[ News | Newsletters | Blogs | Reddits | Lists | Media | Jobs ] HoneyDB
DarkReading
GitHub Copilot 'CamoLeak' AI Attack Exfiltrates Data
SonicWall: 100% of Firewall Backups Possibly Breached
Fastly CISO: Using Major Incidents as Career Catalysts
Take Note: Cyber-Risks With AI Notetakers
Chaos Ransomware Upgrades With Aggressive New C++ Variant
Vampire Bot Malware Sinks Fangs Into Job Hunters
Red Hat Hackers Team Up With Scattered Lapsus$ Hunters
LockBit, Qilin & DragonForce Join Forces in Ransomware 'Cartel'
Framelink Figma MCP Server Opens Orgs to Agentic AI Compromise
China-Nexus Actors Weaponize 'Nezha' Open Source Tool
Ars Technica
AI models can acquire backdoors from surprisingly few malicious documents
Discord says hackers stole government IDs of 70,000 users
Bank of England warns AI stock bubble rivals 2000 dotcom peak
Salesforce says it won’t pay extortion demand in 1 billion records breach
Synology caves, walks back some drive restrictions on upcoming NAS models
Ars Live: Is the AI bubble about to pop? Ed Zitron is on with Ars at 3:30pm EDT today
AMD wins massive AI chip deal from OpenAI with stock sweetener
ICE wants to build a 24/7 social media surveillance team
Why iRobot’s founder won’t go within 10 feet of today’s walking robots
That annoying SMS phish you just got may have come from a box like this
CyberScoop
SonicWall admits attacker accessed all customer firewall configurations stored on cloud portal
Sen. Peters tries another approach to extend expired cyber threat information-sharing law
Dozens of Oracle customers impacted by Clop data theft for extortion campaign
Voting groups ask court for immediate halt to Trump admin’s SAVE database overhaul
German government says it will oppose EU mass-scanning proposal
Microsoft pins GoAnywhere zero-day attacks to ransomware affiliate Storm-1175
OpenAI: Threat actors use us to be efficient, not make new tools
Oracle zero-day defect amplifies panic over Clop’s data theft attack spree
House Dems seek info about ICE spyware contract, wary of potential abuses
Potential EU law sparks global concerns over end-to-end encryption for messaging apps 
HITBSecNews
Found on VirusTotal: The world’s first UEFI bootkit for Linux
OpenAI is at war with its own Sora video testers following brief public leak
North Korean hackers posing as IT workers steal over $1B in cyberattack
WhatsApp: NSO Group Operates Pegasus Spyware for Customers
Korea extradites Russian, Vietnamese suspects linked to $16M ransomware scheme
CISA Director Jen Easterly, in Place Since 2021, to Step Down
Man sick of crashes sues Intel for allegedly hiding CPU defects
North Korean hackers target cryptocurrency with malware
Law enforcement operation takes down 22,000 malicious IP addresses worldwide
Youth of today say passwords are old news, passkeys are the future
ZDNet
Amazon takes shots at ChatGPT with Quick Suite - your new AI 'teammate' at work
This new Google Gemini model scrolls the internet just like you do - how it works
What is Alexa+? Everything you need to know about Amazon's new AI assistant
Want free ebooks? These 10 sites offer thousands of great reads
Prime Day is over, but some of our favorite Samsung deals are still live
Prime Day is over, but some of our favorite Best Buy deals are still live.
We're tracking the 100+ best Prime Day deals still live
Best October Prime Day 2025 PC gaming deals: Save big on laptops and accessories
Intel's 'boring' Panther Lake update could quietly be a major win for power users and gamers
Last chance for Prime Day: 30 handpicked laptop deals still going strong
The Hacker News
From HealthKick to GOVERSHELL: The Evolution of UTA0388's Espionage Malware
New ClayRat Spyware Targets Android Users via Fake WhatsApp and TikTok Apps
Hackers Access SonicWall Cloud Firewall Backups, Spark Urgent Security Checks
ThreatsDay Bulletin: MS Teams Hack, MFA Hijacking, $2B Crypto Heist, Apple Siri Probe & More
SaaS Breaches Start with Tokens - What Security Teams Must Watch
From Phishing to Malware: AI Becomes Russia's New Cyber Weapon in War on Ukraine
Critical Exploit Lets Hackers Bypass Authentication in WordPress Service Finder Theme
Hackers Exploit WordPress Sites to Power Next-Gen ClickFix Phishing Attacks
Chinese Hackers Weaponize Open-Source Nezha Tool in New Attack Wave
Step Into the Password Graveyard… If You Dare (and Join the Live Session)
BleepingComputer
New Android spyware ClayRat imitates WhatsApp, TikTok, YouTube
Microsoft: Hackers target universities in “payroll pirate” attacks
Hackers now use Velociraptor DFIR tool in ransomware attacks
Microsoft Defender mistakenly flags SQL Server as end-of-life
RondoDox botnet targets 56 n-day flaws in worldwide attacks
Microsoft: Windows Backup now available for enterprise users
SonicWall: Firewall configs stolen for all cloud backup customers
From infostealer to full RAT: dissecting the PureRAT attack chain
Azure outage blocks access to Microsoft 365 services, admin portals
Hacktivists target critical infrastructure, hit decoy plant
Cybersecurity Dive
Risk mitigation budgets swell as enterprise AI adoption grows
Cyber risk a growing priority among insurance and asset management firms
Salesforce refuses to submit to extortion demands linked to hacking campaigns
AI fuels social engineering but isn’t yet revolutionizing hacking
Public disclosures of AI risk surge among S&P 500 companies
Businesses fear AI exposes them to more attacks
Extortion campaign targeting Oracle E-Business Suite customers linked to zero-day
Hackers steal sensitive Red Hat customer data after breaching GitLab repository
Renault Group confirms UK customer data stolen in third-party breach
Oracle investigating extortion emails targeting E-Business Suite customers
Threatpost
Student Loan Breach Exposes 2.5M Records
Watering Hole Attacks Push ScanBox Keylogger
Tentacles of ‘0ktapus’ Threat Group Victimize 130 Firms
Ransomware Attacks are on the Rise
Cybercriminals Are Selling Access to Chinese Surveillance Cameras
Twitter Whistleblower Complaint: The TL;DR Version
Firewall Bug Under Active Attack Triggers CISA Warning
Fake Reservation Links Prey on Weary Travelers
iPhone Users Urged to Update to Patch 2 Zero-Days
Google Patches Chrome’s Fifth Zero-Day of the Year
The Register
It's trivially easy to poison LLMs into spitting out gibberish, says Anthropic
SonicWall breach hits every cloud backup customer after 5% claim goes up in smoke
Take this rob and shove it! Salesforce issues stern retort to ransomware extort
Germany slams brakes on EU's Chat Control device-scanning snoopfest
Employees regularly paste company secrets into ChatGPT
Nearly a year after attack, US medical scanning biz gets clear image of stolen patient data
Police and military radio maker BK Technologies cops to cyber break-in
OpenAI bans suspected Chinese accounts using ChatGPT to plan surveillance
Britain eyes satellite laser warning system and carrier-launched jet drones
UK Home Office opens wallet for £60M automated number plate project
VentureBeat
MCP stacks have a 92% exploit probability: How 10 plugins became enterprise security's biggest blind spot
Stopping breaches at machine speed demands agents, not alerts
SOC teams face 51-second breach reality—Manual response times are officially dead
Why identity-first security is the first defense against sophisticated AI-powered social engineering
AI sharpens threat detection — but could it dull human analyst skills?
Legacy UI is dead: Shadow AI is how real work gets done now
CrowdStrike bets on agentic workforces to outpace AI-driven adversaries
Shadow AI doubles every 18 months, creating blind spots SOCs never see
Stop sending anonymous texts. Start building trust.
They don't break in, they log in: 79% of intrusions are malware-free
TechCrunch
Discord data breach affects at least 70,000 users
Italian businessman’s phone reportedly targeted with Paragon spyware
‘Dozens’ of organizations had data stolen in Oracle-linked hacks
Here’s the tech powering ICE’s deportation crackdown 
ICE bought vehicles equipped with fake cell towers to spy on phones 
North Korean hackers stole over $2 billion in crypto so far in 2025, researchers say
Security bug in India’s income tax portal exposed taxpayers’ sensitive data
Clop hackers caught exploiting Oracle zero-day bug to steal executives’ personal data
Inside Microsoft’s AI bet with CTO Kevin Scott at TechCrunch Disrupt 2025
A breach every month raises doubts about South Korea’s digital defenses
Network World Security
Fields medalist: ‘As of today we have no quantum computer. It does not exist.’
Cisco seriously amps-up Silicon One chip, router for AI data center connectivity
Zscaler, café-inspired branch networks, and mobile security
SolarWinds launches AI agent to automate IT operations, speed incident response
IBM touts agentic AI orchestration, cryptographic risk controls
Network digital twin technology faces headwinds
Netskope expands ZTNA with device intelligence for IoT/OT environments
2025 global network outage report and internet health check
AMD: Latest news and insights
AMD/OpenAI pact means new enterprise IT options
Help Net Security
New infosec products of the week: October 10, 2025
Legit tools, illicit uses: Velociraptor, Nezha turned against victims
Attackers compromised ALL SonicWall firewall configuration backup files
Ootbi Mini delivers zero trust, immutable data protection
Ready1 for Identity Crisis Management restores operations after identity breaches
CyberFOX DNS Filtering stops threats before they reach networks
Researchers develop AI system to detect scam websites in search results
Behind the screens: Building security customers appreciate
Turning the human factor into your strongest cybersecurity defense
Outdated encryption leaves crypto wide open
InfoSecurity Magazine
Researchers Warn of Security Gaps in AI Browsers
ClayRat Spyware Campaign Targets Android Users in Russia
All SonicWall Cloud Backup Users Have Firewall Configuration Files Stolen
ICO’s £7.5m Clearview AI Fine a Step Closer After Legal Victory
NCSC: Observability and Threat Hunting Must Improve
High Number of Windows 10 Users Remain as End-of-Life Looms
Nezha Tool Used in New Cyber Campaign Targeting Web Applications
Digital Fraud Costs Companies Worldwide 7.7% of Annual Revenue
Cyber-Attack Contributes to Huge Sales Drop at JLR
Bybit Theft Drives Record-Breaking $2bn Haul for North Korea
© 2025 RiskDiscovery | Sponsored by: Deception Logic