IM
IronMonkey Threat Research
LIVE
|
Articles 27,087
|
CVEs 348,613
|
APT Groups 800
|
Tools 2,196
|
Updated recently
Today Yesterday All 27,055 articles — Page 757 of 902
BleepingComputer ·

This article delves into the rising tide of MFA failures, the alarming role of generative AI in amplifying these attacks, the growing user discontent weakening our defenses, and the glaring...

Defense Industrial Base Financial Services
Latest stories for ZDNET in Security ·

Bitwarden is one of the best password managers on the market, but are you using it effectively? Here are a few tips to ensure you are.

Commercial Facilities Energy
WeLiveSecurity ·

The story of a signed UEFI application allowing a UEFI Secure Boot bypass

Tenable Blog ·

The Executive Order on Strengthening and Promoting Innovation in the Nation’s Cybersecurity includes guidance on third-party risk management and the need to adopt proven security practices to gain...

Salt Typhoon Government Facilities Information Technology
Hackread – Latest Cybersecurity, Tech, AI, Crypto & Hacking News ·

Cybercriminals are exploiting the California wildfires by launching phishing scams. Learn how hackers are targeting victims with fake domains and deceptive tactics, and how to protect yourself...

Financial Services Transportation Systems
infosecurity-magazine ·

HP Wolf highlighted novel techniques used by attackers to bypass email protections, including embedding malicious code inside images and utilizing GenAI

Financial Services
infosecurity-magazine ·

A new EU action plan will be structured around four pillars: prevention, threat detection and identification, response to cyber-attacks and deterrence

Salt Typhoon Healthcare and Public Health Water
Maxwell Dulin's Resources ·

AI Agents are AI assistants that are capable of managing your digital life, such as posting on official. An AI agent in the cryptocurrency space is just managing a wallet. On Virtual, one of these...

Financial Services
CyberScoop ·

The incident helped the federal government to seize a virtual private server used by the group and more quickly “connect the dots,” Jen Easterly said. The post CISA director says threat hunters...

Volt Typhoon Salt Typhoon Fancy Bear Communications Government Facilities
Maxwell Dulin's Resources ·

Windows supports Unicode for strings, now-a-days. This article discusses the evolution of string encodings on Windows and the requirement for backward compatibility. Originally, Windows used ANSI...

Energy
Security News | TechCrunch ·

Several governments participated in a meeting on the proliferation of commercial spyware at the United Nations Security Council. © 2024 TechCrunch. All rights reserved. For personal use only.

Healthcare and Public Health Financial Services
BleepingComputer ·

A new hacking group has leaked the configuration files, IP addresses, and VPN credentials for over 15,000 FortiGate devices for free on the dark web, exposing a great deal of sensitive technical...

Information Technology
The Record from Recorded Future News ·

The blood donation organization notified regulators that sensitive data was stolen, nearly five months after a ransomware attack hampered its operations.

Healthcare and Public Health Financial Services
The Hacker News ·

Cybersecurity researchers have alerted to a new malvertising campaign that's targeting individuals and businesses advertising via Google Ads by attempting to phish for their credentials via...

Transportation Systems
The Hacker News ·

The North Korea-linked Lazarus Group has been attributed to a new cyber attack campaign dubbed Operation 99 that targeted software developers looking for freelance Web3 and cryptocurrency work to...

Lazarus Group Financial Services Information Technology
CyberScoop ·

John Ratcliffe said he wants to develop cyber offense tools and supports a cyber-focused deterrence strategy. The post CIA nominee tells Senate he, too, wants to go on cyber offense appeared first...

CIA Central Intelligence Agency Salt Typhoon Critical Manufacturing Communications
security – Ars Technica ·

Improperly winding down a Google Apps domain can leave logins accessible.

Information Technology
Maxwell Dulin's Resources ·

This is a continuation of a previous blog post on Solana fuzzing. They found two bugs in the node software via fuzzing and this post is about triaging the bugs. The first bug they found was an...

Government Facilities Transportation Systems
Hackread – Latest Cybersecurity, Tech, AI, Crypto & Hacking News ·

A recent cyberattack, mimicking the tactics of the notorious Black Basta ransomware group, targeted one of SlashNext’s clients.…

Financial Services Communications
Maxwell Dulin's Resources ·

The journey begins with a Discord bot posting a Solana rBPF vulnerability. This CVE was particularly interesting because it was using a BPF and a JIT compiler written in Rust. Since they had...

Transportation Systems Financial Services
The Hacker News ·

Cybersecurity researchers have identified infrastructure links between the North Korean threat actors behind the fraudulent IT worker schemes and a 2016 crowdfunding scam. The new evidence...

Lazarus Group Hermit Nickel Tapestry Financial Services Communications
maxwelldulin ·

XNU kernel and some IOKIT modules have been plagued by race condition issues. Many of these issues have been discussed, including one from Ian Beer. On the surface, these drivers either lack a...

Maxwell Dulin's Resources ·

XNU kernel and some IOKIT modules have been plagued by race condition issues. Many of these issues have been discussed, including one from Ian Beer. On the surface, these drivers either lack a...

maxwelldulin ·

When you log in to a WiFi network, you are automatically native to a captive portal. The browser that opens for the captive portal is not normal Safari—it's Websheet. Naturally, the author had...

Financial Services
Latest stories for ZDNET in Security ·

We tested the best free VPNs from reputable companies that offer solid services. Here's what to know, how to avoid security risks, and what ZDNET's recommendations are.

Financial Services Communications
The Hacker News ·

As many as six security vulnerabilities have been disclosed in the popular Rsync file-synchronizing tool for Unix systems, some of which could be exploited to execute arbitrary code on a client....

Information Technology
CyberScoop ·

The Joint Cyber Defense Collaborative product seeks to build “a unified approach” to combat AI-related cyber threats. The post CISA’s AI cyber collaboration playbook aims to spur...

Salt Typhoon Fancy Bear Communications Critical Manufacturing
The Record from Recorded Future News ·

The European Commission has a new “action plan” to reduce the health sector’s vulnerability to cyberattacks. For funding, it only offers healthcare entities guidance on opportunities available elsewhere.

Healthcare and Public Health Information Technology
Sharp insights on cybersecurity ·

AI security automation requires access to the relevant data at the right time and place. This will be the most important capability that cybersecurity teams will need to have in 2025.

Financial Services
BleepingComputer ·

SAP has fixed two critical vulnerabilities affecting NetWeaver web application server that could be exploited to escalate privileges and access restricted information. [...]

Financial Services Transportation Systems