[ News | Newsletters | Blogs | Reddits | Lists | Media | Jobs ] HoneyDB
DarkReading
[Dark Reading Virtual Event] Know Your Enemy: How cybercriminals and nation-state hackers operate
There Are More CVEs, But Cyber Insurers Aren't Altering Policies
For One NFL Team, Tackling Cyber Threats Is Basic Defense
Red Hat Investigates Widespread Breach of Private GitLab Repositories
Phishing Is Moving From Email to Mobile. Is Your Security?
'Confucius' Cyberspy Evolves From Stealers to Backdoors in Pakistan
Android Spyware in the UAE Masquerades as ... Spyware
Google Sheds Light on ShinyHunters' Salesforce Tactics
Shutdown Threatens US Intel Sharing, Cyber Defense
A $50 'Battering RAM' Can Bust Confidential Computing
Ars Technica
Why iRobot’s founder won’t go within 10 feet of today’s walking robots
That annoying SMS phish you just got may have come from a box like this
OpenAI’s Sora 2 lets users insert themselves into AI videos with sound
Intel and AMD trusted enclaves, a foundation for network security, fall to physical attacks
DeepSeek tests “sparse attention” to slash AI processing costs
California’s newly signed AI law just gave Big Tech exactly what it wanted
Anthropic says its new AI model “maintained focus” for 30 hours on multistep tasks
Can AI detect hedgehogs from space? Maybe if you find brambles first.
ChatGPT Pulse delivers morning updates based on your chat history
Experts urge caution about using ChatGPT to pick stocks
CyberScoop
Red Hat confirms breach of GitLab instance, which stored company’s consulting data
Here is the email Clop attackers sent to Oracle customers
Android spyware disguised as legitimate messaging apps targets UAE victims, researchers reveal
North Korea IT worker scheme swells beyond US companies
Oracle customers being bombarded with emails claiming widespread data theft
GOP senator confirms pending White House quantum push, touts legislative alternatives
Palo Alto Networks spots new China espionage group showcasing advanced skills
DOJ, Georgia Tech affiliate company settle over alleged failure to meet DOD contract cyber requirements
Watchdog: Cyber threat information-sharing program’s future uncertain with expected expiration of 2015 law
Anthropic touts safety, security improvements in Claude Sonnet 4.5
HITBSecNews
Found on VirusTotal: The world’s first UEFI bootkit for Linux
OpenAI is at war with its own Sora video testers following brief public leak
North Korean hackers posing as IT workers steal over $1B in cyberattack
WhatsApp: NSO Group Operates Pegasus Spyware for Customers
Korea extradites Russian, Vietnamese suspects linked to $16M ransomware scheme
CISA Director Jen Easterly, in Place Since 2021, to Step Down
Man sick of crashes sues Intel for allegedly hiding CPU defects
North Korean hackers target cryptocurrency with malware
Law enforcement operation takes down 22,000 malicious IP addresses worldwide
Youth of today say passwords are old news, passkeys are the future
ZDNet
After 2 years of charging my iPhone 'the Apple way,' here's how the battery has fared
Apple AirPods Pro 3 vs. Samsung Galaxy Buds 3 Pro: I tested both earbuds, and this one wins
Should you upgrade to Wi-Fi 7? I switched to this next-gen router at home, and here's my verdict
Best Amazon Prime Day Apple deals 2025: My 25+ favorite sales in October
Consumers more likely to pay for 'responsible' AI tools, Deloitte survey says
Best Walmart deals to compete with Prime Day 2025: All-time-low prices from Microsoft, Samsung, and more
Relaxing matters - 6 business leaders share their strategies for work-life balance
How to switch your Windows 10 PC to Linux Mint - for free
8 free Linux apps that are surprisingly useful - no command line required
This single Sony speaker replaced all my other portable audio gear - here's why
The Hacker News
New "Cavalry Werewolf" Attack Hits Russian Agencies with FoalShell and StallionRAT
CISA Flags Meteobridge CVE-2025-4008 Flaw as Actively Exploited in the Wild
Confucius Hackers Hit Pakistan With New WooperStealer and Anondoor Malware
Alert: Malicious PyPI Package soopsocks Infects 2,653 Systems Before Takedown
Automating Pentest Delivery: 7 Key Workflows for Maximum Impact
ThreatsDay Bulletin: CarPlay Exploit, BYOVD Tactics, SQL C2 Attacks, iCloud Backdoor Demand & More
Google Mandiant Probes New Oracle Extortion Wave Possibly Linked to Cl0p Ransomware
How to Close Threat Detection Gaps: Your SOC's Action Plan
Warning: Beware of Android Spyware Disguised as Signal Encryption Plugin and ToTok Pro
New WireTap Attack Extracts Intel SGX ECDSA Key via DDR4 Memory-Bus Interposer
BleepingComputer
Microsoft Outlook stops displaying inline SVG images used in attacks
DrayTek warns of remote code execution bug in Vigor routers
HackerOne paid $81 million in bug bounties over the past year
Brave browser surpasses the 100 million active monthly users mark
Microsoft Defender bug triggers erroneous BIOS update alerts
Your Service Desk is the New Attack Vector—Here's How to Defend It.
Android spyware campaigns impersonate Signal and ToTok messengers
Red Hat confirms security incident after hackers breach GitLab instance
Clop extortion emails claim theft of Oracle E-Business Suite data
Data breach at dealership software provider impacts 766k clients
Cybersecurity Dive
UNFI reports solid results as it recovers from cyberattack
Hackers claiming ties to Clop launch wide extortion campaign targeting corporate executives
Federal cuts force many state and local governments out of cyber collaboration group
Landmark US cyber-information-sharing program expires, bringing uncertainty
CMMC is coming, but most contractors still have a long road to full compliance
Canadian airline WestJet says some customer data stolen in June cyberattack
Cisco firewall flaws endanger nearly 50,000 devices worldwide
CISA to furlough 65% of staff if government shuts down this week
Jaguar Land Rover to resume some manufacturing within days
RTX confirms hack of passenger boarding software involved ransomware
Threatpost
Student Loan Breach Exposes 2.5M Records
Watering Hole Attacks Push ScanBox Keylogger
Tentacles of ‘0ktapus’ Threat Group Victimize 130 Firms
Ransomware Attacks are on the Rise
Cybercriminals Are Selling Access to Chinese Surveillance Cameras
Twitter Whistleblower Complaint: The TL;DR Version
Firewall Bug Under Active Attack Triggers CISA Warning
Fake Reservation Links Prey on Weary Travelers
iPhone Users Urged to Update to Patch 2 Zero-Days
Google Patches Chrome’s Fifth Zero-Day of the Year
The Register
Criminals take Renault UK customer data for a joyride
Subpoena tracking platform blames outage on AWS social engineering attack
Clop-linked crims shake down Oracle execs with data theft claims
EU funds are flowing into spyware companies, and politicians are demanding answers
Cybercrims claim raid on 28,000 Red Hat repos, say they have sensitive customer files
US gov shutdown leaves IT projects hanging, security defenders a skeleton crew
'Delightful' root-access bug in Red Hat OpenShift AI allows full cluster takeover
Air Force admits SharePoint privacy issue as reports trickle out of possible breach
3.7M breach notification letters set to flood North America's mailboxes
AI agent hypefest crashing up against cautious leaders, Gartner finds
VentureBeat
TechCrunch
Hackers are sending extortion emails to executives after claiming Oracle apps’ data breach
Last chance alert: Founder and Investor Bundle savings for TechCrunch Disrupt 2025 ends tomorrow
Oneleet raises $33M to shake up the world of security compliance
Anker offered to pay Eufy camera owners to share videos for training its AI
UK government tries again to access encrypted Apple customer data: Report
Data breach at Canadian airline WestJet affects 1.2M passengers
Final 3 days to score extra discounts on community passes to TechCrunch Disrupt 2025
A breach every month raises doubts about South Korea’s digital defenses
Ted Cruz blocks bill that would extend privacy protections to all Americans
Japan’s beer-making giant Asahi stops production after cyberattack 
Network World Security
IBM offers AI-based cloud service to manage complex networks
Altera targets AI edge with updates for its Agilex FPGA portfolio
Red Hat OpenShift AI weakness allows full cluster compromise, warns advisory
OpenStack Flamingo pays down technical debt as adoption continues to climb
Netgear deepens SASE integration
Spotlight report: Securing the cloud
2025 global network outage report and internet health check
Cato extends SASE platform to unmanaged devices
Zayo launches DynamicLink NaaS platform with core-based service delivery
Alkira advances NaaS for the agentic AI era
Help Net Security
When loading a model means loading an attacker
Protegrity Developer Edition: Free containerized Python package to secure AI pipelines
4 ways to use time to level up your security monitoring
Passkeys rise, but scams still hit hard in 2025
Apple strengthens storage flexibility with new disk image formats
AI hype hits a wall when the data doesn’t deliver
New infosec products of the week: October 3, 2025
Hackers claim to have plundered Red Hat’s GitHub repos
OpenSSL 3.6.0: New features, crypto support
Oracle customers targeted with emails claiming E-Business Suite breach, data theft
InfoSecurity Magazine
Hackers Target Unpatched Flaws in Oracle E-Business Suite
WestJet Data Breach Impacts 1.2 Million Customers
US Government Shutdown to Slash Federal Cybersecurity Staff
Extortion Emails Sent to Executives by Self-Proclaimed Clop Gang Member
Confucius Shifts from Document Stealers to Python Backdoors
Free VPN Apps Found Riddled With Security Flaws
Expired US Cyber Law Puts Data Sharing and Threat Response at Risk
Forrester: Agentic AI-Powered Breach Will Happen in 2026
Phishing Dominates EU-Wide Intrusions, says ENISA
Broadcom Issues Patches for VMware NSX and vCenter Security Flaws
© 2025 RiskDiscovery | Sponsored by: Deception Logic