacker News ·

Cybersecurity researchers have disclosed details of a new automated campaign called Megalodon that has pushed 5,718 malicious commits to 5,561 GitHub repositories within a six-hour window. "Using...

Information Technology
The Hacker News ·

1 Introduction This article provides a technical analysis of how many Windows kernel mode drivers can be interacted with from user mode without the hardware they were developed for. This work was...

Information Technology
Alerts and advisories ·

F5 security advisory (AV26-501)

Information Technology Communications