IM
IronMonkey Threat Research
LIVE
|
Articles 27,087
|
CVEs 348,613
|
APT Groups 800
|
Tools 2,196
|
Updated recently
Today Yesterday All 27,055 articles — Page 833 of 902
GreyNoise Labs ·

On June 5, 2024, SolarWinds released an advisory regarding a path-traversal vulnerability in their “secure” file-transfer product, Serv-U. I wrote about it here back in mid-June when it was fairly...

Information Technology solarwinds serv-u
Cloud Threat Landscape ·

On 2024-09-30, an incident was reported, involving an unknown actor, gaining initial access via 0-day vulnerability, targeting ScienceLogic SL1 to achieve Data exfiltration.

Wiz Blog | RSS feed ·

Detect and mitigate CVE-2024-47076, CVE-2024-47175, CVE-2024-47176, and CVE-2024-47177 vulnerabilities impacting CUPS and IPP packages.

Information Technology
Data and computer security | The Guardian ·

By focusing on its strengths and pooling information, the west can disrupt Russia’s war machine – but there’s no time to loseRussia is a “mafia state” trying to expand into a “mafia empire”, the...

Defense Industrial Base Food and Agriculture
WeLiveSecurity ·

ESET research examines the group's malicious wares as used to spy on targets in Ukraine in the past two years

Cloud Threat Landscape ·

Elastic Security Labs uncovered a Linux malware campaign that began in March 2024, targeting vulnerable servers via an Apache2 web server exploit. The attackers gained access and deployed a...

Financial Services
Maxwell Dulin's Resources ·

The Common Unix Printing System (CUPS) is installed on most Linux distros by default. When setting up a new laptop, the author of this post found that port 631 was open on 0.0.0.0 that was...

Critical Manufacturing Information Technology
Maxwell Dulin's Resources ·

In Cryptography a nonce (number used only once) is an important part of any encryption or signature algorithm. It's a big deal to not reuse nonces in cryptography but they are allowed to be public...

Communications Defense Industrial Base
Maxwell Dulin's Resources ·

Fuel Network is an Ethereum L2 with a custom language, bridge and VM. The contest had a reward pool of $1M. Some big-time vulnerabilities were found in it, which are explained in the article. In...

Energy Healthcare and Public Health
maxwelldulin ·

BananaGun is a telegram trading bot for Ethereum and Solana. From reading the documentation, the bot can be configured by the user to perform various actions automatically or directly from the...

Commercial Facilities
Wiz Blog | RSS feed ·

Critical severity vulnerability CVE-2024-0132 affecting NVIDIA Container Toolkit and GPU Operator presents high risk to AI workloads and environments.

Information Technology Critical Manufacturing
WeLiveSecurity ·

ESET Research has conducted a comprehensive technical analysis of Gamaredon’s toolset used to conduct its cyberespionage activities focused in Ukraine

Defense Industrial Base Communications
Kaspersky ICS CERT ·

In the second quarter of 2024, the percentage of ICS computers on which malicious objects were blocked decreased by 0.9 pp from the previous quarter to 23.5%. Compared to the second quarter of...

Critical Manufacturing Publications
Recorded Future ·

Insikt Group’s analysis of Rhadamanthys Stealer v0.7.0 reveals its growing capabilities, including AI-powered seed phrase extraction and MSI installer evasion tactics.

Cloud Threat Landscape ·

Storm-0501 has been observed conducting multi-staged attacks targeting hybrid cloud environments across various U.S. sectors, including government and manufacturing. These attacks involve lateral...

Critical Manufacturing
Cloud Threat Landscape ·

Microsoft sheds light on the activities of Storm-0501, a threat actor known for deploying ransomware attacks in hybrid cloud environments. The group has expanded its operations to target both...

maxwelldulin ·

Help Scout is a shared inbox, help center and live chat software to manage customer communications. Among other things, emails can be sent to customers from external email addresses proxied...

Wiz Blog | RSS feed ·

Enhance your security with Wiz’s new hybrid File Integrity Monitoring (FIM) solution, combining agentless and runtime capabilities for comprehensive file monitoring.

Healthcare and Public Health
Wiz Blog | RSS feed ·

Gain unified visibility into Snowflake security posture and threats with the same workflows as the rest of your cloud.

Information Technology Chemical
Fox-IT International blog ·

Authors: Boudewijn Meijer && Rick Veldhoven Introduction As defensive security products improve, attackers must refine their craft. Gone are the days of executing malicious binaries from disk,...

Commercial Facilities Information Technology Blog
Fox-IT International blog ·

Authors: Boudewijn Meijer && Rick Veldhoven Introduction As defensive security products improve, attackers must refine their craft. Gone are the days of executing malicious binaries from disk,...

Information Technology Blog
WeLiveSecurity ·

Keep your cool, arm yourself with the right knowledge, and other tips for staying unshaken by fraudsters’ scare tactics

Financial Services
WeLiveSecurity ·

Here’s what parents should know about Snapchat and why you should take some time to ensure your children can stay safe when using the app

Recorded Future ·

Explore the rise of political deepfakes targeting public figures in elections, with data on emerging tactics and their impact on global trust and reputations.

Wiz Blog | RSS feed ·

Strategies for tracking and defending against malicious activity and threats in the cloud using atomic indicators of compromise (IOCs).

Information Technology Financial Services
Infostealers Archives | InfoStealers ·

Sextortion schemes are about to take a much darker turn. With the rise of Infostealer malware, the game is changing. Hackers will no longer rely on fake threats or generic scare tactics like...

Financial Services Transportation Systems
Recorded Future ·

Learn how DORA enhances operational resilience for financial institutions in the EU, focusing on ICT risk management, third-party oversight, and more.

Financial Services Food and Agriculture
Cloud Threat Landscape ·

Datadog Security Research has uncovered a sophisticated cryptojacking campaign targeting microservice technologies, specifically Docker and Kubernetes. The threat actors exploit exposed Docker...

Financial Services
@BushidoToken Threat Intel ·

Introduction Based on feedback I have received from fellow CTI researchers, incident responders, and managed detection and response teams around my Ransomware Tool Matrix project, I decided to...

Cozy Bear Fancy Bear Financial Services Energy
@BushidoToken Threat Intel ·

Introduction Russian state-sponsored threat groups, such as Fancy Bear (APT28), Cozy Bear (APT29), Turla, and Sandworm, among others, are well-known for complex cyber-espionage operations,...

Sandworm Cozy Bear Fancy Bear Defense Industrial Base Communications