Risk Discovery

DarkReading

Financial, Other Industries Urged to Prepare for Quantum Computers

Critical infrastructure CISOs Can't Ignore 'Back-Office Clutter' Data

Generation AI: Why Today's Tech Graduates Are At a Disadvantage

1Password Addresses Critical AI Browser Agent Security Gap

RondoDox Botnet: an 'Exploit Shotgun' for Edge Vulns

The Fight Against Ransomware Heats Up on the Factory Floor

Feds Shutter ShinyHunters Salesforce Extortion Site

Chinese Hackers Use Velociraptor IR Tool in Ransomware Attacks

Microsoft Adds Agentic AI Capabilities to Sentinel

Deepfake Awareness High at Orgs, But Cyber Defenses Badly Lag

Ars Technica

Microsoft warns of new “Payroll Pirate” scam stealing employees’ direct deposits

AI models can acquire backdoors from surprisingly few malicious documents

Discord says hackers stole government IDs of 70,000 users

Bank of England warns AI stock bubble rivals 2000 dotcom peak

Salesforce says it won’t pay extortion demand in 1 billion records breach

Synology caves, walks back some drive restrictions on upcoming NAS models

Ars Live: Is the AI bubble about to pop? Ed Zitron is on with Ars at 3:30pm EDT today

AMD wins massive AI chip deal from OpenAI with stock sweetener

ICE wants to build a 24/7 social media surveillance team

Why iRobot’s founder won’t go within 10 feet of today’s walking robots

CyberScoop

Russian spyware ClayRat is spreading, evolving quickly, according to Zimperium

Dems introduce bill to halt mass voter roll purges

SonicWall admits attacker accessed all customer firewall configurations stored on cloud portal

Sen. Peters tries another approach to extend expired cyber threat information-sharing law

Dozens of Oracle customers impacted by Clop data theft for extortion campaign

Voting groups ask court for immediate halt to Trump admin’s SAVE database overhaul

German government says it will oppose EU mass-scanning proposal

Microsoft pins GoAnywhere zero-day attacks to ransomware affiliate Storm-1175

OpenAI: Threat actors use us to be efficient, not make new tools

Oracle zero-day defect amplifies panic over Clop’s data theft attack spree

HITBSecNews

Found on VirusTotal: The world’s first UEFI bootkit for Linux

OpenAI is at war with its own Sora video testers following brief public leak

North Korean hackers posing as IT workers steal over $1B in cyberattack

WhatsApp: NSO Group Operates Pegasus Spyware for Customers

Korea extradites Russian, Vietnamese suspects linked to $16M ransomware scheme

CISA Director Jen Easterly, in Place Since 2021, to Step Down

Man sick of crashes sues Intel for allegedly hiding CPU defects

North Korean hackers target cryptocurrency with malware

Law enforcement operation takes down 22,000 malicious IP addresses worldwide

Youth of today say passwords are old news, passkeys are the future

ZDNet

Is heart rate monitoring on earbuds actually viable? I tested two pairs, and here's my advice

Slow Wi-Fi at home? 5 products that fixed my internet problems once and for all

Kindle Scribe vs. ReMarkable Paper Pro: I compared both E Ink tablets and this one's better

Bose just did what Apple couldn't with the QuietComfort Ultra headphones - and I'm sold

Your Slack chatbot is about to get a huge AI upgrade - what's new

I changed 12 settings on my Android phone to significantly increase the battery life

I compared 5G network signals of Verizon, T-Mobile, and AT&T at a baseball stadium - here's the verdict

I tested a Windows laptop with a tandem OLED, and it's spoiled working on other displays for me

This phone 'repair' dongle promises big fixes for $5 - so I put it to the test

This $15 USB-C cable could be the easiest way to stop hackers from stealing your data

The Hacker News

⚡ Weekly Recap: WhatsApp Worm, Critical CVEs, Oracle 0-Day, Ransomware Cartel & More

Why Unmonitored JavaScript Is Your Biggest Holiday Security Risk

Researchers Warn RondoDox Botnet is Weaponizing Over 50 Flaws Across 30+ Vendors

Microsoft Locks Down IE Mode After Hackers Turned Legacy Feature Into Backdoor

Astaroth Banking Trojan Abuses GitHub to Remain Operational After Takedowns

New Rust-Based Malware "ChaosBot" Uses Discord Channels to Control Victims' PCs

New Oracle E-Business Suite Bug Could Let Hackers Access Data Without Login

Experts Warn of Widespread SonicWall VPN Compromise Impacting Over 100 Accounts

Hackers Turn Velociraptor DFIR Tool Into Weapon in LockBit Ransomware Attacks

Stealit Malware Abuses Node.js Single Executable Feature via Game and VPN Installers

BleepingComputer

Oracle releases emergency patch for new E-Business Suite flaw

Meet Varonis Interceptor: AI-Native Email Security

Microsoft: Windows 11 Media Creation Tool broken on Windows 10 PCs

Harvard investigating breach linked to Oracle zero-day exploit

Fake 'Inflation Refund' texts target New Yorkers in new scam

Spain dismantles “GXC Team” cybercrime syndicate, arrests leader

Windows 11 23H2 Home and Pro reach end of support in 30 days

Hackers exploiting zero-day in Gladinet file sharing software

Cybersecurity For Dummies, 3rd Edition eBook FREE for a Limited Time

Google Chrome to revoke browser notifications for inactive sites

Cybersecurity Dive

SonicWall investigation shows hackers gained wide access to customer backup files

Oracle E-Business Suite exploitation traced back as early as July

Risk mitigation budgets swell as enterprise AI adoption grows

Cyber risk a growing priority among insurance and asset management firms

Salesforce refuses to submit to extortion demands linked to hacking campaigns

AI fuels social engineering but isn’t yet revolutionizing hacking

Public disclosures of AI risk surge among S&P 500 companies

Businesses fear AI exposes them to more attacks

Extortion campaign targeting Oracle E-Business Suite customers linked to zero-day

Hackers steal sensitive Red Hat customer data after breaching GitLab repository

Threatpost

Student Loan Breach Exposes 2.5M Records

Watering Hole Attacks Push ScanBox Keylogger

Tentacles of ‘0ktapus’ Threat Group Victimize 130 Firms

Ransomware Attacks are on the Rise

Cybercriminals Are Selling Access to Chinese Surveillance Cameras

Twitter Whistleblower Complaint: The TL;DR Version

Firewall Bug Under Active Attack Triggers CISA Warning

Fake Reservation Links Prey on Weary Travelers

iPhone Users Urged to Update to Patch 2 Zero-Days

Google Patches Chrome’s Fifth Zero-Day of the Year

The Register

Microsoft 'illegally' tracked students via 365 Education, says data watchdog

China probes Qualcomm's Autotalks deal amid rising US trade tensions

Ofcom fines 4chan £20K and counting for pretending UK's Online Safety Act doesn't exist

Dutch government puts Nexperia on a short leash over chip security fears

Pro-Russia hacktivist group dies of cringe after falling into researchers' trap

Microsoft warns of 'payroll pirate' crew looting US university salaries

Cops nuke BreachForums (again) amid cybercrime supergroup extortion blitz

UK techies' union warns members after breach exposes sensitive personal details

It's trivially easy to poison LLMs into spitting out gibberish, says Anthropic

SonicWall breach hits every cloud backup customer after 5% claim goes up in smoke

VentureBeat

Weaponized AI can dismantle patches in 72 hours — but Ivanti's kernel defense can help

MCP stacks have a 92% exploit probability: How 10 plugins became enterprise security's biggest blind spot

Stopping breaches at machine speed demands agents, not alerts

SOC teams face 51-second breach reality—Manual response times are officially dead

Why identity-first security is the first defense against sophisticated AI-powered social engineering

AI sharpens threat detection — but could it dull human analyst skills?

Legacy UI is dead: Shadow AI is how real work gets done now

CrowdStrike bets on agentic workforces to outpace AI-driven adversaries

Shadow AI doubles every 18 months, creating blind spots SOCs never see

Stop sending anonymous texts. Start building trust.

TechCrunch

Homeland Security reassigns ‘hundreds’ of CISA cyber staffers to support Trump’s deportation crackdown

Spyware maker NSO Group confirms acquisition by US investors

Discord data breach affects at least 70,000 users

Italian businessman’s phone reportedly targeted with Paragon spyware

‘Dozens’ of organizations had data stolen in Oracle-linked hacks

Here’s the tech powering ICE’s deportation crackdown

ICE bought vehicles equipped with fake cell towers to spy on phones

North Korean hackers stole over $2 billion in crypto so far in 2025, researchers say

Security bug in India’s income tax portal exposed taxpayers’ sensitive data

Clop hackers caught exploiting Oracle zero-day bug to steal executives’ personal data

Network World Security

Networking terms and definitions

Intel details new efficient Xeon processor line

Intel: Latest news and insights

Beyond Ping and SNMP: Building an AI-ready observability framework for enterprise networks

Fields medalist: ‘As of today we have no quantum computer. It does not exist.’

Cisco seriously amps-up Silicon One chip, router for AI data center connectivity

Zscaler, café-inspired branch networks, and mobile security

SolarWinds launches AI agent to automate IT operations, speed incident response

IBM touts agentic AI orchestration, cryptographic risk controls

Network digital twin technology faces headwinds

Help Net Security

Lattice MachXO5-NX TDQ prepare organizations for quantum-era security threats

Building a healthcare cybersecurity strategy that works

AI-generated images have a problem of credibility, not creativity

The five-minute guide to OT cyber resilience

When hackers hit, patient safety takes the fall

Attackers don’t linger, they strike and move on

Another remotely exploitable Oracle EBS vulnerability requires your attention (CVE-2025-61884)

Week in review: Hackers extorting Salesforce, CentreStack 0-day exploited

OpenVPN redefines secure connectivity with Access Server 3.0

Accenture helps organizations advance agentic AI with Gemini Enterprise

InfoSecurity Magazine

Spain Arrests Alleged Leader of GXC Team Cybercrime Network

New Stealit Malware Campaign Spreads via VPN and Game Installer Apps

Apple Bug Bounty Payouts Can Now Top $5m

FBI and French Police Shutter BreachForums Domain Again

Google Launches AI Bug Bounty with $30,000 Top Reward

Google: Clop Accessed “Significant Amount” of Data in Oracle EBS Exploit

Pro-Russia Hacktivists “Claim” Attack on Water Utility Honeypot

Researchers Warn of Security Gaps in AI Browsers

ClayRat Spyware Campaign Targets Android Users in Russia

All SonicWall Cloud Backup Users Have Firewall Configuration Files Stolen

© 2025 RiskDiscovery | Sponsored by: Deception Logic