[ News | Newsletters | Blogs | Lists | Media | Jobs ] HoneyDB
DarkReading
Chinese Nexus Actors Shift Focus to Qatar Amid Iranian Conflict
Middle East Conflict Highlights Cloud Resilience Gaps
Microsoft Patches 83 CVEs in March Update
'Overly Permissive' Salesforce Cloud Configs in the Crosshairs
Russian Threat Actor Sednit Resurfaces With Sophisticated Toolkit
'BlackSanta' EDR Killer Targets HR Workflows
White House Cyber Strategy Prioritizes Offense
'InstallFix' Attacks Spread Fake Claude Code Sites
Are We Ready for Auto Remediation With Agentic AI?
Chinese Cyber Threat Lurks In Critical Asian Sectors for Years
Ars Technica
Feds take notice of iOS vulnerabilities exploited under mysterious circumstances
Amazon appears to be down, with over 20,000 reported problems
Trump gets data center companies to pledge to pay for power generation
Downdetector, Speedtest sold to IT service-provider Accenture in $1.2B deal
LLMs can unmask pseudonymous users at scale with surprising accuracy
Google quantum-proofs HTTPS by squeezing 15kB of data into 700-byte space
New AirSnitch attack bypasses Wi-Fi encryption in homes, offices, and enterprises
Password managers' promise that they can't see your vaults isn't always true
Most VMware users still "actively reducing their VMware footprint," survey finds
Retraction: After a routine code rejection, an AI agent published a hit piece on someone by name
CyberScoop
Salesforce issues new security alert tied to third customer attack spree in six months
If consequences matter, they should apply to vendors, too
Microsoft’s monthly Patch Tuesday is first in 6 months with no actively exploited zero-days
FBI says even in an AI-powered world, security basics still matter
Federal judge blocks Perplexity’s AI browser from making Amazon purchases
Critical defect in Java security engine poses serious downstream security risks
No, it’s not ‘unnecessarily burdensome’ to control your own data
Sean Cairncross lays out what’s coming next for Trump’s cyber strategy
We’ve seen ransomware cost American lives. Here’s what it will actually take to stop it.
The long-awaited Trump cyber strategy has arrived
InfoSecurity Magazine
France: National Cybersecurity Agency Reports Ransomware Attack Drop in 2025
Infosecurity Europe Announces 2026 Keynote Line Up
Researchers Uncover ‘LeakyLooker’ Vulnerabilities in Google Looker Studio
Compromised WordPress Sites Deliver ClickFix Attacks in Global Infostealer Campaign
BlackSanta EDR-Killer Targets HR Teams in CV-Themed Campaign
Researchers Discover Major Security Gaps in LLM Guardrails
Cyber-Attacks on UK Firms Increase at Four Times Global Rate
Microsoft Fixes Two Publicly Disclosed Zero-Days
OpenAI's Promptfoo Deal Plugs Agentic AI Testing Gap
Only 24% Of organizations Test Identity Recovery Every Six Months
SecurityWeek
MedTech Giant Stryker Crippled by Iran-Linked Hacker Attack
Wiz Joins Google Cloud as Landmark Acquisition Closes
CISO Conversations: Aimee Cardwell
238,000 Impacted by Bell Ambulance Data Breach
Scanner Raises $22 Million for AI-Powered Threat Hunting
OpenAI to Acquire AI Security Startup Promptfoo
Fortinet, Ivanti, Intel Patch High-Severity Vulnerabilities
How to 10x Your Vulnerability Management Program in the Agentic Era
Michelin Confirms Data Breach Linked to Oracle EBS Attack
Quantro Security Emerges From Stealth With $2.5 Million in Funding
ZDNet
This security flaw could affect 1 in 4 Android phones - how to check yours
MacBook Neo vs. Mac Mini: Both start at $599, which is right for you?
Meta is rolling out stronger anti-scam tools - here's how they protect you
How to set up a smart switch to power your home (and what to avoid when you do)
A Meta-powered investment scam is spreading across 25 countries - how to spot (and avoid) it
Bluetooth's latest wireless audio push could solve a connectivity problem we've all dealt with
8 powerful Apt commands I use to unlock hidden features - and why they're so handy
I tried Zenclora, a super-fast Linux distro with zero bloat - and one truly special feature
I was a phone addict: These 7 tricks stopped me scrolling and curbed my screen time - fast
I switched password managers without losing a single login - here's how
The Hacker News
Researchers Trick Perplexity's Comet AI Browser Into Phishing Scam in Under Four Minutes
Critical n8n Flaws Allow Remote Code Execution and Exposure of Stored Credentials
Meta Disables 150K Accounts Linked to Southeast Asia Scam Centers in Global Crackdown
Dozens of Vendors Patch Security Flaws Across Enterprise Software and Network Devices
What Boards Must Demand in the Age of AI-Automated Exploitation
Microsoft Patches 84 Flaws in March Patch Tuesday, Including Two Public Zero-Days
UNC6426 Exploits nx npm Supply-Chain Attack to Gain AWS Admin Access in 72 Hours
Five Malicious Rust Crates and AI Bot Exploit CI/CD Pipelines to Steal Developer Secrets
How to Stop AI Data Leaks: A Webinar Guide to Auditing Modern Agentic Workflows
FortiGate Devices Exploited to Breach Networks and Steal Service Account Credentials
BleepingComputer
CISA orders feds to patch n8n RCE flaw exploited in attacks
Medtech giant Stryker offline after Iran-linked wiper malware attack
New PhantomRaven NPM attack wave steals dev data via 88 packages
Meta adds new WhatsApp, Facebook, and Messenger anti-scam tools
New ‘BlackSanta’ EDR killer spotted targeting HR departments
New BeatBanker Android malware poses as Starlink app to hijack devices
New 'Zombie ZIP' technique lets malware slip past security tools
Microsoft releases Windows 10 KB5078885 extended security update
Microsoft March 2026 Patch Tuesday fixes 2 zero-days, 79 flaws
Windows 11 KB5079473 & KB5078883 cumulative updates released
gbhackers
UNC6426 Hackers Exploit NPM Package to Gain AWS Admin Access in 72 Hours
Critical Vulnerability in Microsoft Office Allows Malicious Code to Run Remotely
Instagram Down: Global Outage Prevents Users from Posting and Messaging
Google Warns of AI‑Driven Adaptive Malware Rewriting Its Own Code
BeatBanker Trojan Spreads via Phishing, Deploys Crypto Miner and RAT on Targeted Devices
Microsoft Active Directory Flaw Allows Attackers to Escalate Privileges
Microsoft .NET 0-Day Flaw Opens Doors for Denial of Service Attacks
Trojanized Red Alert App Targets Israeli Users in SMS Scam to Steal Sensitive Data
HR Departments Targeted by Multi-Layered BlackSanta EDR Killer Malware
Microsoft Fixes 79 Vulnerabilities in March 2026 Patch Tuesday, Mitigating Two Exploited 0-Days
Cybersecurity Dive
Google completes $32B acquisition of Wiz
Industry to NIST: Keep agentic AI standards flexible and voluntary
US entities face heightened cyber risk related to Iran war
Trump administration will test infrastructure cybersecurity approaches in pilot program
Conflicting definitions and timelines cause cybersecurity regulation morass, industry reps say
State-linked actors targeted US networks in lead-up to Iran war
How AI will impact security careers and what leaders should do about it
4 best practices to get IAM implementation right the first time
Trump’s new cybersecurity strategy makes promises but lacks details
HHS adds cybersecurity guidance to healthcare sector self-assessment tool
Threatpost
Student Loan Breach Exposes 2.5M Records
Watering Hole Attacks Push ScanBox Keylogger
Tentacles of ‘0ktapus’ Threat Group Victimize 130 Firms
Ransomware Attacks are on the Rise
Cybercriminals Are Selling Access to Chinese Surveillance Cameras
Twitter Whistleblower Complaint: The TL;DR Version
Firewall Bug Under Active Attack Triggers CISA Warning
Fake Reservation Links Prey on Weary Travelers
iPhone Users Urged to Update to Patch 2 Zero-Days
Google Patches Chrome’s Fifth Zero-Day of the Year
The Register
Meta, international cops use handcuffs and AI to stop scammers
ICO fines Police Scotland over data-sharing debacle in gross misconduct case
Swiss e-voting pilot can't count 2,048 ballots after USB keys fail to decrypt them
Dutch cops bust teen suspected of posing as bank staff to steal cards
EU legal eagle says banks should refund cybercrime victims first, argue later
Building the UK’s next generation of cyber talent
Critical Microsoft Excel bug weaponizes Copilot Agent for zero-click information disclosure attack
Cybercrime isn't just a cover for Iran's government goons - it's a key part of their operations
Crooks compromise WordPress sites to push infostealers via fake CAPTCHA prompts
Fake job applications pack malware that kills endpoint detection before stealing data
VentureBeat
Anthropic and OpenAI just exposed SAST's structural blind spot with free tools
Enterprise identity was built for humans — not AI agents
Microsoft says ungoverned AI agents could become corporate 'double agents.' Its fix costs $99 a month.
Pentagon vendor cutoff exposes the AI dependency map most enterprises never built
Endor Labs launches free tool AURI after study finds only 10% of AI-generated code is secure
When AI lies: The rise of alignment faking in autonomous systems
What if the real risk of AI isn’t deepfakes — but daily whispers?
TechCrunch
Pro-Iran hacktivist group says it is behind attack on medical tech giant Stryker
Hacker broke into FBI and compromised Epstein files, report says
Google wraps up $32B acquisition of cloud cybersecurity startup Wiz
DOGE employee stole Social Security data and put it on a thumb drive, report says
Mandiant’s founder just raised $190M for his autonomous AI agent security startup
US military contractor likely built iPhone hacking tools used by Russian spies in Ukraine
OpenAI acquires Promptfoo to secure its AI agents
Russian government hackers targeting Signal and WhatsApp users, Dutch spies warn
Salt Typhoon is hacking the world’s phone and internet giants — here’s everywhere that’s been hit
Anthropic’s Claude found 22 vulnerabilities in Firefox over two weeks
Network World Security
Datalec targets rapid infrastructure deployment with new modular data centers
Study finds significant savings from direct current power for AI workloads
Tech layoffs surpass 45,000 in early 2026
Eridu exits stealth with $200M to rebuild AI networking
2026 network outage report and internet health check
Cisco blends Splunk analytics, security with core data center management
Cisco: Latest news and insights
HPE’s server and storage prices can change after you place an order
Cisco: LPO not a panacea but plays strategic role in AI networks
AI transforms ‘dangling DNS’ into automated data exfiltration pipeline
Help Net Security
ShinyHunters claims new campaign targeting Salesforce Experience Cloud sites
Researchers uncover AI-powered vishing platform
Fortanix helps enterprises build resilience with multi-sourced quantum entropy
Network Map 2.0 provides live network mapping and faster risk containment
Vicarius vIntelligence brings continuous risk validation and AI-driven security automation
Meta turns to AI to sniff out scams on Facebook, Messenger and WhatsApp
Anthropic forms institute to study long-term AI risks facing society
Microsoft patches 80+ vulnerabilities, six flagged as “more likely” to be exploited
YouTube draws a line on deepfakes involving politicians and journalists
Armis improves vulnerability accuracy and speed with unified real-time visibility
SC Magazine
A practitioner’s view of the Trump administration's new cyber policy
Trump's Cybercom, NSA director nominee confirmed
First CIRM warranty protecting employees from breach liability announced
How to build a breach-ready security posture without the enterprise price tag
Being Exploitable While Your Risk Tolerance Changes and You Unblock Innovation - Myke Lyons - BSW #438
Texas governor pushes for review of Chinese medical devices amid federal cyber warnings
New federal unit coordinating cyber threat action planned
Success Magazine subscriber data reportedly leaked
Over 3M allegedly impacted by Cal AI app breach
Elastic Cloud SIEM free trial exploited for exfiltrated data storage
© 2026 RiskDiscovery | Sponsored by: Deception Logic