[
News
|
Newsletters
|
Blogs
|
Reddits
|
Lists
|
Media
|
Jobs
]
HoneyDB
DarkReading
GITEX GLOBAL 2025
Critical Zero-Day Bugs Crack Open CyberArk, HashiCorp Password Vaults
'ReVault' Security Flaws Impact Millions of Dell Laptops
VexTrio Cybercrime Outfit Run by Legit Ad Tech Firms
Google Gemini AI Bot Hijacks Smart Homes, Turns Off the Lights
Attackers Exploit Critical Trend Micro Apex One Zero-Day Flaw
What CMMC 3.0 Really Means for Government Contractors
Phishers Abuse Microsoft 365 to Spoof Internal Users
With Eyes on AI, African Orgs Push Security Awareness
To Raise or Not to Raise: Bootstrapped Founders Share Their Views
Ars Technica
Voice phishers strike again, this time hitting Cisco
AI site Perplexity uses “stealth tactics” to flout no-crawl edicts, Cloudflare says
At $250 million, top AI salaries dwarf those of the Manhattan Project and the Space Race
Microsoft catches Russian hackers targeting foreign embassies
In search of riches, hackers plant 4G-enabled Raspberry Pi in bank network
So far, only one-third of Americans have ever used AI for work
Flaw in Gemini CLI coding tool could allow hackers to run nasty commands
AI in Wyoming may soon use more electricity than state’s human residents
OpenAI’s ChatGPT Agent casually clicks through “I am not a robot” verification test
Pro-Ukrainian hackers take credit for attack that snarls Russian flight travel
CyberScoop
New National Cyber Director Cairncross faces challenges on policy, bureaucracy, threats
SonicWall firewalls hit by active mass exploitation of suspected zero-day
Why identity is the definitive cyber defense for federal agencies
Iranian hackers were more coordinated, aligned during Israel conflict than it seemed
Google addresses six vulnerabilities in August’s Android security update
AI company Perplexity is sneaking to get around blocks on crawlers, Cloudflare alleges
‘Highly evasive’ Vietnamese-speaking hackers stealing data from thousands of victims in 62+ nations
Details emerge on BlackSuit ransomware takedown
CrowdStrike investigated 320 North Korean IT worker cases in the past year
Senate confirms national cyber director pick Sean Cairncross
HITBSecNews
Found on VirusTotal: The world’s first UEFI bootkit for Linux
OpenAI is at war with its own Sora video testers following brief public leak
North Korean hackers posing as IT workers steal over $1B in cyberattack
WhatsApp: NSO Group Operates Pegasus Spyware for Customers
Korea extradites Russian, Vietnamese suspects linked to $16M ransomware scheme
CISA Director Jen Easterly, in Place Since 2021, to Step Down
Man sick of crashes sues Intel for allegedly hiding CPU defects
North Korean hackers target cryptocurrency with malware
Law enforcement operation takes down 22,000 malicious IP addresses worldwide
Youth of today say passwords are old news, passkeys are the future
ZDNet
Gartner's AI Hype Cycle reveals which AI tech is peaking - but will it last?
Disney is winding down the Hulu app - here's what subscribers need to know
The best soundbars of 2025: Expert tested and recommended
My new favorite keychain holder can carry up to 14 keys (and is trackable by phone)
I was skeptical about big-screen laptops, but this Acer model is my new go-to for work
I wore the best smartwatches from Samsung, Apple, and Google - here's how Galaxy Watch 8 wins
This new Wi-Fi 7 router is small enough to fit in your pocket - and priced well
This multi-card reader is one of the best investments I've made for my creative workflow
Mowrator's remote-controlled robot has changed the way I cut grass (and it's on sale)
12 settings you should change on your Apple TV to instantly improve the performance
The Hacker News
Researchers Uncover ECScape Flaw in Amazon ECS Enabling Cross-Task Credential Theft
Fake VPN and Spam Blocker Apps Tied to VexTrio Used in Ad Fraud, Subscription Scams
AI Slashes Workloads for vCISOs by 68% as SMBs Demand More – New Report Reveals
Microsoft Launches Project Ire to Autonomously Classify Malware Using AI Tools
Trend Micro Confirms Active Exploitation of Critical Apex One Flaws in On-Premise Systems
CERT-UA Warns of HTA-Delivered C# Malware Attacks Using Court Summons Lures
AI Is Transforming Cybersecurity Adversarial Testing - Pentera Founder’s Vision
CISA Adds 3 D-Link Vulnerabilities to KEV Catalog Amid Active Exploitation Evidence
ClickFix Malware Campaign Exploits CAPTCHAs to Spread Cross-Platform Infections
Google’s August Patch Fixes Two Qualcomm Vulnerabilities Exploited in the Wild
BleepingComputer
Akira ransomware abuses CPU tuning tool to disable Microsoft Defender
New Ghost Calls tactic abuses Zoom and Microsoft Teams for C2 operations
Hacker extradited to US for stealing $3.3 million from taxpayers
MFA matters… But it isn’t enough on its own
Google suffers data breach in ongoing Salesforce data theft attacks
National Bank of Canada online systems down due to 'technical issue'
ReVault flaws let hackers bypass Windows login on Dell laptops
WhatsApp adds new security feature to protect against scams
Trend Micro warns of Apex One zero-day exploited in attacks
Microsoft pays record $17 million in bounties over the last 12 months
Cybersecurity Dive
US still prioritizing zero-trust migration to limit hacks’ damage
Top US energy companies frequently exposed to critical security flaws
CISA’s relationship with industry needs work to reestablish trust, experts say
Cybersecurity budgets tighten as economic anxiety rises
SonicWall investigating possible zero-day related to firewall attacks
AI is helping hackers automate and customize cyberattacks
Senate confirms Trump’s national cyber director nominee
Ransomware spike linked to potential zero-day flaw in SonicWall devices
Palo Alto Networks investigating ransomware threat related to SharePoint exploitation
DOJ reaches $9.8 million settlement with Illumina over cyber whistleblower claims
Threatpost
Student Loan Breach Exposes 2.5M Records
Watering Hole Attacks Push ScanBox Keylogger
Tentacles of ‘0ktapus’ Threat Group Victimize 130 Firms
Ransomware Attacks are on the Rise
Cybercriminals Are Selling Access to Chinese Surveillance Cameras
Twitter Whistleblower Complaint: The TL;DR Version
Firewall Bug Under Active Attack Triggers CISA Warning
Fake Reservation Links Prey on Weary Travelers
iPhone Users Urged to Update to Patch 2 Zero-Days
Google Patches Chrome’s Fifth Zero-Day of the Year
The Register
Microsoft researchers bullish on AI security agent even though it let 74% of malware slip through
Google says the group behind last year's Snowflake attack slurped data from one of its Salesforce instances
Vibe coding tool Cursor's MCP implementation allows persistent code execution
Patch now: Millions of Dell PCs with Broadcom chips vulnerable to attack
Study finds humans not completely useless at malware detection
Chained bugs in Nvidia's Triton Inference Server lead to full system compromise
Hacker summer camp: What to expect from BSides, Black Hat, and DEF CON
Antivirus vendors fail to spot persistent, nasty, stealthy Linux backdoor
SonicWall investigates 'cyber incidents,' including ransomware targeting suspected 0-day
Python-powered malware snags hundreds of credit cards, 200K passwords, and 4M cookies
VentureBeat
Anthropic ships automated security reviews for Claude Code as AI-generated vulnerabilities surge
Anthropic’s new Claude 4.1 dominates coding tests days before GPT-5 arrives
ChatGPT rockets to 700M weekly users ahead of GPT-5 launch with reasoning superpowers
Shadow AI adds $670K to breach costs while 97% of enterprises skip basic access controls, IBM reports
Nightfall launches ‘Nyx,’ an AI that automates data loss prevention at enterprise scale
How can enterprises keep systems safe as AI agents join human employees? Cyata launches with a new, dedicated solution
AI vs. AI: Prophet Security raises $30M to replace human analysts with autonomous defenders
ChatGPT just got smarter: OpenAI’s Study Mode helps students learn step-by-step
Sparrow raises $35M Series B to automate the employee leave management nightmare
How E2B became essential to 88% of Fortune 100 companies and raised $21 million
TechCrunch
A rival Tea app for men is leaking its users’ personal data and driver’s licenses
Citizen Lab director warns cyber industry about US authoritarian descent
Final call: TechCrunch Disrupt 2025 ticket savings end tonight
Google says hackers stole its customers’ data by breaching its Salesforce database
Hacker used a voice phishing attack to steal Cisco customers’ personal information
SonicWall urges customers to disable SSLVPN amid reports of ransomware attacks
Google says its AI-based bug hunter found 20 security vulnerabilities
Perplexity accused of scraping websites that explicitly blocked AI scraping
North Korean spies posing as remote workers have infiltrated hundreds of companies, says CrowdStrike
A backlog at the Commerce Department is reportedly stalling Nvidia’s H20 chip licenses
Network World Security
WatchGuard updates tabletop firewall series with high-speed networking and AI-powered security
Top network and data center events 2025
In crowded observability market, Gartner calls out AI capabilities, cost optimization, DevOps integration
HPE unveils AI-powered network security and data protection technology
Cisco teams with Hugging Face for AI model anti-malware
2025 global network outage report and internet health check
Riverbed banks on AI-driven network observability
Data neutrality: Safeguarding your AI’s competitive edge
Broadcom expands AI networking portfolio with Jericho4 Ethernet fabric router
Infoblox reinforces DNS defense package
Help Net Security
Absolute Security upgrades platform with AI assistant and real-time risk response tools
7AI enables end-to-end autonomous security operations
Abnormal AI spots risky misconfigs in Microsoft 365 before attackers do
Adobe patches critical Adobe Experience Manager Forms vulnerabilities with public PoC
Open-source server management platform Proxmox VE 9.0 released
SpyCloud adds AI Insights to Investigations, speeds insider and identity threat detection
Trend Micro Apex One flaws exploted in the wild (CVE-2025-54948, CVE-2025-54987)
Descope enhances AI identity security with Agentic Identity Control Plane
MIND launches autonomous DLP platform to put data protection on autopilot
New Black Kite tool identifies which vendors are most vulnerable to targeted threat groups
InfoSecurity Magazine
#BHUSA: Security Researchers Uncover Critical Flaws in Axis CCTV Software
#BHUSA: Researchers Expose Infrastructure Behind Cybercrime Network VexTrio
Clinical Data Stolen in Cyber-Attack on Kidney Dialysis Provider DaVita
#BHUSA: OpenAI Launches Red Teaming Challenge for New Open-Weight LLMs
US Authorities Extradite Nigerian Man Accused of Hacking and Fraud
#BHUSA: Exploring the Top Cyber Threats Facing Agentic AI Systems
#BHUSA: Malware Complexity Jumps 127% in Six Months
Attackers Are Targeting Critical Apex One Vulnerabilities, Trend Micro Warns
Ransomware Actors Expand Tactics Beyond Encryption and Exfiltration
NCSC Updates Cyber Assessment Framework to Build UK CNI Resilience
© 2025 RiskDiscovery | Sponsored by:
Deception Logic