[ News | Newsletters | Blogs | Lists | Media | Jobs ] HoneyDB
DarkReading
Malicious Next.js Repos Target Developers Via Fake Job Interviews
Why 'Call This Number' TOAD Emails Beat Gateways
'Richter Scale' Model Measures Magnitude of OT Cyber Incidents
Operation Red Card 2.0 Leads to 651 Arrests in Africa
Attackers Now Need Just 29 Minutes to Own a Network
Lazarus Group Picks a New Poison: Medusa Ransomware
As Cybersecurity Firms Chase AI, VC Market Skyrockets
Spitting Cash: ATM Jackpotting Attacks Surged in 2025
More Than Dashboards: AI Decisions Must Be Provable
Iran's MuddyWater Targets Orgs With Fresh Malware as Tensions Mount
Ars Technica
Password managers' promise that they can't see your vaults isn't always true
Most VMware users still "actively reducing their VMware footprint," survey finds
Retraction: After a routine code rejection, an AI agent published a hit piece on someone by name
OpenAI sidesteps Nvidia with unusually fast coding model on plate-sized chips
Attackers prompted Gemini over 100,000 times while trying to clone it, Google says
Once-hobbled Lumma Stealer is back with lures that are hard to resist
OpenAI researcher quits over ChatGPT ads, warns of "Facebook" path
Sixteen Claude AI agents working together created a new C compiler
Malicious packages for dYdX cryptocurrency exchange empties user wallets
AI companies want you to stop chatting with bots and start managing them
CyberScoop
Vulnerabilities grew like weeds in 2025, but only 1% were weaponized in attacks
Across party lines and industry, the verdict is the same: CISA is in trouble
Chinese group’s ChatGPT use reveals worldwide harassment campaign against critics
Ex-L3Harris executive sentenced to 87 months in prison for selling zero-day exploits to Russian broker
CrowdStrike says attackers are moving through networks in under 30 minutes
Anthropic accuses Chinese labs of trying to illicitly take Claude’s capabilities
Anthropic rolls out embedded security scanning for Claude 
Ukrainian sentenced to 5 years in prison for facilitating North Korean remote worker scheme
State Dept. official says post-quantum transition plans will outlive current leadership
FBI: Threats from Salt Typhoon are ‘still very much ongoing’
InfoSecurity Magazine
44% Surge in App Exploits as AI Speeds Up Cyber-Attacks, IBM Finds
Malicious NuGet Package Targets Stripe Developers
Former Defense Contractor Boss Gets 7+ Years for Selling Zero Days
ICO’s £14m Reddit Fine Highlights Age Check Privacy Concerns
Cost of Insider Incidents Surges 20% to Nearly $20m
Multifaceted Phishing Scheme Deceives Bitpanda Customers
North Korean Lazarus Group Expands Ransomware Activity With Medusa
AI Accelerates Attacker Breakout Time to Just Four Minutes
Chinese AI Firms Hit Claude with Distillation Attacks, Anthropic Warns
AI-powered Cyber-Attacks Up Significantly in the Last Year, Warns CrowdStrike
SecurityWeek
The Blast Radius Problem: Stolen Credentials Are Weaponizing Agentic AI
Google Disrupts Chinese Hackers Targeting Telecoms, Governments
SolarWinds Patches Four Critical Serv-U Vulnerabilities
Medical Device Maker UFP Technologies Hit by Cyberattack
Ex-US Defense Contractor Executive Jailed for Selling Exploits to Russia
CarGurus Data Breach Impacts Over 12 Million Users
SecurityWeek Report: 426 Cybersecurity M&A Deals Announced in 2025
Wynn Resorts Confirms Data Breach After Hackers Remove It From Leak Site
Astelia Raises $35 Million for Exposure Management
Reddit Hit With $20 Million UK Data Privacy Fine Over Child Safety Failings
ZDNet
This Galaxy S26 privacy feature stole the show for me at Unpacked - how it works
Get $200 off a new Galaxy S26 phone when you preorder at Best Buy - here's how
AT&T will give you the Samsung Galaxy S26 Ultra for free (or help you save hundreds) - here's how
Samsung Unpacked 2026 live blog: Updates on Galaxy S26 Ultra, Privacy Display, preorder deals
T-Mobile will give you the new Galaxy S26 Ultra for free - here's how
YouTube Premium vs Premium Lite: Which tier is worth paying for now?
The best Samsung Galaxy S26 cases of 2026: Expert recommended
Get a Samsung Galaxy S26 for up to $400 off at Amazon, plus a $200 gift card - here's how
iPhone 17 Pro Max vs. Samsung Galaxy S26 Ultra: Which premium flagship phone wins?
Get the new Samsung Galaxy S26 Plus for free at Verizon - here's how
The Hacker News
Google Disrupts UNC2814 GRIDTIDE Campaign After 53 Breaches Across 42 Countries
Claude Code Flaws Allow Remote Code Execution and API Key Exfiltration
SLH Offers $500–$1,000 Per Call to Recruit Women for IT Help Desk Vishing Attacks
Top 5 Ways Broken Triage Increases Business Risk Instead of Reducing It
Malicious NuGet Packages Stole ASP.NET Data; npm Package Dropped Malware
Manual Processes Are Putting National Security at Risk
Defense Contractor Employee Jailed for Selling 8 Zero-Days to Russian Broker
SolarWinds Patches 4 Critical Serv-U 15.5 Flaws Allowing Root Code Execution
CISA Confirms Active Exploitation of FileZen CVE-2026-25108 Vulnerability
RoguePilot Flaw in GitHub Codespaces Enabled Copilot to Leak GITHUB_TOKEN
BleepingComputer
Critical Cisco SD-WAN bug exploited in zero-day attacks since 2023
Chinese cyberspies breached dozens of telecom firms, govt agencies
Marquis sues SonicWall over backup breach that led to ransomware attack
The OpenClaw Hype: Analysis of Chatter from Open-Source Deep and Dark Web
Zyxel warns of critical RCE flaw affecting over a dozen routers
US sanctions Russian broker for buying stolen zero-day exploits
Ex-L3Harris exec jailed for selling zero-days to Russian exploit broker
Windows 11 KB5077241 update improves BitLocker, adds Sysmon tool
Phishing campaign targets freight and logistics orgs in the US, Europe
Wynn Resorts confirms employee data breach after extortion threat
gbhackers
One Identity Appoints Michael Henricks as Chief Financial and Operating Officer
Hackers Exploit Cortex XDR Live Terminal for C2 Communications
CISA Issues Alert on Active Exploitation of FileZen Vulnerability
Critical SolarWinds Serv-U Vulnerabilities Enable Remote Root Access
Cybercriminals Exploit Fake Avast Website to Steal Users Credit Card Information
Android RAT SURXRAT Grants Hackers Full Device Control and Data Exfiltration
Threat Actors Exploit Apache ActiveMQ Vulnerability to Gain RDP Access, Deploy LockBit Ransomware
OAuth Vulnerabilities in Entra ID Could Exploit ChatGPT to Breach User Email Accounts
Microsoft Alerts Developers of Malicious Next.js Repositories Used in Ongoing Hacker Attacks
US Sanctions Exploit Brokers Behind Theft of Government Cyber Tools
Cybersecurity Dive
CISA orders agencies to patch Cisco devices now under attack
Software vulnerabilities are being weaponized faster than ever
China-linked hackers breach dozens of telecoms, government agencies
In the AI era, CISOs worry about data leaks and doubt tech will solve skills gaps
Threat groups move at record speeds, as AI helps scale attacks
Hackers target vulnerabilities in Roundcube Webmail
AI helps novice threat actor compromise FortiGate devices in dozens of countries
AI vs. AI: Why cybersecurity’s new front line is behavioral intelligence
BeyondTrust Remote Support exploitation ramps up with backdoors, remote tools
US Treasury Department offers secure AI advice to financial services firms
Threatpost
Student Loan Breach Exposes 2.5M Records
Watering Hole Attacks Push ScanBox Keylogger
Tentacles of ‘0ktapus’ Threat Group Victimize 130 Firms
Ransomware Attacks are on the Rise
Cybercriminals Are Selling Access to Chinese Surveillance Cameras
Twitter Whistleblower Complaint: The TL;DR Version
Firewall Bug Under Active Attack Triggers CISA Warning
Fake Reservation Links Prey on Weary Travelers
iPhone Users Urged to Update to Patch 2 Zero-Days
Google Patches Chrome’s Fifth Zero-Day of the Year
The Register
Google catches Beijing spies using Sheets to spread espionage across 4 continents
Fake 'interview' repos lure Next.js devs into running secret-stealing malware
Ex-L3Harris exec jailed 7 years for selling exploits to Russia
Wynn Resorts takes attacker's word for it that stolen staff data was deleted
OpenAI says Chinese cops used ChatGPT to plan and track smear ops against opponents
Threat intelligence supply chain is full of weak links, researchers find
AI has gotten good at finding bugs, not so good at swatting them
Patch these 4 critical, make-me-root SolarWinds bugs ASAP
North Korea's Lazarus Group targets healthcare orgs with Medusa ransomware
Go library maintainer brands GitHub's Dependabot a 'noise machine'
VentureBeat
Anthropic says DeepSeek, Moonshot, and MiniMax used 24,000 fake accounts to rip off Claude
Anthropic's Claude Code Security is available now after finding 500+ vulnerabilities: how security leaders should respond
Microsoft Copilot ignored sensitivity labels twice in eight months — and no DLP stack caught either one
How attackers hit 700 organizations through CX platforms your SOC already approved
Most ransomware playbooks don't address machine credentials. Attackers know it.
How to test OpenClaw without giving an autonomous agent shell access to your corporate laptop
Anthropic published the prompt injection failure rates that enterprise security teams have been asking every vendor for
TechCrunch
US cybersecurity agency CISA reportedly in dire shape amid Trump cuts and layoffs
Inside the story of the US defense contractor who leaked hacking tools to Russia
Former L3Harris Trenchant boss jailed for selling hacking tools to Russian broker
CarGurus data breach affects 12.5 million accounts
Treasury sanctions Russian zero-day broker accused of buying exploits stolen from US defense contractor
Marquis sues firewall provider SonicWall, alleges security failings with its firewall backup led to ransomware attack
Conduent data breach grows, affecting at least 25M people
Americans are destroying Flock surveillance cameras
VPN flaws allowed Chinese hackers to compromise dozens of Ivanti customers, says report
5 days left to lock in the lowest TechCrunch Disrupt 2026 ticket rates
Network World Security
ControlMonkey extends configuration disaster recovery to cloud network vendors
IBM X-Force: AI creates security challenges, but basic system flaws are more problematic
Netskope targets AI-driven network bottlenecks with AI Fast Path
AMD: Latest news and insights
AMD strikes massive AI chip deal with Meta
From packets to prompts: What Cisco’s AITECH certification means for IT pros
HPE’s latest Juniper routers target large‑scale AI fabrics
Nvidia: Latest news and insights
New Relic connects observability platform to business outcomes
2026 network outage report and internet health check
Help Net Security
Threat actor leveraged Cisco SD-WAN zero-day since 2023 (CVE-2026-20127)
Fake Zoom meeting leads to silent install of surveillance software
Netskope NewEdge AI Fast Path reduces latency for enterprise AI workloads
SentinelOne addresses identity risk across endpoints, browsers, and AI workflows
Veza expands platform with AI Access Agents for enterprise identity governance
CloudCasa expands Red Hat OpenShift data protection across edge and hybrid cloud
Anthropic’s Remote Control feature brings Claude Code to mobile devices
SolarWinds Serv-U hit by four critical RCE-level vulnerabilities
Reddit fined $19.5 million for failing to protect children’s personal data
Ex-L3Harris executive sentenced to 87 months for selling stolen cyber-exploit trade secrets
SC Magazine
AI vs. AI: The new cybersecurity arms race
5 ways public sector organizations can reduce cyber risk
Harness launches Artifact Registry to secure software supply chain
UnsolicitedBooker targets telecoms in Central Asia with new backdoors
Georgia Tech researchers highlight vulnerabilities in threat intelligence sharing
Google's Android developer registration plan faces opposition
Druva enhances DruAI platform with Deep Analysis Agents for automated investigations
CrowdStrike: Average cyberattack breakout time now under 30 minutes
Security as a Business Enabler by Re-envisioning Risk and Leading through Uncertainty - Elyse Gunn - BSW #436
Burger King France, Wendy's UK allegedly hacked, data leaked
© 2026 RiskDiscovery | Sponsored by: Deception Logic