Risk Discovery

DarkReading

[Dark Reading Virtual Event] Know Your Enemy: How cybercriminals and nation-state hackers operate

Scattered Lapsus$ Hunters Returns With Salesforce Leak Site

Dutch Authorities Arrest Two Teens for Alleged Pro-Russian Espionage

Jaguar Land Rover Shows Cyberattacks Mean (Bad) Business

BCI: The Stuff of Nightmares or Dreams?

Microsoft's Voice Clone Becomes Scary & Unsalvageable

UAT-8099 Hijacks Reputable Sites for SEO Fraud & Theft

Despite More CVEs, Cyber Insurers Aren't Altering Policies

For One NFL Team, Tackling Cyber Threats Is Basic Defense

Red Hat Investigates Widespread Breach of Private GitLab Repositories

Ars Technica

ICE wants to build a 24/7 social media surveillance team

Ars Live: Is the AI bubble about to pop? A live chat with Ed Zitron.

Why iRobot’s founder won’t go within 10 feet of today’s walking robots

That annoying SMS phish you just got may have come from a box like this

OpenAI’s Sora 2 lets users insert themselves into AI videos with sound

Intel and AMD trusted enclaves, a foundation for network security, fall to physical attacks

DeepSeek tests “sparse attention” to slash AI processing costs

California’s newly signed AI law just gave Big Tech exactly what it wanted

Anthropic says its new AI model “maintained focus” for 30 hours on multistep tasks

Can AI detect hedgehogs from space? Maybe if you find brambles first.

CyberScoop

Federal judiciary touts cybersecurity work in wake of latest major breach

Researchers say Israeli government likely behind AI-generated disinfo campaign in Iran

Red Hat confirms breach of GitLab instance, which stored company’s consulting data

Here is the email Clop attackers sent to Oracle customers

Android spyware disguised as legitimate messaging apps targets UAE victims, researchers reveal

North Korea IT worker scheme swells beyond US companies

Oracle customers being bombarded with emails claiming widespread data theft

GOP senator confirms pending White House quantum push, touts legislative alternatives

Palo Alto Networks spots new China espionage group showcasing advanced skills

DOJ, Georgia Tech affiliate company settle over alleged failure to meet DOD contract cyber requirements

HITBSecNews

Found on VirusTotal: The world’s first UEFI bootkit for Linux

OpenAI is at war with its own Sora video testers following brief public leak

North Korean hackers posing as IT workers steal over $1B in cyberattack

WhatsApp: NSO Group Operates Pegasus Spyware for Customers

Korea extradites Russian, Vietnamese suspects linked to $16M ransomware scheme

CISA Director Jen Easterly, in Place Since 2021, to Step Down

Man sick of crashes sues Intel for allegedly hiding CPU defects

North Korean hackers target cryptocurrency with malware

Law enforcement operation takes down 22,000 malicious IP addresses worldwide

Youth of today say passwords are old news, passkeys are the future

ZDNet

Best early October Prime Day Anker deals 2025: Save on power banks, chargers, and more

Best early October Prime Day 2025 PC gaming deals: Save big on laptops and accessories

Best early October Prime Day TV deals 2025: All-time-low prices from Samsung, LG, and more

Best early Amazon Prime Day deals 2025: Our 85+ favorite sales this October

Best early Amazon Prime Day EcoFlow deals 2025: My 7 favorites sales this October

Best early Amazon Prime Day Samsung deals 2025: My 20+ favorites sales in October

Best Walmart deals to compete with Prime Day 2025: All-time-low prices from Microsoft, Samsung, and more

Best early Amazon Prime Day deals under $25 in 2025: My favorite cheap sales this October

Best October Prime Day deals under $100: My 20+ favorite early sales

Get the Eero Outdoor 7 router for 20% off

The Hacker News

CometJacking: One Click Can Turn Perplexity’s Comet AI Browser Into a Data Thief

Scanning Activity on Palo Alto Networks Portals Jump 500% in One Day

Detour Dog Caught Running DNS-Powered Malware Factory for Strela Stealer

Rhadamanthys Stealer Evolves: Adds Device Fingerprinting, PNG Steganography Payloads

Researchers Warn of Self-Spreading WhatsApp Malware Named SORVEPOTEL

Product Walkthrough: How Passwork 7 Addresses Complexity of Enterprise Security

New "Cavalry Werewolf" Attack Hits Russian Agencies with FoalShell and StallionRAT

CISA Flags Meteobridge CVE-2025-4008 Flaw as Actively Exploited in the Wild

Confucius Hackers Hit Pakistan With New WooperStealer and Anondoor Malware

Alert: Malicious PyPI Package soopsocks Infects 2,653 Systems Before Takedown

BleepingComputer

Oracle patches EBS zero-day exploited in Clop data theft attacks

Hackers exploited Zimbra flaw as zero-day using iCalendar files

ParkMobile pays... $1 each for 2021 data breach that hit 22 million

Leaked Apple iPad Pro M5 benchmark shows massive improvements

ChatGPT social could be a thing, as leak shows direct messages support

OpenAI rolls out GPT Codex Alpha with early access to new models

OpenAI wants ChatGPT to be your emotional support

OpenAI prepares $4 ChatGPT Go for several new countries

Massive surge in scans targeting Palo Alto Networks login portals

Discord discloses data breach after hackers steal support tickets

Cybersecurity Dive

Renault Group confirms certain UK customer data stolen in third-party breach

Oracle investigating extortion emails targeting E-Business Suite customers

UNFI reports solid results as it recovers from cyberattack

Hackers claiming ties to Clop launch wide extortion campaign targeting corporate executives

Federal cuts force many state and local governments out of cyber collaboration group

Landmark US cyber-information-sharing program expires, bringing uncertainty

CMMC is coming, but most contractors still have a long road to full compliance

Canadian airline WestJet says some customer data stolen in June cyberattack

Cisco firewall flaws endanger nearly 50,000 devices worldwide

CISA to furlough 65% of staff if government shuts down this week

Threatpost

Student Loan Breach Exposes 2.5M Records

Watering Hole Attacks Push ScanBox Keylogger

Tentacles of ‘0ktapus’ Threat Group Victimize 130 Firms

Ransomware Attacks are on the Rise

Cybercriminals Are Selling Access to Chinese Surveillance Cameras

Twitter Whistleblower Complaint: The TL;DR Version

Firewall Bug Under Active Attack Triggers CISA Warning

Fake Reservation Links Prey on Weary Travelers

iPhone Users Urged to Update to Patch 2 Zero-Days

Google Patches Chrome’s Fifth Zero-Day of the Year

The Register

Apple ices ICE agent tracker app under government heat

Munich Airport chaos after drone sightings spook air traffic control

UK government says digital ID won't be compulsory – honest

Oracle tells Clop-targeted EBS users to apply July patch, problem solved

Criminals take Renault UK customer data for a joyride

Subpoena tracking platform blames outage on AWS social engineering attack

Clop-linked crims shake down Oracle execs with data theft claims

EU funds are flowing into spyware companies, and politicians are demanding answers

Cybercrims claim raid on 28,000 Red Hat repos, say they have sensitive customer files

US gov shutdown leaves IT projects hanging, security defenders a skeleton crew

VentureBeat

TechCrunch

A breach every month raises doubts about South Korea’s digital defenses

Anker offered Eufy camera owners $2 per video for AI training

Event startup Partiful wasn’t stripping GPS locations from user-uploaded photos

Hacking group claims theft of 1 billion records from Salesforce customer databases

Hackers are sending extortion emails to executives after claiming Oracle apps’ data breach

Last chance alert: Founder and Investor Bundle savings for TechCrunch Disrupt 2025 ends tomorrow

Oneleet raises $33M to shake up the world of security compliance

UK government tries again to access encrypted Apple customer data: Report

Data breach at Canadian airline WestJet affects 1.2M passengers

Final 3 days to score extra discounts on community passes to TechCrunch Disrupt 2025

Network World Security

Report: AMD could be Intel’s next foundry customer

Cisco: AI demands more reliable optical networking components

IBM offers AI-based cloud service to manage complex networks

Altera targets AI edge with updates for its Agilex FPGA portfolio

Red Hat OpenShift AI weakness allows full cluster compromise, warns advisory

OpenStack Flamingo pays down technical debt as adoption continues to climb

Netgear deepens SASE integration

Spotlight report: Securing the cloud

2025 global network outage report and internet health check

Cato extends SASE platform to unmanaged devices

Help Net Security

Old authentication habits die hard

Phishing is old, but AI just gave it new life

Week in review: Many Cisco ASA firewalls still unsecure, hackers claim Red Hat’s GitLab breach

When loading a model means loading an attacker

Protegrity Developer Edition: Free containerized Python package to secure AI pipelines

4 ways to use time to level up your security monitoring

Passkeys rise, but scams still hit hard in 2025

Apple strengthens storage flexibility with new disk image formats

AI hype hits a wall when the data doesn’t deliver

New infosec products of the week: October 3, 2025

InfoSecurity Magazine

Chinese-Speaking Cybercrime Group Hijacks IIS Servers for SEO Fraud

Hackers Target Unpatched Flaws in Oracle E-Business Suite

WestJet Data Breach Impacts 1.2 Million Customers

US Government Shutdown to Slash Federal Cybersecurity Staff

Extortion Emails Sent to Executives by Self-Proclaimed Clop Gang Member

Confucius Shifts from Document Stealers to Python Backdoors

Free VPN Apps Found Riddled With Security Flaws

Expired US Cyber Law Puts Data Sharing and Threat Response at Risk

Forrester: Agentic AI-Powered Breach Will Happen in 2026

Phishing Dominates EU-Wide Intrusions, says ENISA

© 2025 RiskDiscovery | Sponsored by: Deception Logic