[ News | Newsletters | Blogs | Lists | Media | Jobs ] HoneyDB
DarkReading
How Organizations Can Use Blunders to Level Up Their Security Programs
AI-Powered Dependency Decisions Introduce, Ignore Security Bugs
Intermediaries Driving Global Spyware Market Expansion
At RSAC, the EU Leads While US Officials Are Sidelined
Blame Game: Why Public Cyber Attribution Carries Risks
Phishers Pose as Palo Alto Networks' Recruiters for Months in Job Scam
AI Dominates RSAC Innovation Sandbox
SANS: Top 5 Most Dangerous New Attack Techniques to Watch
Why a 'Near-Miss' Database Is Key to Improving Information Sharing
AI-Native Security Is a Must to Counter AI-Based Attacks
Ars Technica
Google bumps up Q Day deadline to 2029, far sooner than previously thought
Self-propagating malware poisons open source software and wipes Iran-based machines
Widely used Trivy scanner compromised in ongoing supply-chain attack
Cloud service providers ask EU regulator to reinstate VMware partner program
Federal cyber experts called Microsoft's cloud a "pile of shit," approved it anyway
Researchers disclose vulnerabilities in IP KVMs from four manufacturers
Supply-chain attack using invisible code hits GitHub and other repositories
The who, what, and why of the attack that has shut down Stryker's Windows network
14,000 routers are infected by malware that's highly resistant to takedowns
Feds take notice of iOS vulnerabilities exploited under mysterious circumstances
CyberScoop
Former NSA chiefs worry American offensive edge in cybersecurity is slipping
Alleged RedLine infostealer conspirator extradited to US
Google moves post-quantum encryption timeline up to 2029
DarkSword’s GitHub leak threatens to turn elite iPhone hacking into a tool for the masses
Experts warn of a ‘loud and aggressive’ extortion wave following Trivy hack
Critics call FCC router rule a ‘big swing’ that could create more supply chain uncertainty
Treasury asks whether terrorism risk insurance program should bolster cyber coverage
Russian access broker sentenced to over 6 years in prison for ransomware schemes
Experts insist Trump administration’s cyber strategy is already paying off
State officials, election experts question California sheriff’s seizure of ballots
InfoSecurity Magazine
Security Researchers Sound the Alarm on Vulnerabilities in AI-Generated Code
Attackers Rapidly Weaponize Critical Oracle WebLogic RCE, Honeypot Study Finds
EtherRAT Techniques Bypass Security Via Ethereum Smart Contracts
AI Becomes the Top Cybersecurity Priority for Defenders as Criminals Exploit It, PwC Warns
OpenAI Expands Bug Bounty to Cover AI Abuse and 'Safety' Concerns
Iran-Linked Pay2Key Ransomware Group Re-Emerges
Invoice Fraud Costs UK Construction Sector Millions, NCA Warns
Cloud Phones Linked to Rising Financial Fraud Threat
Hackers Exploit Compromised Enterprise Identities at Industrial Scale, Warns SentinelOne
US: FCC Bans Foreign-Made Routers Over National Security Concerns
SecurityWeek
Hightower Holding Data Breach Impacts 130,000
BIND Updates Patch High-Severity Vulnerabilities
Chinese Hackers Caught Deep Within Telecom Backbone Infrastructure
Cisco Patches Multiple Vulnerabilities in IOS Software
Alleged RedLine Malware Administrator Extradited to US
Dell and HP Roll Out Quantum-Resistant Device Security and AI-Era Cyber Resilience
Onit Security Raises $11 Million for Exposure Management Platform
Russian Cybercriminal Gets 2-Year Prison Sentence in US 
AI Speeds Attacks, But Identity Remains Cybersecurity’s Weakest Link
iOS, macOS 26.4 Roll Out With Fresh Security Patches
ZDNet
Amazon Spring Sale live blog 2026: Tracking the biggest price drops all week
The Samsung S95F OLED is one of our highest-rated TVs - and it's $800 off at Amazon
The best phone deals from T-Mobile, Verizon, AT&T and other carriers right now
These warning signs could mean spyware is on your phone - and 9 ways to keep it secure
This DeWalt cordless power tool set is nearly 50% off on Amazon - and I can vouch for it
How my portable wind turbine compares to solar panels - 2 years of testing later
I found the best tech deals under $50 during Amazon's Big Spring Sale event
The best Amazon Spring Sale deals on tiny gadgets that can handle big tasks
Why YouTube Premium is the only streaming service I'm willing to pay to skip ads
I went biking with this $100 bone conduction headset and it rocked for 6 hours
The Hacker News
China-Linked Red Menshen Uses Stealthy BPFDoor Implants to Spy via Telecom Networks
[Webinar] Stop Guessing. Learn to Validate Your Defenses Against Real Attacks
Claude Extension Flaw Enabled Zero-Click XSS Prompt Injection via Any Website
Masters of Imitation: How Hackers and Art Forgers Perfect the Art of Deception
ThreatsDay Bulletin: PQC Push, AI Vuln Hunting, Pirated Traps, Phishing Kits & 20 More Stories
Coruna iOS Kit Reuses 2023 Triangulation Exploit Code in Recent Mass Attacks
WebRTC Skimmer Bypasses CSP to Steal Payment Data from E-Commerce Sites
LeakBase Admin Arrested in Russia Over Massive Stolen Credential Marketplace
GlassWorm Malware Uses Solana Dead Drops to Deliver RAT and Steal Browser, Crypto Data
The Kill Chain Is Obsolete When Your AI Agent Is the Threat
BleepingComputer
UK sanctions Xinbi marketplace linked to Asian scam centers
TikTok for Business accounts targeted in new phishing campaign
WhatsApp rolls out more AI features, iOS multi-account support
Inside a Modern Fraud Attack: From Bot Signups to Account Takeovers
Coruna iOS exploit framework linked to Triangulation attacks
Russia arrests suspected owner of LeakBase cybercrime forum
Suspected RedLine infostealer malware admin extradited to US
GitHub adds AI-powered bug detection to expand security coverage
PolyShell attacks target 56% of all vulnerable Magento stores
Bubble AI app builder abused to steal Microsoft account credentials
gbhackers
New ClickFix Attack Exploits Windows Run Dialog and macOS Terminal to Deploy Malware
Leak Bazaar Converts Stolen Corporate Data Into Organized Criminal Marketplace
VoidLink Rootkit Leverages eBPF and Kernel Modules to Stealthily Infiltrate Linux Systems
GhostClaw AI Malware Targets macOS Users with Credential-Stealing Payloads
CISA Issues Urgent Warning on Langflow Code Injection Vulnerability Actively Exploited in Attacks
Critical Ivanti EPMM Vulnerabilities Expose Systems to Arbitrary Code Execution Attacks
Critical NVIDIA Vulnerabilities Risk Remote Code Execution and Denial-of-Service Attacks
Silver Fox Tax Audit Phishing Campaign Shifts from RATs to Python Stealers
Torg Grabber Malware Shifts from Telegram Exfiltration to Encrypted REST API for C2
Fake Screenshot Lures Target Web3 Support Staff with Multi-Stage Malware Attack
Cybersecurity Dive
Critical flaw in Citrix NetScaler raises fears of new exploitation wave
‘Do not shift budgets to AI’: How businesses should and shouldn’t respond to evolving threats
Iran-linked ransomware operation targeted US healthcare provider
Congress wants details from White House on cyber strategy, Iran resilience measures
The CVE Program, a bedrock of global cyber defense, is teetering on the brink
Companies face difficult choices in blaming hackers for an attack
Cybercrime groups speed up initial access handoff through planning, coordination
FCC bans import of consumer-grade routers amid national security concerns
ISACs confront AI’s promise and peril for threat intelligence-sharing
AI poised to help low-skilled hackers in the near term
Threatpost
Student Loan Breach Exposes 2.5M Records
Watering Hole Attacks Push ScanBox Keylogger
Tentacles of ‘0ktapus’ Threat Group Victimize 130 Firms
Ransomware Attacks are on the Rise
Cybercriminals Are Selling Access to Chinese Surveillance Cameras
Twitter Whistleblower Complaint: The TL;DR Version
Firewall Bug Under Active Attack Triggers CISA Warning
Fake Reservation Links Prey on Weary Travelers
iPhone Users Urged to Update to Patch 2 Zero-Days
Google Patches Chrome’s Fifth Zero-Day of the Year
The Register
Brit lawmaker targeted by AI deepfake fails to get answers from US Big Tech
UK wants to know if banning under-16s from social media does anything useful
Indian government probes CCTV espionage operation linked to Pakistan
AI supply chain attacks don’t even require malware…just post poisoned documentation
Scammers have virtual smartphones on speed dial for fraud
Jen Easterly, cybersecurity's 'relentless optimist,' hopes feds come back to RSAC next year
Only Trump can decide when cyberwar turns into real war
Enterprise PCs are unreliable, unpatched, and unloved compared to Macs
EFF has a new boss to lead the fight against privacy-sucking forces of doom
1K+ cloud environments infected following Trivy supply chain attack
VentureBeat
Meta's rogue AI agent passed every identity check — four gaps in enterprise IAM explain why
The authorization problem that could break enterprise AI
Nvidia's agentic AI stack is the first major platform to ship with security at launch, but governance gaps remain
OpenClaw can bypass your EDR, DLP and IAM without triggering a single alert
Anthropic and OpenAI just exposed SAST's structural blind spot with free tools
Enterprise identity was built for humans — not AI agents
Microsoft says ungoverned AI agents could become corporate 'double agents.' Its fix costs $99 a month.
TechCrunch
Apple made strides with iOS 26 security, but leaked hacking tools still leave millions exposed to spyware attacks
Silicon Valley’s two biggest dramas have intersected: LiteLLM and Delve
A major hacking tool has leaked online, putting millions of iPhones at risk. Here’s what you need to know.
Conntour raises $7M from General Catalyst, YC to build an AI search engine for security video systems
Convicted spyware chief hints that Greece’s government was behind dozens of phone hacks
Russia arrests alleged owner of cybercrime forum LeakBase, report says
Crunchyroll confirms data breach after hacker claims unauthorized access
FCC bans import of new consumer routers made overseas, citing security risks
Insight Partners scrubs investment post about Delve amid ‘fake compliance’ allegations
Someone has publicly leaked an exploit kit that can hack millions of iPhones
Network World Security
Network jobs watch: Hiring, skills and certification trends
Data center poaching adds to staffing crisis
Arm shifts course, moves into silicon business
AI’s need for speed, optical connectivity in focus at OFC 2026
The optical imperative and Nokia’s vision to close the AI gap
Panasonic says data center batteries are selling out and AI is to blame
Cisco: Latest news and insights
Meshery 1.0 debuts, offering new layer of control for cloud-native infrastructure
Chained vulnerabilities in Cisco Catalyst switches could induce denial-of-service
Why AI rack densities make liquid cooling nonnegotiable
Help Net Security
Second RedLine infostealer operator ends up in US custody
Researchers release tool to detect stealthy BPFDoor implants in critical infrastructure networks
GitHub jumps on the bandwagon and will use your data to train AI
Mission to smuggle $170 million worth of AI tech to China collapsed for three men
Reddit declares war on bad bot activity
Google races to secure encryption before quantum threats arrive
DataBahn brings AI-driven intelligence into the security pipeline
AI SOC vendors are selling a future that production deployments haven’t reached yet
A nearly undetectable LLM attack needs only a handful of poisoned samples
Your facilities run on fragile supply chains and nobody wants to admit it
SC Magazine
OneSpan's Ashish Jain on why passkeys are ready for prime time in modern banking
F5's Jimmy White on managing runtime risk in enterprise AI systems
Aamir Lakhani on trends in Fortinet’s 2026 Global Threat Landscape Report
Resilience's Travis Wong on making cyber risk continuous, quantified, and actionable
Addressing intensified cyber threats requires coordinated action, NCSC head says
Report: AI ambition outpaces operational reality
Russia arrests alleged admin of LeakBase cybercrime forum
Armenian extradited to US over alleged role in RedLine infostealer scheme
US imprisons Russian botnet operator linked to US-targeted ransomware attacks
Cyber risks against US escalate amid DHS shutdown, says CISA official
© 2026 RiskDiscovery | Sponsored by: Deception Logic