Risk Discovery

DarkReading

White House Cyber Strategy Prioritizes Offense

'InstallFix' Attacks Spread Fake Claude Code Sites

Are We Ready for Auto Remediation With Agentic AI?

Chinese Cyber Threat Lurks In Critical Asian Sectors for Years

Cylake Offers AI-Native Security Without Relying on Cloud Services

North Korean APTs Use AI to Enhance IT Worker Scams

EU Auto Rules Shift Gears on Cybersecurity Standards

Iran's Cyber-Kinetic War Doctrine Takes Shape

Cyberattack on Mexico's Gov't Agencies Highlight AI Threat

Nation-State Actor Embraces AI Malware Assembly Line

Ars Technica

Feds take notice of iOS vulnerabilities exploited under mysterious circumstances

Amazon appears to be down, with over 20,000 reported problems

Trump gets data center companies to pledge to pay for power generation

Downdetector, Speedtest sold to IT service-provider Accenture in $1.2B deal

LLMs can unmask pseudonymous users at scale with surprising accuracy

Google quantum-proofs HTTPS by squeezing 15kB of data into 700-byte space

New AirSnitch attack bypasses Wi-Fi encryption in homes, offices, and enterprises

Password managers' promise that they can't see your vaults isn't always true

Most VMware users still "actively reducing their VMware footprint," survey finds

Retraction: After a routine code rejection, an AI agent published a hit piece on someone by name

CyberScoop

Sean Cairncross lays out what’s coming next for Trump’s cyber strategy

We’ve seen ransomware cost American lives. Here’s what it will actually take to stop it.

The long-awaited Trump cyber strategy has arrived

Microsoft warns North Korean threat groups are scaling up fake worker schemes with generative AI

DHS CISO, deputy CISO exit amid reported IT leadership overhaul

Congress looks to revive critical cyber program for rural electric utilities

FBI targeted with ‘suspicious’ activity on its networks

HHS updates a free risk tool to help hospitals size up their cybersecurity exposure

Phobos ransomware leader pleads guilty, faces up to 20 years in prison

Cisco reveals 2 max-severity defects in firewall management software

InfoSecurity Magazine

Threat Actor Exploits Flaws and Uses Elastic Cloud SIEM to Manage Stolen Data

Trump Administration Unveils New Cyber Strategy for America

UK Launches New Crackdown Unit to Tackle Cyber-Fraud at the Source

AI Security Startups Dominate New Cyber Innovation Awards

TriZetto Provider Solutions Breach Hits 3.4 Million Patients

Ghanaian Pleads Guilty to Role in $100m Romance Scam

Iran's MuddyWater Hackers Hit US Firms with New 'Dindoor' Backdoor

Zero‑Day Attacks on Enterprise Software Reach Record High, Google Warns

AI-Driven Insider Risk Now a “Critical Business Threat,” Report Warns

ContextCrush Flaw Exposes AI Development Tools to Attacks

SecurityWeek

Cybersecurity M&A Roundup: 42 Deals Announced in February 2026

ClickFix Attack Uses Windows Terminal to Evade Detection

Internet Infrastructure TLD .arpa Abused in Phishing Attacks

Cloned AI Tool Sites Distribute Malware in ‘InstallFix’ Campaign

Recent Cisco Catalyst SD-WAN Vulnerability Now Widely Exploited

US Cyber Strategy Targets Adversaries, Critical Infrastructure, and Emerging Technologies

Over 100 GitHub Repositories Distributing BoryptGrab Stealer

Pentagon’s Chief Tech Officer Says He Clashed With AI Company Anthropic Over Autonomous Warfare

FBI Investigating ‘Suspicious’ Cyber Activity on System Holding Sensitive Surveillance Information

ArmorCode Raises $16 Million for Exposure Management Platform

ZDNet

You can buy last year's LG OLED TV at Best Buy for 50% off - and I highly recommend it

AT&T will sell you the iPhone 17e for just $6 a month - how to qualify for the deal

How to clear your Windows 11 PC cache (and why you shouldn't wait to do it)

3 simple tweaks that have made my headphones last years longer - Sony and Bose included

Sony WF-1000XM6 vs. Apple AirPods Pro 3: I tested both earbuds, and this pair wins

I compared the 3 best XR display glasses right now - the winner was not the most expensive

I wore the world's first HDR10 XR glasses, and they turned me into Bruce Wayne (sort of)

This new Claude Code Review tool uses AI agents to check your pull requests for bugs - here's how

The average tax scam victim loses $1,020 - here are 5 ways to protect yourself now

Amazon will give you a $200 gift card when you preorder the Galaxy S26, plus $400 off: Last chance

The Hacker News

Malicious npm Package Posing as OpenClaw Installer Deploys RAT, Steals macOS Credentials

UNC4899 Breached Crypto Firm After Developer AirDropped Trojanized File to Work Device

⚡ Weekly Recap: Qualcomm 0-Day, iOS Exploit Chains, AirSnitch Attack & Vibe-Coded Malware

Can the Security Platform Finally Deliver for the Mid-Market?

Chrome Extension Turns Malicious After Ownership Transfer, Enabling Code Injection and Data Theft

Web Server Exploits and Mimikatz Used in Attacks Targeting Asian Critical Infrastructure

OpenAI Codex Security Scanned 1.2 Million Commits and Found 10,561 High-Severity Issues

Anthropic Finds 22 Firefox Vulnerabilities Using Claude Opus 4.6 AI Model

Transparent Tribe Uses AI to Mass-Produce Malware Implants in Campaign Targeting India

Multi-Stage VOID#GEIST Malware Delivering XWorm, AsyncRAT, and Xeno RAT

BleepingComputer

Microsoft Teams phishing targets employees with backdoors

Google: Cloud attacks exploit flaws more than weak credentials

Dutch govt warns of Signal, WhatsApp account hijacking attacks

Ericsson US discloses data breach after service provider hack

Microsoft Teams will tag third-party bots trying to join meetings

ShinyHunters claims ongoing Salesforce Aura data theft attacks

FBI warns of phishing attacks impersonating US city, county officials

Why Password Audits Miss the Accounts Attackers Actually Want

Microsoft still working to fix Windows Explorer white flashes

EU court adviser says banks must immediately refund phishing victims

gbhackers

Security Risk Advisors Releases “The Purple Perspective 2026” Report

Fake CleanMyMac Site Spreads SHub Stealer, Targets Crypto Wallets

BoryptGrab Malware Abuses GitHub to Steal Browser and Crypto Wallet Data

Iran-Linked Hackers Target U.S. Critical Infrastructure Amid Rising Cyber Threats

Cyber Espionage Group CL-UNK-1068 Linked to China Targets Asian Infrastructure

Vaultwarden Vulnerabilities Enable Privilege Escalation and Data Exposure

Apache ZooKeeper Flaw Exposes Sensitive Data to Attackers

MaaS VIP Keylogger Campaign Uses Steganography to Steal Credentials at Scale

ClipXDaemon Malware Targets Crypto Users in Linux X11 Sessions

Cybercrime Group in Vietnam Enables Massive Fraudulent Signups

Cybersecurity Dive

Trump administration will test infrastructure cybersecurity approaches in pilot program

Conflicting definitions and timelines causing cybersecurity regulation morass, industry reps say

State-linked actors targeted US networks in lead-up to Iran war

How AI will impact security careers and what leaders should do about it

4 best practices to get IAM implementation right the first time

Trump’s new cybersecurity strategy makes promises but lacks details

HHS adds cybersecurity guidance to healthcare sector self-assessment tool

Nearly half of exploited zero-day flaws target enterprise-grade technology

Microsoft, Europol disrupt global phishing platform Tycoon 2FA

Plankey’s nomination as CISA director now in jeopardy

Threatpost

Student Loan Breach Exposes 2.5M Records

Watering Hole Attacks Push ScanBox Keylogger

Tentacles of ‘0ktapus’ Threat Group Victimize 130 Firms

Ransomware Attacks are on the Rise

Cybercriminals Are Selling Access to Chinese Surveillance Cameras

Twitter Whistleblower Complaint: The TL;DR Version

Firewall Bug Under Active Attack Triggers CISA Warning

Fake Reservation Links Prey on Weary Travelers

iPhone Users Urged to Update to Patch 2 Zero-Days

Google Patches Chrome’s Fifth Zero-Day of the Year

The Register

AI vs AI: Agent hacked McKinsey's chatbot and gained full read-write access in just two hours

ShinyHunters claims more high-profile victims in latest Salesforce customers data heist

EV charger biz ELECQ zapped by ransomware crooks, customer contact data stolen

Dutch cops warn 100 alleged scammers: Turn yourselves in or we tell Grandma

Russian cybercrims phish their way into officials' Signal and WhatsApp accounts

Microsoft Azure CTO set Claude on his 1986 Apple II code, says it found vulns

Royal Navy races to arm ships against drone threat

Iran is the first out-loud cyberwar the US has fought

FBI is investigating breach that may have hit its wiretapping tools

AI agents now help attackers, including North Korea, manage their drudge work

VentureBeat

Microsoft says ungoverned AI agents could become corporate 'double agents.' Its fix costs $99 a month.

Pentagon vendor cutoff exposes the AI dependency map most enterprises never built

Endor Labs launches free tool AURI after study finds only 10% of AI-generated code is secure

What if the real risk of AI isn’t deepfakes — but daily whispers?

When AI lies: The rise of alignment faking in autonomous systems

Enterprise MCP adoption is outpacing security controls

Claude didn't just plan an attack on Mexico's government. It executed one for a month — across four domains your security stack can't see.

TechCrunch

OpenAI acquires Promptfoo to secure its AI agents

Russian government hackers targeting Signal and WhatsApp users, Dutch spies warn

Salt Typhoon is hacking the world’s phone and internet giants — here’s everywhere that’s been hit

Anthropic’s Claude found 22 vulnerabilities in Firefox over two weeks

TriZetto confirms 3.4M people’s health and personal data was stolen during breach

FBI investigating hack on its wiretap and surveillance systems: Report

Italian prosecutors confirm journalist was hacked with Paragon spyware

FYI: Impersonators are (still) targeting companies with fake TechCrunch outreach

Google says half of all zero-days it tracked in 2025 targeted buggy enterprise tech

US and EU police shut down LeakBase, a site accused of sharing stolen passwords and hacking tools

Network World Security

Cisco: Latest news and insights

Cisco: LPO not a panacea but plays strategic role in AI networks

AI transforms ‘dangling DNS’ into automated data exfiltration pipeline

Data center new builds diminish even as demand rises

Cisco issues emergency patches for critical firewall vulnerabilities

Lack of regulatory action on hyperscaler dominance prompts inquiry chair to quit

Digital sovereignty options for on-prem deployments

Cato Networks brings adaptive threat defense to SASE

AMD: Latest news and insights

AWS Middle East outage: a reminder not to rely on cloud as disaster recovery plan

Help Net Security

OpenAI to acquire AI security platform Promptfoo

Russian hackers crack into officials’ Signal and WhatsApp accounts

No more soft play, President Trump warns in new cyber strategy

iProov secures hiring, access, and recovery by verifying the human behind every login

OpenWrt 25.12.0 ships with new package manager, built-in upgrade tool, support for 2200+ devices

Fake Claude Code install pages highlight rise of “InstallFix” attacks

More AI tools, more burnout! New research explains why

Augur lands $15 million funding to strengthen critical infrastructure security

OpenAI joins the race in AI-assisted code security

Decoding silence: How deaf and hard-of-hearing pros are breaking into cybersecurity

SC Magazine

Trump cyber policy focuses on offensive operations, harnessing AI

From audit readiness to operational assurance: Why CCM modernization cannot wait

AI agents are acting like employees. You’re governing them like tools.

The three-legged drone stool: Policy, production, and protection

OpenAI launches Codex Security to detect and fix code vulnerabilities

From Alerts to Action: Making Public–Private Threat Intel Actually Useful - Ian Washburn - CSP #222

6 tips for locking down IoT devices

Breaking in with CrashFix, supply chain security, and CMMC phase 1 - Anna Pham, David Zendzian, Jacob Horne - ESW #449

The importance of keeping calm in trying circumstances: Zero Trust World 2026

Identity security as app growth accelerates: Why automation is becoming essential

© 2026 RiskDiscovery | Sponsored by: Deception Logic