IM
IronMonkey Threat Research
LIVE
|
Articles 27,087
|
CVEs 348,613
|
APT Groups 800
|
Tools 2,196
|
Updated recently
Today Yesterday All 27,055 articles — Page 829 of 902
WeLiveSecurity ·

You may not always stop your personal information from ending up in the internet’s dark recesses, but you can take steps to protect yourself from criminals looking to exploit it

Financial Services Healthcare and Public Health
maxwelldulin ·

In a previous post, the author broke the firmware encryption that was using Wireless Trusted Module (WSM) on a printer. This time, they target WSM itself. They didn't have a root shell on the...

Communications
maxwelldulin ·

Lexmark is a common printer brand that the author had looked at before. In a recent update, the Firmware encryption process was changed so they decided to take a look at it after being nudged from...

Communications
maxwelldulin ·

Chatbots on websites are becoming more and more popular. They usually come in three flavors: GenAI bot fed customer data to answer questions, simple FAQ on internal and external information and a...

Information Technology
Research & Threat Intel News- Outpost24 Blog ·

Welcome to the Threat Context Monthly blog series where we provide a comprehensive roundup of the most relevant cybersecurity news and threat information from KrakenLabs, Outpost24’s cyber threat...

Earth Baxia Evil Corp
Wiz Blog | RSS feed ·

Wiz extends its cloud-native runtime sensor to secure serverless containers, providing deep visibility, blocking, and hunting capabilities for AWS Fargate and Azure Container Apps.

Information Technology
Threat Intelligence ·

In September 2024, Google Threat Intelligence Group (consisting of Google’s Threat Analysis Group (TAG) and Mandiant) discovered UNC5812, a suspected Russian hybrid espionage and influence...

Defense Industrial Base
WeLiveSecurity ·

As methane emissions come under heightened global scrutiny, learn how a state-of-the-art satellite can pinpoint their sources and deliver the insights needed for targeted mitigation efforts

Communications Energy
WeLiveSecurity ·

ESET researchers discovered a previously undocumented toolset used by Evasive Panda to access and retrieve data from cloud services

Evasive Panda Information Technology Commercial Facilities
bellingcat ·

Scroll down ↓ Drone footage captured on September 4, 2024, shows damage and destruction in the Ukrainian city of Vovchansk. Credit: Handout/Armed Forces of Ukraine/AFP “I don’t have enough fingers...

Communications Critical Manufacturing
The DFIR Report ·

Key Takeaways The DFIR Report Services Reports such as this one are part of our All Intel service and are categorized as Threat Actor Insights. Private Threat Briefs: Over 20 … Read More

Healthcare and Public Health Information Technology
Recorded Future ·

Discover how we use gamified training at Recorded Future. Engaging exercises simulate real-world threats, boosting employee preparedness and teamwork

Cloud Threat Landscape ·

Security researcher Anurag Sen discovered an unprotected Amazon Prime database containing pseudonymized viewing data, accessible from the internet without a password. Named "Sauron," the...

Data and computer security | The Guardian ·

Trump campaign immediately blamed Biden White House and Kamala Harris for Chinese government-linked hackChinese government-linked hackers are believed to have targeted phones used by Donald Trump...

Evil Corp Communications Government Facilities
maxwelldulin ·

Ordinals are a numbering system for all Satoshi's (small unit of a Bitcoin) on the Bitcoin network. They can be referenced in a few different ways, such as the block.satoshi or just a decimal...

Financial Services
maxwelldulin ·

BRC20 tokens are a non-fungible asset on the Bitcoin network. The tokens are embedded into a Satoshi using Ordinal Theory. The ordinals protocol can assign more information on top of a satoshi...

Energy Communications
Maxwell Dulin's Resources ·

The world is full of people who don't take their world and life seriously. As humans, it's hard to optimize for anything besides the pleasures in front of us. This article talks about how...

Healthcare and Public Health
Cisco Talos Blog ·

Can LLM tools actually help defenders in the cybersecurity industry write more effective detection content? Read the full research

Ransomware – Hacker Combat ·

Criminal hackers employ ransomware attacks against their targets by encrypting their data and demanding that a ransom be paid within an allotted timeframe or risk losing it forever. When an... The...

Shadow Brokers Healthcare and Public Health Critical Manufacturing
Cloud Threat Landscape ·

Researchers observed TeamTNT, a threat group known to target cloud environments, in a campaign targeting cloud-native environments by compromising exposed Docker daemons. Using Docker Hub to...

Information Technology
ASEC ·

A critical security vulnerability in Grafana was announced and many Korean servers have been identified as using the vulnerable versions. Grafana is widely known as an open-source platform for...

ASEC ·

ASEC Blog publishes “Android Malware & Security Issue 4st Week of October, 2024” 게시물 Android Malware & Security Issue 4st Week of October, 2024이 ASEC에 처음 등장했습니다.

Cisco Talos Blog ·

Credential theft was the main goal in 25% of incidents last quarter, and new ransomware variants made their appearance - read more about the top trends, TTPs, and security weaknesses that...

Critical Manufacturing Financial Services
WeLiveSecurity ·

Learn how a rather clumsy cybercrime group wielding buggy malicious tools managed to compromise a number of SMBs in various parts of the world

Recorded Future ·

Explore Russia’s strategic information attack (SIA) concept, blending psychological and cyber tactics to target critical infrastructure in large-scale warfare.

Nuclear Energy
Cloud Threat Landscape ·

Researchers identified a zero-day vulnerability, CVE-2024-47575, impacting FortiManager, exploited by the UNC5820 group. This flaw allows unauthorized access, enabling threat actors to exfiltrate...

Threat Intelligence ·

Written by: Foti Castelan, Max Thauer, JP Glab, Gabby Roncone, Tufail Ahmed, Jared Wilson Summary In October 2024, Mandiant collaborated with Fortinet to investigate the mass exploitation of...

ASEC ·

BlueKeep (CVE-2019-0708) is a vulnerability revealed in May 2019, occurring during the Remote Desktop Protocol (RDP) connection process between a client and server. When a client sends a malicious...

ASEC ·

ASEC Blog publishes Ransom & Dark Web Issues Week 4, October 2024 Hacktivist Anonymous Sudan: Indicted by the U.S. Department of Justice IntelBroker Announces New Post on South Korean Government...

Government Facilities Critical Manufacturing
Wiz Blog | RSS feed ·

Wiz extends support to Okta with identity modeling on the Wiz Security Graph, visibility, risk assessment, and real-time threat detection for your Okta environment

Information Technology Energy