IM
IronMonkey Threat Research
LIVE
|
Articles 27,086
|
CVEs 348,613
|
APT Groups 800
|
Tools 2,196
|
Updated recently
Today Yesterday All 27,055 articles — Page 840 of 902
maxwelldulin ·

The fee grant module in the Cosmos SDK is used for setting up a different account to pass for gas on your behalf. After an allowlisted amount was set for a given user, they were given a specific...

Orange Cyberdefense ·

While doing an internal assessment, I was able to compromise multiple computers and servers but wasn’t able to dump the LSA secrets because of a particular EDR being installed and pretty...

Wiz Blog | RSS feed ·

Wiz was named the leader in two Summer 2024 Grid Reports, based on independent customer reviews.

Information Technology Energy
Wiz Blog | RSS feed ·

Did you know that 40% of all Wiz customers are now in the Zero Critical Club? Here’s how three companies joined their ranks by eliminating critical issues in their cloud environments.

Energy Financial Services
maxwelldulin ·

Signals in Linux are a mechanism for telling a process to do something. It's a common mechanism for inter-process communication (IPC) put simply. Notably, it's possible to have the code pause at...

Commercial Facilities Energy
Wiz Blog | RSS feed ·

Detect and mitigate CVE-2024-6387, a remote code execution vulnerability in OpenSSH. Organizations are advised to patch urgently.

Healthcare and Public Health
Virus reviews ·

July 1, 2024 According to detection statistics collected by the Dr.Web for Android anti-virus, in the second quarter of 2024, Android.HiddenAds adware-displaying trojans were most commonly...

Energy Commercial Facilities
Virus reviews ·

July 1, 2024 According to the detection statistics collected by the Dr.Web anti-virus, in the second quarter of 2024, the most common threats were unwanted adware programs and adware trojans, and...

Energy Financial Services
nao_sec ·

Introduction A few days ago, we came across a peculiar file. It looked like some kind of builder, and a quick glance at the settings piqued our interest. It appeared to be a ShadowPad builder,...

Space Pirates Tick Winnti Group Critical Manufacturing Energy
Cloud Threat Landscape ·

Water Sigbin exploits CVE-2017-3506 to gain initial access, deploying a PowerShell script on the compromised machine. This script decodes and executes the first stage payload, named...

Water Sigbin Financial Services
McAfee Labs | McAfee Blogs ·

It’s been almost two years since OpenAI launched ChatGPT, driving increased mainstream awareness of and access to Generative AI tools.... The post Quality Over Quantity: the Counter-Intuitive...

Financial Services Commercial Facilities
FalconForce - Medium ·

FalconFriday — Detecting MMC abuse using “GrimResource” with MDE — 0xFF24Last week, Elastic Security Labs released a blog post detailing the “GrimResource” technique used by both red teams and...

falconfriday grimresource
Wiz Blog | RSS feed ·

Microsoft has honored Wiz as Commercial Marketplace 2024 Partner of the Year for excellence in go-to-market and joint-selling opportunities.

Information Technology Chemical
Research & Threat Intel News- Outpost24 Blog ·

While reviewing common TTPs in malware campaigns used last year Outpost24’s Cyber Threat Intelligence team, KrakenLabs, came across several reports and articles describing a novel infection...

Financial Services
Threat Analysis Group (TAG) ·

Today we are sharing updated insights about DRAGONBRIDGE, the most prolific IO actor Google’s Threat Analysis Group (TAG) tracks.

Communications
GreyNoise Labs ·

Recently Sift caught an interesting payload. As it turns out, the exploit was CVE-2024-0769, which is now tagged here: D-Link DIR-859 Information Disclosure Attempt . This vulnerability is a path...

Transportation Systems Information Technology vulnerabilities cybersecurity
Cloud Threat Landscape ·

A Chinese company named Funnull acquired the Polyfill domain and GitHub repo, and inserted malware into polyfill.js that redirected users to gambling websites. Further pivoting revealed that...

Critical Manufacturing
Cloud Threat Landscape ·

Rabbit AI's codebase included several hardcoded API keys for ElevenLabs, Azure, Yelp, Google Maps, and SendGrid. According to the researchers who discovered this, this access would have allowed an...

Wiz Blog | RSS feed ·

Wiz Research discovered CVE-2024-37032, an easy-to-exploit Remote Code Execution vulnerability in the open-source AI Infrastructure project Ollama.

Cloud Threat Landscape ·

Between November 2023 and April 2024, researchers observed RedJuliett, a likely Chinese state-sponsored cyber-espionage group, targeting entities primarily in Taiwan but also across Asia, Africa,...

Maxwell Dulin's Resources ·

The author first links a thread about a weird bug pattern in AMMs. A simple lending protocol will have fees distributed prorata. These vaults have the underlying asset in it and then shares of the...

Information Technology
maxwelldulin ·

Currently, analyzing transactions for EVM chains is super easy. There are ways to fork the chain and run it locally, you can step through step by step in a debugger and there are great graphing...

Financial Services Energy
Maxwell Dulin's Resources ·

MailCleaner is an email filtering service. An email address has two parts: the local and the domain, which are separated by an @ symbol. The domain part typically contains letters, numbers,...

Maxwell Dulin's Resources ·

Within portions of the BSD kernel, the mbuf object is used in networking. It consists of a header and data, which are both fixed size. _MSIZE is used for the total message of the buffer and MLEN...

Maxwell Dulin's Resources ·

The XRP blockchain have a feature called partial payment. This allows a payment to deliver part of what the amount fields says. Why? I'm guessing this is a feature to break up large transfers over...

Financial Services
Maxwell Dulin's Resources ·

EOS is a blockchain with smart contract capabilities that is fairly unique compared to Ethereum in some regards. EOS transactions have 5 different states: Executed: Transaction succeeded with no...

Maxwell Dulin's Resources ·

In Bitcoin, there is a concept known as replace by fee (RBF) to allow the use of other transactions to replace unconfirmed ones. There are many ways to go about doing this type of scheme. Fee...

Financial Services
Maxwell Dulin's Resources ·

How does a crypto exchange know when you sent it funds? Well, there is an address associated with the exchange. In particular, this is unique per user. A transfer is made to this address, which...

Defense Industrial Base Energy
Cloud Threat Landscape ·

On 2024-06-21, a campaign was reported, involving Boolka, gaining initial access via Web vulnerability, while using SQL injection, to achieve Resource hijacking.

Wiz Blog | RSS feed ·

The deployment of GenAI, LLMs, and chat interfaces expands potential attack surfaces and poses increased security threats.

Financial Services Healthcare and Public Health