[ News | Newsletters | Blogs | Reddits | Lists | Media | Jobs ] HoneyDB
DarkReading
Financial, Other Industries Urged to Prepare for Quantum Computers
Critical infrastructure CISOs Can't Ignore 'Back-Office Clutter' Data
Generation AI: Why Today's Tech Graduates Are At a Disadvantage
1Password Addresses Critical AI Browser Agent Security Gap
RondoDox Botnet: an 'Exploit Shotgun' for Edge Vulns
The Fight Against Ransomware Heats Up on the Factory Floor
Feds Shutter ShinyHunters Salesforce Extortion Site
Chinese Hackers Use Velociraptor IR Tool in Ransomware Attacks
Microsoft Adds Agentic AI Capabilities to Sentinel
Deepfake Awareness High at Orgs, But Cyber Defenses Badly Lag
Ars Technica
OpenAI wants to stop ChatGPT from validating users’ political views
Hackers can steal 2FA codes and private messages from Android phones
Why Signal’s post-quantum makeover is an amazing engineering achievement
Microsoft warns of new “Payroll Pirate” scam stealing employees’ direct deposits
AI models can acquire backdoors from surprisingly few malicious documents
Discord says hackers stole government IDs of 70,000 users
Bank of England warns AI stock bubble rivals 2000 dotcom peak
Salesforce says it won’t pay extortion demand in 1 billion records breach
Synology caves, walks back some drive restrictions on upcoming NAS models
Ars Live: Is the AI bubble about to pop? Ed Zitron is on with Ars at 3:30pm EDT today
CyberScoop
Flax Typhoon can turn your own software against you
Red, blue, and now AI: Rethinking cybersecurity training for the 2026 threat landscape
Fortra cops to exploitation of GoAnywhere file-transfer service defect
Russian spyware ClayRat is spreading, evolving quickly, according to Zimperium
Dems introduce bill to halt mass voter roll purges 
SonicWall admits attacker accessed all customer firewall configurations stored on cloud portal
Sen. Peters tries another approach to extend expired cyber threat information-sharing law
Dozens of Oracle customers impacted by Clop data theft for extortion campaign
Voting groups ask court for immediate halt to Trump admin’s SAVE database overhaul
German government says it will oppose EU mass-scanning proposal
HITBSecNews
Found on VirusTotal: The world’s first UEFI bootkit for Linux
OpenAI is at war with its own Sora video testers following brief public leak
North Korean hackers posing as IT workers steal over $1B in cyberattack
WhatsApp: NSO Group Operates Pegasus Spyware for Customers
Korea extradites Russian, Vietnamese suspects linked to $16M ransomware scheme
CISA Director Jen Easterly, in Place Since 2021, to Step Down
Man sick of crashes sues Intel for allegedly hiding CPU defects
North Korean hackers target cryptocurrency with malware
Law enforcement operation takes down 22,000 malicious IP addresses worldwide
Youth of today say passwords are old news, passkeys are the future
ZDNet
This new 'Pixnapping' exploit can steal everything on your Android screen - even 2FA codes
Juggling projects? This powerful tool can help you stay better organized - for free
5 reasons you should ditch Windows for Linux today
Upgrading to a Windows 11 laptop? This Lenovo with a tandem OLED display I tested is a win
I wore smart glasses with xMEMS speakers and cooling fans - and wished my Ray-Bans had the same
The Windows 11 upgrade tool stopped working at the worst possible time - but you have options
I tried a Linux distro that promises free, built-in AI - and things got weird
Windows 10 support officially ends today - and millions of PCs fall off the 'security cliff'
The best password managers of 2025: Expert tested
The best Apple TV VPNs of 2025: Expert tested and reviewed
The Hacker News
Moving Beyond Awareness: How Threat Hunting Builds Readiness
RMPocalypse: Single 8-Byte Write Shatters AMD’s SEV-SNP Confidential Computing
New Pixnapping Android Flaw Lets Rogue Apps Steal 2FA Codes Without Permissions
What AI Reveals About Web Applications— and Why It Matters
npm, PyPI, and RubyGems Packages Found Sending Developer Data to Discord Channels
Researchers Expose TA585’s MonsterV2 Malware Capabilities and Attack Chain
⚡ Weekly Recap: WhatsApp Worm, Critical CVEs, Oracle 0-Day, Ransomware Cartel & More
Why Unmonitored JavaScript Is Your Biggest Holiday Security Risk
Researchers Warn RondoDox Botnet is Weaponizing Over 50 Flaws Across 30+ Vendors
Microsoft Locks Down IE Mode After Hackers Turned Legacy Feature Into Backdoor
BleepingComputer
Microsoft warns that Windows 10 reaches end of support today
Security firms debate CVE credit in overlapping vulnerability reports
When AI Agents Join the Teams: The Hidden Security Shifts No One Expects
Secure Boot bypass risk threatens nearly 200,000 Linux Framework laptops
Chinese hackers abuse geo-mapping tool for year-long persistence
Microsoft restricts IE mode access in Edge after zero-day attacks
SimonMed says 1.2 million patients impacted in January data breach
Massive multi-country botnet targets RDP services in the US
SonicWall VPN accounts breached using stolen creds in widespread attacks
Microsoft investigates outage affecting Microsoft 365 apps
Cybersecurity Dive
SonicWall investigation shows hackers gained wide access to customer backup files
Oracle E-Business Suite exploitation traced back as early as July
Risk mitigation budgets swell as enterprise AI adoption grows
Cyber risk a growing priority among insurance and asset management firms
Salesforce refuses to submit to extortion demands linked to hacking campaigns
AI fuels social engineering but isn’t yet revolutionizing hacking
Public disclosures of AI risk surge among S&P 500 companies
Businesses fear AI exposes them to more attacks
Extortion campaign targeting Oracle E-Business Suite customers linked to zero-day
Hackers steal sensitive Red Hat customer data after breaching GitLab repository
Threatpost
Student Loan Breach Exposes 2.5M Records
Watering Hole Attacks Push ScanBox Keylogger
Tentacles of ‘0ktapus’ Threat Group Victimize 130 Firms
Ransomware Attacks are on the Rise
Cybercriminals Are Selling Access to Chinese Surveillance Cameras
Twitter Whistleblower Complaint: The TL;DR Version
Firewall Bug Under Active Attack Triggers CISA Warning
Fake Reservation Links Prey on Weary Travelers
iPhone Users Urged to Update to Patch 2 Zero-Days
Google Patches Chrome’s Fifth Zero-Day of the Year
The Register
Asahi breach leaves bitter taste as brewer fears personal data slurped
Mozilla is recruiting beta testers for a free, baked-in Firefox VPN
Oracle rushes out another emergency E-Business Suite patch as Clop fallout widens
British govt agents demand action after UK mega-cyberattacks surge 50%
EU biometric border system launch hits inevitable teething problems
Scattered Lapsus$ Hunters rage-quit the internet (again), promise to return next year
Microsoft 'illegally' tracked students via 365 Education, says data watchdog
China probes Qualcomm's Autotalks deal amid rising US trade tensions
Ofcom fines 4chan £20K and counting for pretending UK's Online Safety Act doesn't exist
Dutch government puts Nexperia on a short leash over chip security fears
VentureBeat
Visa just launched a protocol to secure the AI shopping boom — here’s what it means for merchants
Weaponized AI can dismantle patches in 72 hours — but Ivanti's kernel defense can help
MCP stacks have a 92% exploit probability: How 10 plugins became enterprise security's biggest blind spot
Stopping breaches at machine speed demands agents, not alerts
SOC teams face 51-second breach reality—Manual response times are officially dead
Why identity-first security is the first defense against sophisticated AI-powered social engineering
AI sharpens threat detection — but could it dull human analyst skills?
Legacy UI is dead: Shadow AI is how real work gets done now
CrowdStrike bets on agentic workforces to outpace AI-driven adversaries
Shadow AI doubles every 18 months, creating blind spots SOCs never see
TechCrunch
Satellites found exposing unencrypted data, including phone calls and some military comms
Homeland Security reassigns ‘hundreds’ of CISA cyber staffers to support Trump’s deportation crackdown
Spyware maker NSO Group confirms acquisition by US investors
Discord data breach affects at least 70,000 users
Italian businessman’s phone reportedly targeted with Paragon spyware
‘Dozens’ of organizations had data stolen in Oracle-linked hacks
Here’s the tech powering ICE’s deportation crackdown 
ICE bought vehicles equipped with fake cell towers to spy on phones 
North Korean hackers stole over $2 billion in crypto so far in 2025, researchers say
Security bug in India’s income tax portal exposed taxpayers’ sensitive data
Network World Security
OpenAI–Broadcom alliance signals a shift to open infrastructure for AI
Nvidia: Latest news and insights
Inside Nvidia’s ‘grid-to-chip’ vision: How Vera Rubin and Spectrum-XGS push toward AI giga-factories
Networking terms and definitions
Intel details new efficient Xeon processor line
Intel: Latest news and insights
Beyond Ping and SNMP: Building an AI-ready observability framework for enterprise networks
Fields medalist: ‘As of today we have no quantum computer. It does not exist.’
Cisco seriously amps-up Silicon One chip, router for AI data center connectivity
Zscaler, café-inspired branch networks, and mobile security
Help Net Security
LevelBlue acquires Cybereason to expand global MDR, XDR, and threat response leadership
Regula simplifies identity verification with its new all-in-one IDV Platform
Picus Security uses AI to turn threat intelligence into attack simulations
NetApp strengthens its enterprise data platform with new AI-focused innovations
Visa’s Trusted Agent Protocol sets new standard for secure agentic transactions
What if your privacy tools could learn as they go?
The solar power boom opened a backdoor for cybercriminals
Security validation: The key to maximizing ROI from security investments
What Chat Control means for your privacy
Cybersecurity jobs available right now: October 14, 2025
InfoSecurity Magazine
Hacker Group TA585 Emerges With Advanced Attack Infrastructure
Senior Execs Falling Short on Cyber-Attack Preparedness, NCSC Warns
Chinese Hackers Use Trusted ArcGIS App For Year-Long Persistence
UK Firms Lose Average of £2.9m to AI Risk
UK: NCSC Reports 130% Spike in "Nationally Significant" Cyber Incidents
Hackers Target ScreenConnect Features For Network Intrusions
Spain Arrests Alleged Leader of GXC Team Cybercrime Network
New Stealit Malware Campaign Spreads via VPN and Game Installer Apps
Apple Bug Bounty Payouts Can Now Top $5m
FBI and French Police Shutter BreachForums Domain Again
© 2025 RiskDiscovery | Sponsored by: Deception Logic