IM
IronMonkey Threat Research
LIVE
|
Articles 26,715
|
CVEs 345,383
|
APT Groups 800
|
Tools 2,196
|
Updated recently
Today Yesterday All 30 articles on Jul 08, 2026
The Hacker News ·

AI coding assistants have a habit of making things up. Ask one to fetch a popular tool, and it will sometimes hand back a real-sounding name for a project that does not exist. New research, which...

The Hacker News ·

Ubiquiti has shipped updates to address multiple critical security flaws impacting UniFi Connect, UniFi Talk, UniFi Access, UniFi Protect, and UniFi OS that could result in privilege escalation...

Mustang Panda Information Technology
The Hacker News ·

A recent EvilTokens campaign targeting businesses across the US and Europe is exposing a new email security blind spot. This “ghost phishing” technique keeps the malicious page hidden until it...

Mustang Panda Information Technology
The Hacker News ·

A new banking fraudulent operation is targeting customers of Mexican banks, fintech, payment processors, and cryptocurrency exchanges using ClickFix lures. The activity cluster, tracked by Elastic...

Mustang Panda Financial Services Information Technology
The Hacker News ·

New research shows that a signed Git commit's hash is not the one-of-a-kind name that much of the software world assumes it to be. Given any signed commit, someone without the signing key can mint...

Mustang Panda Information Technology
The Hacker News ·

For years, account takeover (ATO) followed a predictable script. Attackers bought stolen credentials in bulk, ran them through automated tools, and waited for matches. Credential stuffing was...

Mustang Panda Financial Services Information Technology
The Hacker News ·

An AI coding assistant that refuses to answer a dangerous request in its chat box can answer it anyway if the same request is broken into small, ordinary-looking steps inside a code editor. That...

Mustang Panda Information Technology
The Citizen Lab ·

Senior research fellow Jon Penney and co-author Bruce Schneier argue that widely deploying AI surveillance could be corrosive to democracy. The post AI Surveillance Is Being Supercharged–And It...

www.theregister.com - Articles ·

'GhostApproval' problem highlights human-in-the-loop fails

Information Technology security
Alerts and advisories ·

Tanium security advisory (AV26-673)

Critical Manufacturing
www.theregister.com - Articles ·

National vulnerability database claims monitoring mechanism can forward Chinese users' data to remote servers

Information Technology security
Alerts and advisories ·

n8n security advisory (AV26-672)

Information Technology
Alerts and advisories ·

Ubiquiti security advisory (AV26-671)

Critical Manufacturing Information Technology
Articles – Threat Beat ·

In the brief history of AI security, the prompt injection has quickly become the top threat. Large language models are inherently unable to distinguish between legitimate instructions provided by...

Information Technology News
Articles – Threat Beat ·

Fewer than 15 of Britain’s 350 largest listed companies signed up to the government’s flagship voluntary cybersecurity scheme at its launch on Tuesday, eight months after ministers wrote...

Information Technology Government Facilities News
Articles – Threat Beat ·

When mounted to a vehicle, the U.S. Army’s Volcano mine dispenser can blanket roughly 32 acres with up to 960 mines. Now, the service is testing a system that can do the same thing without a...

Defense Industrial Base Government Facilities News
The Hacker News ·

A Chinese threat actor tracked as UAT-7810 is actively refining its bespoke malware to expand its Operational Relay Box (ORB) network by breaking into internet-facing networking devices. According...

Mustang Panda Information Technology Communications
Blue Team Archives - Black Hills Information Security, Inc. ·

We're all petrified about missing a critical event or misclassifying an alert, but when we're talking about incident response (IR), there are often hundreds if not thousands of alerts to parse...

Information Technology Active SOC Blue Team
Wiz Blog | RSS feed ·

Uncovering a category-level blind spot in modern AI coding assistants, and why the Human-in-the-Loop safety model fails against this classic threat

Information Technology
Alerts and advisories ·

Langflow security advisory (AV26-670)

Information Technology
Wiz Blog | RSS feed ·

Protect the modern attack surface with new auto-reconnaissance capabilities, deep internal context, and the Red Agent to find any risk, anywhere.

Information Technology
The Hacker News ·

Researchers at Nebula Security have disclosed GhostLock (CVE-2026-43499), a 15-year-old Linux kernel flaw that lets any logged-in user take full root control of a machine that has not been...

Mustang Panda Information Technology
The Hacker News ·

The U.S. Cybersecurity and Infrastructure Security Agency (CISA) on Tuesday added four security flaws to its Known Exploited Vulnerabilities (KEV) catalog, citing evidence of active exploitation....

Mustang Panda Information Technology Government Facilities
Schneier on Security ·

Last week, national security agencies from the Five Eyes—that’s the rich, English-language-speaking countries club—jointly released a statement warning of the increasing cyber risks of AI models:...

Information Technology Government Facilities Uncategorized AI
Security Latest ·

Scammers are hijacking government websites to upload ads for “leaked” OnlyFans content. Thousands of copyright complaints from adult creators are helping people avoid malicious links.

Volt Typhoon Government Facilities Security Security / Cyberattacks and Hacks
Security Latest ·

Burst water mains. Evacuated hospitals. In a closed-door simulation, insurers played out their response to a mass disruption by China’s Volt Typhoon hackers—and found a nightmare scenario.

Volt Typhoon Government Facilities The Big Story Security / Cyberattacks and Hacks
Articles – Threat Beat ·

Artificial intelligence is increasingly integrated into everyday life, driving everything from social media algorithms and streaming recommendations to personalized smartphone assistants. While...

Healthcare and Public Health Government Facilities Insight
EclecticIQ Blog ·

SOC and CTI teams spend a significant part of their day maintaining context that should already be there. The assets they monitor, the technologies they protect, the threat actors they track, this...

Information Technology Government Facilities Threat Intelligence Product
@BushidoToken Threat Intel ·

What HappenedOfficers from the City of London Police’s Dedicated Card and Payment Crime Unit (DCPCU) secured the conviction of a man who used an SMS Blaster device to send fraudulent text messages...

ALPHV Information Technology Communications City of London Police Cybercrime
Recorded Future ·

The real AI threat isn't frontier models. It's cheap local models getting easier to run. Here's why CISOs should build defensive agents now, before attackers scale.

Financial Services Government Facilities Blog