Risk Discovery

DarkReading

[Dark Reading Virtual Event] Know Your Enemy: How cybercriminals and nation-state hackers operate

SEO Poisoning Campaign Tied to Chinese Actor

Iran-Linked Hackers Target Europe With New Malware

Attackers Use Phony GitHub Pages to Deliver Mac Malware

Airport Chaos Shows Human Impact of 3rd-Party Attacks

15 Years of Zero Trust: Why It Matters More Than Ever

Patch Now: Max-Severity Fortra GoAnywhere Bug Allows Command Injection

Capture-the-Flag Competition Leads to Cybersecurity Career

Zero Trust: Strengths and Limitations in the AI Attack Era

'ShadowLeak' ChatGPT Attack Allows Hackers to Invisibly Steal Emails

Ars Technica

Here’s how potent Atomic credential stealer is finding its way onto Macs

Two of the Kremlin’s most active hack groups are collaborating, ESET says

Two UK teens charged in connection to Scattered Spider ransomware attacks

New attack on ChatGPT research agent pilfers secrets from Gmail inboxes

How weak passwords and other failings led to catastrophic breach of Ascension

White House officials reportedly frustrated by Anthropic’s law enforcement AI limits

ChatGPT may soon require ID verification from adults, CEO says

Millions turn to AI chatbots for spiritual guidance and confession

Modder injects AI dialogue into 2002’s Animal Crossing using memory hack

OpenAI and Microsoft sign preliminary deal to revise partnership terms

CyberScoop

Secret Service says it dismantled extensive telecom threat in NYC area

Telecom exec: Salt Typhoon inspiring other hackers to use unconventional techniques

Las Vegas police arrest minor accused of high-profile 2023 casino attacks

Cyber threat information law hurtles toward expiration, with poor prospects for renewal

Why federal IT leaders must act now to deliver NIST’s post-quantum cryptography transition

Researchers raise alarm over maximum-severity defect in GoAnywhere file-transfer service

Trump administration planning expansion of U.S. quantum strategy

DOD official: We need to drop the cybersecurity talent hiring window to 25 days

Agencies increasingly dive into AI for cyber defense, acting federal CISO says

UK arrests two teens accused of heavy involvement in yearslong Scattered Spider attack spree

HITBSecNews

Found on VirusTotal: The world’s first UEFI bootkit for Linux

OpenAI is at war with its own Sora video testers following brief public leak

North Korean hackers posing as IT workers steal over $1B in cyberattack

WhatsApp: NSO Group Operates Pegasus Spyware for Customers

Korea extradites Russian, Vietnamese suspects linked to $16M ransomware scheme

CISA Director Jen Easterly, in Place Since 2021, to Step Down

Man sick of crashes sues Intel for allegedly hiding CPU defects

North Korean hackers target cryptocurrency with malware

Law enforcement operation takes down 22,000 malicious IP addresses worldwide

Youth of today say passwords are old news, passkeys are the future

ZDNet

Best early Amazon Prime Day deals 2025: Our 55+ favorite sales ahead of October

Best early October Prime Day TV deals 2025: All time low prices from Samsung, LG, and more

Inbox swamped? Perplexity's new Email Assistant works for Gmail and Outlook

Forget Dyson: This stick vacuum reliably handled my wet and dry messes (and it's on sale)

Finally, I found an 'Ultra' Android phone with specs and features that truly matter

iPhone battery worse after updating to iOS 26? Here's why, and how I fixed it

Best Amazon Prime Day phone deals 2025: My 15 favorite sales ahead of October

Best early Amazon Prime Day deals under $25 in 2025: My favorite cheap sales ahead of October

This iOS 26 feature makes your screenshots so much more useful - here's how it works

Why I recommend this Samsung QLED TV over its pricier OLED model - and don't regret it

The Hacker News

SolarWinds Releases Hotfix for Critical CVE-2025-26399 Remote Code Execution Flaw

Lean Teams, Higher Stakes: Why CISOs Must Rethink Incident Remediation

ShadowV2 Botnet Exploits Misconfigured AWS Docker Containers for DDoS-for-Hire Service

GitHub Mandates 2FA and Short-Lived Tokens to Strengthen npm Supply Chain Security

BadIIS Malware Spreads via SEO Poisoning — Redirects Traffic, Plants Web Shells

ComicForm and SectorJ149 Hackers Deploy Formbook Malware in Eurasian Cyberattacks

⚡ Weekly Recap: Chrome 0-Day, AI Hacking Tools, DDR5 Bit-Flips, npm Worm & More

How to Gain Control of AI Agents and Non-Human Identities

Microsoft Patches Critical Entra ID Flaw Enabling Global Admin Impersonation Across Tenants

DPRK Hackers Use ClickFix to Deliver BeaverTail Malware in Crypto Job Scams

BleepingComputer

Cloudflare mitigates new record-breaking 22.2 Tbps DDoS attack

CISA says hackers breached federal agency using GeoServer exploit

Police dismantles crypto fraud ring linked to €100 million in losses

5 ways to streamline Identity Governance with this free tool

SolarWinds releases third patch to fix Web Help Desk RCE bug

SonicWall releases SMA100 firmware update to wipe rootkit malware

GitHub tightens npm security with mandatory 2FA, access tokens

NPM package caught using QR Code to fetch cookie-stealing malware

Airport disruptions in Europe caused by a ransomware attack

American Archive of Public Broadcasting fixes bug exposing restricted media

Cybersecurity Dive

Social engineering campaigns highlight the ability to exploit human behavior

AI-powered vulnerability detection will make things worse, not better, former US cyber official warns

Flights across Europe delayed after cyberattack targets third-party vendor

How to build a trustworthy AI governance roadmap aligned with ISO 42001

Preemptive security predicted to constitute about half of IT security spending by 2030

NIST explains how post-quantum cryptography push overlaps with existing security guidance

Evolving AI attacks, rapid model adoption worry cyber defenders

UK arrests 2 more alleged Scattered Spider hackers over London transit system breach

Healthcare firms’ hack-related losses outpace those of other sectors

Microsoft disrupts global phishing campaign that led to widespread credential theft

Threatpost

Student Loan Breach Exposes 2.5M Records

Watering Hole Attacks Push ScanBox Keylogger

Tentacles of ‘0ktapus’ Threat Group Victimize 130 Firms

Ransomware Attacks are on the Rise

Cybercriminals Are Selling Access to Chinese Surveillance Cameras

Twitter Whistleblower Complaint: The TL;DR Version

Firewall Bug Under Active Attack Triggers CISA Warning

Fake Reservation Links Prey on Weary Travelers

iPhone Users Urged to Update to Patch 2 Zero-Days

Google Patches Chrome’s Fifth Zero-Day of the Year

The Register

OnePlus leaves researchers on read over Android bug that exposes texts

SIM city: Feds say 100,000-card farms could have killed cell towers in NYC

Kaspersky: RevengeHotels checks back in with AI-coded malware

OpenSSF warns that open source infrastructure doesn't run on thoughts and prayers

GitHub moves to tighten npm security amid phishing, malware plague

Oracle gets to store US users' TikTok data, says Trump

Workers fear for their jobs as JLR's latest shutdown extended

Suspected Iran-backed attackers targeting European aerospace sector with novel malware

UK chancellor Putin the blame on Russia for cyber chaos, but evidence says otherwise

EV charging biz zaps customers with data leak scare

VentureBeat

TechCrunch

European airports still dealing with disruptions days after ransomware attack

Automaker giant Stellantis says customers’ personal data stolen during breach

EU cyber agency confirms ransomware attack causing airport disruptions

Unit 221B raises $5M to help track and disrupt today’s top hacking groups

Hundreds of flights delayed at Heathrow and other airports after apparent cyberattack

US government charges British teenager accused of at least 120 ‘Scattered Spider’ hacks

Here’s the tech powering ICE’s deportation crackdown

ICE unit signs new $3M contract for phone-hacking tech

Irregular raises $80 million to secure frontier AI models

Jaguar Land Rover to pause production for third week due to cyberattack

Network World Security

Nvidia and OpenAI open $100B, 10 GW data center alliance

2025 global network outage report and internet health check

Telco’s botched firewall upgrade left emergency callers unable to connect

Who are the winners and losers of the Intel-Nvidia deal?

9 Linux certifications to boost your career

Nvidia reportedly acquires Enfabrica CEO and chip technology license

Upscale emerges from stealth with $100 million seed and plans to democratize AI networking

Observability platforms gain AI capabilities

Intel: Latest news and insights

Intel will design CPUs with Nvidia NVLink in return for $5 billion investment

Help Net Security

After Shai-Hulud, GitHub tightens npm publishing security

Progress Software Flowmon ADS 12.5 simplifies threat detection

Obsidian governs AI agent access in SaaS environments

U.S. Secret Service takes down network of devices threatening government officials

Outpost24 launches pen testing packages for mobile apps and APIs

SonicWall adds rootkit removal capabilities to the SMA 100 series

Dragos Platform 3.0 consolidates risk alerts and streamlines industrial cybersecurity

Blackdot Videris Automate uses AI to speed OSINT, risk detection, and decision-making

Cybercriminals are going after law firms’ sensitive client data

Review: Practical Purple Teaming

InfoSecurity Magazine

Iranian Hacking Group Nimbus Manticore Expands European Targeting

Deepfake Attacks Hit Two-Thirds of Businesses

Critical Security Flaws Grow with AI Use, New Report Shows

Attacker Breakout Time Falls to 18 Minutes

Car Giant Stellantis Confims Third-Party Breach

Jaguar Land Rover Extends Production Pause Again

Organizations Must Update Defenses to Scattered Spider Tactics, Experts Urge

Major Cyber Threat Detection Vendors Pull Out of MITRE Evaluations Test

FBI Says Threat Actors Are Spoofing its IC3 Site

Airport Chaos Enters Third Day After Supply Chain Attack

© 2025 RiskDiscovery | Sponsored by: Deception Logic