[ News | Newsletters | Blogs | Reddits | Lists | Media | Jobs ] HoneyDB
DarkReading
North Korea Attacks South Koreans With Ransomware
Fortinet Products Are in the Crosshairs Again
Whispers of XZ Utils Backdoor Live on in Old Docker Images
Popular AI Systems Still a Work-in-Progress for Security
Patch Now: Attackers Target OT Networks via Critical RCE Flaw
What the LockBit 4.0 Leak Reveals About RaaS Groups
How an AI-Based 'Pen Tester' Became a Top Bug Hunter on HackerOne
China Questions Security of AI Chips From NVIDIA, AMD
Elevation-of-Privilege Vulns Dominate Microsoft's Patch Tuesday
Charon Ransomware Emerges With APT-Style Tactics
Ars Technica
Is AI really trying to escape human control and blackmail people?
OpenAI brings back GPT-4o after user revolt
Why it’s a mistake to ask chatbots about their mistakes
High-severity WinRAR 0-day exploited for weeks by 2 groups
The GPT-5 rollout has been a big mess
Encryption made for police and military radios may be easily cracked
It’s getting harder to skirt RTO policies without employers noticing
Adult sites are stashing exploit code inside racy .svg files
Google discovered a new scam—and also fell victim to it
OpenAI launches GPT-5 free to all ChatGPT users
CyberScoop
Russia restricts WhatsApp, Telegram calls, alleging criminal, terrorist activity
Fortinet SIEM issue coincides with spike in brute-force traffic against company’s SSL VPNs
The overlooked changes that two Trump executive orders could bring to cybersecurity
Patch the vulnerability: Confirm Sean Plankey as CISA director
Microsoft Patch Tuesday follows SharePoint attacks, Exchange server warnings
Guess what else GPT-5 is bad at? Security
SonicWall pins firewall attack spree on year-old vulnerability
Why cyber modernization requires partners with technical plus acquisition expertise
Researchers determine old vulnerabilities pose real-world threat to sensitive data in public clouds
FCC tightens rules on foreign firms building undersea cables, citing security
HITBSecNews
Found on VirusTotal: The world’s first UEFI bootkit for Linux
OpenAI is at war with its own Sora video testers following brief public leak
North Korean hackers posing as IT workers steal over $1B in cyberattack
WhatsApp: NSO Group Operates Pegasus Spyware for Customers
Korea extradites Russian, Vietnamese suspects linked to $16M ransomware scheme
CISA Director Jen Easterly, in Place Since 2021, to Step Down
Man sick of crashes sues Intel for allegedly hiding CPU defects
North Korean hackers target cryptocurrency with malware
Law enforcement operation takes down 22,000 malicious IP addresses worldwide
Youth of today say passwords are old news, passkeys are the future
ZDNet
Samsung Galaxy S25 Ultra vs. iPhone 16 Pro Max: We tested both, and here's the winner
I did not expect this Marshall speaker to rival pricier Bose and Sonos models like this
Windows 10 users looking for a new OS? Apple's $599 MacBook can't come at a better time
Is AI a job killer or creator? There's a third option: Startup rocket fuel
Google just gave the Gemini Live app its biggest update yet - Android and iOS versions included
After owning every Google Pixel flagship, here's why 2025 will be a turning point for me
I found a 36-in-1 multitool that absolutely belongs in your kitchen drawer - here's why
These $15 accessories turned my AirPods into the most versatile earbuds I've worn
I bought the 2025 version of Samsung's Galaxy Watch Ultra - here's the model I'd recommend instead
Why GPT-5's rocky rollout is the reality check we needed on superintelligence hype
The Hacker News
Google Requires Crypto App Licenses in 15 Regions as FBI Warns of $9.9M Scam Losses
CISA Adds Two N-able N-central Flaws to Known Exploited Vulnerabilities Catalog
New PS1Bot Malware Campaign Uses Malvertising to Deploy Multi-Stage In-Memory Attacks
Zoom and Xerox Release Critical Security Updates Fixing Privilege Escalation and RCE Flaws
Fortinet Warns About FortiSIEM Vulnerability (CVE-2025-25256) With In-the-Wild Exploit Code
AI SOC 101: Key Capabilities Security Leaders Need to Know
Webinar: What the Next Wave of AI Cyberattacks Will Look Like — And How to Survive
Microsoft August 2025 Patch Tuesday Fixes Kerberos Zero-Day Among 111 Total New Flaws
Charon Ransomware Hits Middle East Sectors Using APT-Level Evasion Tactics
Researchers Spot XZ Utils Backdoor in Dozens of Docker Hub Images, Fueling Supply Chain Risks
BleepingComputer
Microsoft fixes Windows 11 24H2 updates failing with 0x80240069 error
Google Gemini's Deep Research is finally coming to API
OpenAI relaxes GPT-5 rate limit, promises to improve the personality
Fortinet warns of FortiSIEM pre-auth RCE flaw with exploit in the wild
Windows 11 24H2 updates failing again with 0x80240069 errors
New downgrade attack can bypass FIDO auth in Microsoft Entra ID
Spike in Fortinet VPN brute-force attacks raises zero-day concerns
Pennsylvania attorney general's email, site down after cyberattack
Microsoft removes PowerShell 2.0 from Windows 11, Windows Server
Microsoft asks users to ignore certificate enrollment errors
Cybersecurity Dive
CISA, Microsoft update guidance on Exchange Server vulnerability
US agencies, international allies issue guidance on OT asset inventorying
Xerox patches critical vulnerability in FreeFlow Core application
Financial impact from severe OT events could top $300B
Citrix NetScaler flaws lead to critical infrastructure breaches
DOJ, international partners take down BlackSuit group’s infrastructure
Research shows AI agents are highly vulnerable to hijacking attacks
Cyber experts ponder a non-government future for the CVE program
DARPA touts value of AI-powered vulnerability detection as it announces competition winners
Financially motivated cluster a key player in ToolShell exploitation
Threatpost
Student Loan Breach Exposes 2.5M Records
Watering Hole Attacks Push ScanBox Keylogger
Tentacles of ‘0ktapus’ Threat Group Victimize 130 Firms
Ransomware Attacks are on the Rise
Cybercriminals Are Selling Access to Chinese Surveillance Cameras
Twitter Whistleblower Complaint: The TL;DR Version
Firewall Bug Under Active Attack Triggers CISA Warning
Fake Reservation Links Prey on Weary Travelers
iPhone Users Urged to Update to Patch 2 Zero-Days
Google Patches Chrome’s Fifth Zero-Day of the Year
The Register
The £9 billion question: To Microsoft or not to Microsoft?
Fortinet discloses critical bug with working exploit code amid surge in brute-force attempts
Crooks can't let go: Active attacks target Office vuln patched 8 years ago
UK expands police facial recognition rollout with 10 new vans heading to a town near you
Marc Andreessen wades into the UK's Online Safety Act furor
Microsoft wares may be UK public sector's only viable option
Secure chat darling Matrix admits pair of 'high severity' protocol flaws need painful fixes
Ransomware crew spills Saint Paul's 43GB of secrets after city refuses to cough up cash
Crypto-crasher Do Kwon admits guilt over failed not-so-stablecoin that erased $41 billion
Microsoft's Patch Tuesday baker's dozen: 12 critical bugs plus a SharePoint RCE
VentureBeat
The end of perimeter defense: When your own AI tools become the threat actor
Claude can now process entire software projects in single request, Anthropic says
Study warns of security risks as ‘OS agents’ gain control of computers and phones
Black Hat 2025: Why your AI tools are becoming the next insider threat
Anthropic ships automated security reviews for Claude Code as AI-generated vulnerabilities surge
Anthropic’s new Claude 4.1 dominates coding tests days before GPT-5 arrives
ChatGPT rockets to 700M weekly users ahead of GPT-5 launch with reasoning superpowers
Shadow AI adds $670K to breach costs while 97% of enterprises skip basic access controls, IBM reports
Nightfall launches ‘Nyx,’ an AI that automates data loss prevention at enterprise scale
How can enterprises keep systems safe as AI agents join human employees? Cyata launches with a new, dedicated solution
TechCrunch
How we found TeaOnHer spilling users’ driver’s licenses in less than 10 minutes
Russian government hackers said to be behind US federal court filing system hack: Report
Hackers breach and expose a major North Korean spying operation
US government seized $1M from Russian ransomware gang
Electronic Arts blocks more than 300,000 attempts to cheat after launching Battlefield 6 beta
Security flaws in a carmaker’s web portal let one hacker remotely unlock cars from anywhere
After researchers unmasked a prolific SMS scammer, a new operation has emerged in its wake
Data breach at French telecom giant Bouygues affects millions of customers
TeaOnHer, a rival Tea app for men, is leaking users’ personal data and driver’s licenses
Citizen Lab director warns cyber industry about US authoritarian descent
Network World Security
Cisco strengthens AI networking story
DEF CON research takes aim at ZTNA, calls it a bust
New Compute Exchange service answers GPU pricing queries
Trump meets with Intel CEO after calling for his resignation
Data center sustainability efforts stall slightly in 2025
2025 global network outage report and internet health check
Arista’s latest networking results: 4 critical takeaways
Critical SSH vulnerabilities expose enterprise network infrastructure as patching lags
Nvidia launches Blackwell-powered RTX Pro GPUs for compact AI workstations
IBM Cloud hit by fourth major outage since May as authentication failures expose systemic issues
Help Net Security
Brivo Visitor Management, powered by Envoy, boosts front-desk security
AI security governance converts disorder into deliberate innovation
Open-source flow monitoring with SENSOR: Benefits and trade-offs
The top CTEM platforms you should know in 2025
Free courses: Master AI tools from Microsoft, AWS, and Google
AI is changing Kubernetes faster than most teams can keep up
Croatian research institute confirms ransomware attack via ToolShell vulnerabilities
NIST finalizes lightweight cryptography standard for small devices
Microsoft fixes “BadSuccessor” Kerberos vulnerability (CVE-2025-53779)
Fortinet warns about FortiSIEM vulnerability with in-the-wild exploit code (CVE-2025-25256)
InfoSecurity Magazine
Campaigners Slam Expansion of Police Facial Recognition Schemes in UK
Erlang/OTP SSH Vulnerability Sees Spike in Exploitation Attempts
Deepfake AI Trading Scams Target Global Investors
Staffing Company Manpower Discloses Data Breach
St. Paul’s Mayor Confirms Interlock Data Leak
US Authorities Seize $1m from BlackSuit Ransomware Group
Microsoft Fixes Over 100 CVEs on August Patch Tuesday
Hacker Alleges Russian Government Role in Kaseya Cyber-Attack
GPT-5 Safeguards Bypassed Using Storytelling-Driven Jailbreak
29,000 Servers Remain Unpatched Against Microsoft Exchange Flaw
© 2025 RiskDiscovery | Sponsored by: Deception Logic