[ News | Newsletters | Blogs | Reddits | Lists | Media | Jobs ] HoneyDB
DarkReading
China Questions Security of AI Chips From Nvidia, AMD
Elevation-of-Privilege Vulns Dominate Microsoft's Patch Tuesday
Charon Ransomware Emerges With APT-Style Tactics
How to Stay a Step Ahead of a Non-Obvious Threat
ShinyHunters Tactics Now Mirror Scattered Spider
BlackSuit Ransomware Takes an Infrastructure Hit From Law Enforcement
REvil Actor Accuses Russia of Planning 2021 Kaseya Attack
Black Hat NOC Expands AI Implementation Across Security Operations
Researchers Warn of 'Hidden Risks' in Passwordless Account Recovery
Echo Chamber, Prompts Used to Jailbreak GPT-5 in 24 Hours
Ars Technica
Why it’s a mistake to ask chatbots about their mistakes
High-severity WinRAR 0-day exploited for weeks by 2 groups
The GPT-5 rollout has been a big mess
Encryption made for police and military radios may be easily cracked
It’s getting harder to skirt RTO policies without employers noticing
Adult sites are stashing exploit code inside racy .svg files
Google discovered a new scam—and also fell victim to it
OpenAI launches GPT-5 free to all ChatGPT users
Here’s how deepfake vishing attacks work, and why they can be hard to detect
Voice phishers strike again, this time hitting Cisco
CyberScoop
Microsoft Patch Tuesday follows SharePoint attacks, Exchange server warnings
Guess what else GPT-5 is bad at? Security
SonicWall pins firewall attack spree on year-old vulnerability
Why cyber modernization requires partners with technical plus acquisition expertise
Researchers determine old vulnerabilities pose real-world threat to sensitive data in public clouds
FCC tightens rules on foreign firms building undersea cables, citing security
House lawmakers seek better tech for Commerce in fight against foreign powers
Announcing the winners of the 2025 CyberScoop 50 awards
CyberScoop 50 reveals 2025 winners; honors Amit Yoran with lifetime award 
DARPA’s AI Cyber Challenge reveals winning models for automated vulnerability discovery and patching
HITBSecNews
Found on VirusTotal: The world’s first UEFI bootkit for Linux
OpenAI is at war with its own Sora video testers following brief public leak
North Korean hackers posing as IT workers steal over $1B in cyberattack
WhatsApp: NSO Group Operates Pegasus Spyware for Customers
Korea extradites Russian, Vietnamese suspects linked to $16M ransomware scheme
CISA Director Jen Easterly, in Place Since 2021, to Step Down
Man sick of crashes sues Intel for allegedly hiding CPU defects
North Korean hackers target cryptocurrency with malware
Law enforcement operation takes down 22,000 malicious IP addresses worldwide
Youth of today say passwords are old news, passkeys are the future
ZDNet
These CFOs are devoting 25% of their AI budgets to agentic AI
Will AI replace all software? Why GPT-5 emboldens the doomsayers
Why a $599 MacBook may be the most enticing laptop for Windows 10 users later this year
Reddit blocks the Internet Archive from crawling its data - here's why
This Bluetooth tracker's latest feature could save your life - but it costs extra
Is your iPhone alarm not going off? 6 potential fixes that worked for me
Claude can now save you more time by automatically referencing past chats
I've tested the Apple Watch, Oura Ring, and other sleep trackers - 5 tips to get the best results
The next big TV panel leap was just unveiled by Samsung - and it makes LED look outdated
Is ChatGPT Plus really worth $20 when the free version offers so many premium features?
The Hacker News
Researchers Spot XZ Utils Backdoor in Dozens of Docker Hub Images, Fueling Supply Chain Risks
Fortinet SSL VPNs Hit by Global Brute-Force Wave Before Attackers Shift to FortiManager
Cybercrime Groups ShinyHunters, Scattered Spider Join Forces in Extortion Attacks on Businesses
New ‘Curly COMrades’ APT Using NGEN COM Hijacking in Georgia, Moldova Attacks
The Ultimate Battle: Enterprise Browsers vs. Secure Browser Extensions
Dutch NCSC Confirms Active Exploitation of Citrix NetScaler CVE-2025-6543 in Critical Sectors
New TETRA Radio Encryption Flaws Expose Law Enforcement Communications
Researchers Spot Surge in Erlang/OTP SSH RCE Exploits, 70% Target OT Firewalls
⚡ Weekly Recap: BadCam Attack, WinRAR 0-Day, EDR Killer, NVIDIA Flaws, Ransomware Attacks & More
6 Lessons Learned: Focusing Security Where Business Value Lives
BleepingComputer
Claude gets 1M tokens support via API to take on Gemini 2.5 Pro
Hackers leak Allianz Life data stolen in Salesforce attacks
OpenAI rolls out Gmail, Calendar, and Contacts integration in ChatGPT
ChatGPT's new subscription costs less than $5, but it's not for everyone
Docker Hub still hosts dozens of Linux images with the XZ backdoor
Microsoft August 2025 Patch Tuesday fixes one zero-day, 107 flaws
Windows 11 KB5063878 & KB5063875 cumulative updates released
Windows 10 KB5063709 update fixes extended security updates enrollment
US govt seizes $1 million in crypto from BlackSuit ransomware gang
Android's pKVM hypervisor earns SESIP Level 5 security certification
Cybersecurity Dive
Financial impact from severe OT events could top $300B
Citrix NetScaler flaws lead to critical infrastructure breaches
DOJ, international partners take down BlackSuit group’s infrastructure
Research shows AI agents are highly vulnerable to hijacking attacks
Cyber experts ponder a non-government future for the CVE program
DARPA touts value of AI-powered vulnerability detection as it announces competition winners
Financially motivated cluster a key player in ToolShell exploitation
CISA officials say agency is moving ahead despite workforce purge
NSA partnering with cyber firms to support under-resourced defense contractors
SonicWall says recent attack wave involved previously disclosed flaw, not zero-day
Threatpost
Student Loan Breach Exposes 2.5M Records
Watering Hole Attacks Push ScanBox Keylogger
Tentacles of ‘0ktapus’ Threat Group Victimize 130 Firms
Ransomware Attacks are on the Rise
Cybercriminals Are Selling Access to Chinese Surveillance Cameras
Twitter Whistleblower Complaint: The TL;DR Version
Firewall Bug Under Active Attack Triggers CISA Warning
Fake Reservation Links Prey on Weary Travelers
iPhone Users Urged to Update to Patch 2 Zero-Days
Google Patches Chrome’s Fifth Zero-Day of the Year
The Register
Crypto crasher Do Kwon admits guilt over failed not-so-stablecoin that erased $41 billion
Microsoft's Patch Tuesday baker's dozen: 12 critical bugs plus a SharePoint RCE
Manpower franchise discloses data theft after RansomHub posts alleged stolen data
Major outage at Pennsylvania Attorney General's Office blamed on 'cyber incident'
BlackSuit ransomware crew loses servers, domains, and $1m in global shakedown
Oh, great.Three notorious cybercrime gangs appear to be collaborating
Hyundai: Want cyber-secure car locks? That'll be £49, please
The White House could end UK's decade-long fight to bust encryption
Poisoned telemetry can turn AIOps into AI Oops, researchers show
Russia's RomCom among those exploiting a WinRAR 0-day in highly-targeted attacks
VentureBeat
The end of perimeter defense: When your own AI tools become the threat actor
Claude can now process entire software projects in single request, Anthropic says
Study warns of security risks as ‘OS agents’ gain control of computers and phones
Black Hat 2025: Why your AI tools are becoming the next insider threat
Anthropic ships automated security reviews for Claude Code as AI-generated vulnerabilities surge
Anthropic’s new Claude 4.1 dominates coding tests days before GPT-5 arrives
ChatGPT rockets to 700M weekly users ahead of GPT-5 launch with reasoning superpowers
Shadow AI adds $670K to breach costs while 97% of enterprises skip basic access controls, IBM reports
Nightfall launches ‘Nyx,’ an AI that automates data loss prevention at enterprise scale
How can enterprises keep systems safe as AI agents join human employees? Cyata launches with a new, dedicated solution
TechCrunch
Russian government hackers said to be behind US federal court filing system hack: Report
Hackers breach and expose a major North Korean spying operation
US government seized $1M from Russian ransomware gang
Electronic Arts blocks more than 300,000 attempts to cheat after launching Battlefield 6 beta
Security flaws in a carmaker’s web portal let one hacker remotely unlock cars from anywhere
After researchers unmasked a prolific SMS scammer, a new operation has emerged in its wake
Data breach at French telecom giant Bouygues affects millions of customers
TeaOnHer, a rival Tea app for men, is leaking users’ personal data and driver’s licenses
Citizen Lab director warns cyber industry about US authoritarian descent
Final call: TechCrunch Disrupt 2025 ticket savings end tonight
Network World Security
Trump meets with Intel CEO after calling for his resignation
Data center sustainability efforts stall slightly in 2025
2025 global network outage report and internet health check
Arista’s latest networking results: 4 critical takeaways
Critical SSH vulnerabilities expose enterprise network infrastructure as patching lags
Nvidia launches Blackwell-powered RTX Pro GPUs for compact AI workstations
IBM Cloud hit by fourth major outage since May as authentication failures expose systemic issues
Nvidia: Latest news and insights
Enterprise tips for cloud success
Networking terms and definitions
Help Net Security
How to build and grow a scalable vCISO practice as an MSP
Global OT cyber risk could top $329 billion, new report warns
CISOs face a complex tangle of tools, threats, and AI uncertainty
Netscaler vulnerability was exploited as zero-day for nearly two months (CVE-2025-6543)
Prove Unified Authentication simplifies identity verification
Trend Micro improves SIEM performance with agentic AI
Rubrik Agent Rewind enables organizations to undo mistakes made by agentic AI
WinRAR zero-day was exploited by two threat actors (CVE-2025-8088)
APT groups are getting personal, and CISOs should be concerned
What makes a security program mature and how to get there faster
InfoSecurity Magazine
Hacker Alleges Russian Government Role in Kaseya Cyber-Attack
GPT-5 Safeguards Bypassed Using Storytelling-Driven Jailbreak
29,000 Servers Remain Unpatched Against Microsoft Exchange Flaw
Home Office Phishing Scam Targets UK Immigration Sponsors
Cybercriminals Exploit Low-Cost Initial Access Broker Market
MITRE: Russian APT28's LameHug, a Pilot for Future AI Cyber-Attacks
Financial Services Could Be Next in Line for ShinyHunters
Hackers Raid Dutch Lab, Stealing Data on 500,000 Patients
Connex Credit Union Breach Exposes 172,000 Members’ Data
New WinRAR Zero-Day Exploited by RomCom Hackers
© 2025 RiskDiscovery | Sponsored by: Deception Logic