[ News | Newsletters | Blogs | Lists | Media | Jobs ] HoneyDB
DarkReading
'BlackSanta' EDR Killer Targets HR Workflows
White House Cyber Strategy Prioritizes Offense
'InstallFix' Attacks Spread Fake Claude Code Sites
Are We Ready for Auto Remediation With Agentic AI?
Chinese Cyber Threat Lurks In Critical Asian Sectors for Years
Cylake Offers AI-Native Security Without Relying on Cloud Services
North Korean APTs Use AI to Enhance IT Worker Scams
EU Auto Rules Shift Gears on Cybersecurity Standards
Iran's Cyber-Kinetic War Doctrine Takes Shape
Cyberattack on Mexico's Gov't Agencies Highlight AI Threat
Ars Technica
Feds take notice of iOS vulnerabilities exploited under mysterious circumstances
Amazon appears to be down, with over 20,000 reported problems
Trump gets data center companies to pledge to pay for power generation
Downdetector, Speedtest sold to IT service-provider Accenture in $1.2B deal
LLMs can unmask pseudonymous users at scale with surprising accuracy
Google quantum-proofs HTTPS by squeezing 15kB of data into 700-byte space
New AirSnitch attack bypasses Wi-Fi encryption in homes, offices, and enterprises
Password managers' promise that they can't see your vaults isn't always true
Most VMware users still "actively reducing their VMware footprint," survey finds
Retraction: After a routine code rejection, an AI agent published a hit piece on someone by name
CyberScoop
Critical defect in Java security engine poses serious downstream security risks
No, it’s not ‘unnecessarily burdensome’ to control your own data
Sean Cairncross lays out what’s coming next for Trump’s cyber strategy
We’ve seen ransomware cost American lives. Here’s what it will actually take to stop it.
The long-awaited Trump cyber strategy has arrived
Microsoft warns North Korean threat groups are scaling up fake worker schemes with generative AI
DHS CISO, deputy CISO exit amid reported IT leadership overhaul
Congress looks to revive critical cyber program for rural electric utilities
FBI targeted with ‘suspicious’ activity on its networks
HHS updates a free risk tool to help hospitals size up their cybersecurity exposure
InfoSecurity Magazine
OpenAI's Promptfoo Deal Plugs Agentic AI Testing Gap
Only 24% Of organizations Test Identity Recovery Every Six Months
Cloud Attackers Now Prefer Vulnerability Exploits Over Credentials, Google Cloud Finds
Ericsson Breach Exposes Data of 15k Employees and Customers
Russian Hackers Target WhatsApp and Signal Accounts of Global Military and Government Officials
ShinyHunters Targets Hundreds of Websites in New Salesforce Campaign
Threat Actor Exploits Flaws and Uses Elastic Cloud SIEM to Manage Stolen Data
Trump Administration Unveils New Cyber Strategy for America
UK Launches New Crackdown Unit to Tackle Cyber-Fraud at the Source
AI Security Startups Dominate New Cyber Innovation Awards
SecurityWeek
Jazz Emerges From Stealth With $61M in Funding for AI-Powered DLP
Kai Emerges From Stealth With $125M in Funding for AI Platform Bridging IT and OT Security
Webinar Today: Securing Fragile OT in an Exposed World
SAP Patches Critical FS-QUO, NetWeaver Vulnerabilities
Thousands Affected by Ericsson Data Breach
OpenAI Rolls Out Codex Security Vulnerability Scanner
Kevin Mandia’s Armadin Launches With $190 Million in Funding
Hundreds of Salesforce Customers Allegedly Targeted in New Data Theft Campaign
Escape Raises $18 Million to Automate Pentesting
Recent Ivanti Endpoint Manager Flaw Exploited in Attacks
ZDNet
How to turn on repair mode on your Android phone - and why it's critical to do so
How I'm getting better sleep this year thanks to these quirky gadgets
I changed 12 settings on my Android phone to extend its battery life by hours
Enterprise AI agents are multiplying fast, and Microsoft wants full control of them
Gemini can now use your Drive and emails to build spreadsheets, slides and more
This sunrise alarm clock improved my sleep routine, and it's $25 off right now
YouTube TV is offering 12 cheaper channel packages (including live sports) right now
Sonos returns with two new speakers, reviving an old favorite and introducing a new player
I set up a Firawalla Orange router at home, and it's a bigger security upgrade than expected
Samsung Galaxy S24 Ultra vs. S26 Ultra: Should you upgrade to the latest model after two years?
The Hacker News
FortiGate Devices Exploited to Breach Networks and Steal Service Account Credentials
How to Stop AI Data Leaks: A Webinar Guide to Auditing Modern Agentic Workflows
KadNap Malware Infects 14,000+ Edge Devices to Power Stealth Proxy Botnet
New "LeakyLooker" Flaws in Google Looker Studio Could Enable Cross-Tenant SQL Queries
The Zero-Day Scramble is Avoidable: A Guide to Attack Surface Reduction
APT28 Uses BEARDSHELL and COVENANT Malware to Spy on Ukrainian Military
Threat Actors Mass-Scan Salesforce Experience Cloud via Modified AuraInspector Tool
CISA Flags SolarWinds, Ivanti, and Workspace One Vulnerabilities as Actively Exploited
Malicious npm Package Posing as OpenClaw Installer Deploys RAT, Steals macOS Credentials
UNC4899 Breached Crypto Firm After Developer AirDropped Trojanized File to Work Device
BleepingComputer
Microsoft March 2026 Patch Tuesday fixes 2 zero-days, 79 flaws
Windows 11 KB5079473 & KB5078883 cumulative updates released
HPE warns of critical AOS-CX flaw allowing admin password resets
Microsoft brings phishing-resistant Windows sign-ins via Entra passkeys
New KadNap botnet hijacks ASUS routers to fuel cybercrime proxy network
The New Turing Test: How Threats Use Geometry to Prove 'Humanness'
CISA: Recently patched Ivanti EPM flaw now actively exploited
Microsoft to enable Windows hotpatch security updates by default
APT28 hackers deploy customized variant of Covenant open-source tool
Microsoft Teams phishing targets employees with A0Backdoor malware
gbhackers
Top 10 Best Anti-Phishing Tools in 2026
CISA Alerts on Ivanti Endpoint Manager Vulnerability Auth Bypass Exploited in the Wild
Attackers Use Malformed ZIP Archives to Evade Antivirus and EDR Tools
SAP Releases Patches for Security Flaws Allowing Remote Code Execution
Leading Myanmar Fleet Management Company Yoma Fleet Selects AccuKnox SIEM to Replace Legacy Tools
OpenClaw Advisory Surge Highlights Blind Spot Between GitHub and CVE Vulnerability Tracking
Gogs Flaw Could Let Attackers Quietly Overwrite Large File Storage Data
Cloudflare Pingora Flaws Enable Request Smuggling and Cache Poisoning Attacks
OpenAI to Acquire Promptfoo to Address Vulnerabilities in AI Systems
SurxRAT Android Malware Uses LLMs for Phishing and Data Theft
Cybersecurity Dive
US entities face heightened cyber risk related to Iran war
Trump administration will test infrastructure cybersecurity approaches in pilot program
Conflicting definitions and timelines cause cybersecurity regulation morass, industry reps say
State-linked actors targeted US networks in lead-up to Iran war
How AI will impact security careers and what leaders should do about it
4 best practices to get IAM implementation right the first time
Trump’s new cybersecurity strategy makes promises but lacks details
HHS adds cybersecurity guidance to healthcare sector self-assessment tool
Nearly half of exploited zero-day flaws target enterprise-grade technology
Microsoft, Europol disrupt global phishing platform Tycoon 2FA
Threatpost
Student Loan Breach Exposes 2.5M Records
Watering Hole Attacks Push ScanBox Keylogger
Tentacles of ‘0ktapus’ Threat Group Victimize 130 Firms
Ransomware Attacks are on the Rise
Cybercriminals Are Selling Access to Chinese Surveillance Cameras
Twitter Whistleblower Complaint: The TL;DR Version
Firewall Bug Under Active Attack Triggers CISA Warning
Fake Reservation Links Prey on Weary Travelers
iPhone Users Urged to Update to Patch 2 Zero-Days
Google Patches Chrome’s Fifth Zero-Day of the Year
The Register
Crooks compromise WordPress sites to push infostealers via fake CAPTCHA prompts
Fake job applications pack malware that kills EDR before stealing data
Ericsson blames vendor vishing slip-up for breach exposing thousands of records
Protecting democracy means democratizing cybersecurity. Bring on the hackers
Polish cops bust alleged teen DDoS kit sellers – youngest just 12
AI vs AI: Agent hacked McKinsey's chatbot and gained full read-write access in just two hours
ShinyHunters claims more high-profile victims in latest Salesforce customers data heist
EV charger biz ELECQ zapped by ransomware crooks, customer contact data stolen
Dutch cops warn 100 alleged scammers: Turn yourselves in or we tell Grandma
Russian cybercrims phish their way into officials' Signal and WhatsApp accounts
VentureBeat
Anthropic and OpenAI just exposed SAST's structural blind spot with free tools
Enterprise identity was built for humans — not AI agents
Microsoft says ungoverned AI agents could become corporate 'double agents.' Its fix costs $99 a month.
Pentagon vendor cutoff exposes the AI dependency map most enterprises never built
Endor Labs launches free tool AURI after study finds only 10% of AI-generated code is secure
When AI lies: The rise of alignment faking in autonomous systems
What if the real risk of AI isn’t deepfakes — but daily whispers?
TechCrunch
U.S. military contractor likely built iPhone hacking tools used by Russian spies in Ukraine
OpenAI acquires Promptfoo to secure its AI agents
Russian government hackers targeting Signal and WhatsApp users, Dutch spies warn
Salt Typhoon is hacking the world’s phone and internet giants — here’s everywhere that’s been hit
Anthropic’s Claude found 22 vulnerabilities in Firefox over two weeks
TriZetto confirms 3.4M people’s health and personal data was stolen during breach
FBI investigating hack on its wiretap and surveillance systems: Report
Italian prosecutors confirm journalist was hacked with Paragon spyware
FYI: Impersonators are (still) targeting companies with fake TechCrunch outreach
Google says half of all zero-days it tracked in 2025 targeted buggy enterprise tech
Network World Security
Eridu exits stealth with $200M to rebuild AI networking
2026 network outage report and internet health check
Cisco blends Splunk analytics, security with core data center management
Cisco: Latest news and insights
HPE’s server and storage prices can change after you place an order
Cisco: LPO not a panacea but plays strategic role in AI networks
AI transforms ‘dangling DNS’ into automated data exfiltration pipeline
Data center new builds diminish even as demand rises
Cisco issues emergency patches for critical firewall vulnerabilities
Lack of regulatory action on hyperscaler dominance prompts inquiry chair to quit
Help Net Security
Fortinet enhances SecOps with cloud SOC, AI automation, and managed services
Mend.io eliminates AI prompt weaknesses before production
Messenger can warn you about sketchy links without knowing what you clicked
HR, recruiters targeted in year-long malware campaign
Microsoft flips Windows Autopatch to default hotpatch security updates
Attackers use AiTM phishing kit, typosquatted domains to hijack AWS accounts
Terra Portal adds human-governed AI to live production pentesting
Armadin secures $189.9 million to counter AI-driven cyber threats
Teen crew caught selling DDoS attack tools
This spy tool has been quietly stealing data for years
SC Magazine
FBI warns of phishing scams impersonating city officials for permit fees
Ericsson data breach exposes employee and customer information
OpenAI acquires AI security testing startup Promptfoo
The ROME Incident: When the AI agent becomes the insider threat
DarkCloud infostealer lowers cybercrime barrier with $30 price tag
Mozilla fixes 22 Firefox vulnerabilities discovered by Anthropic’s Claude AI
Making Medical Devices Secure - Tamil Mathi - ASW #373
New HHS toolkit helps healthcare sector gauge cyber preparedness
Opposition fails to deter House committee's advancement of child online safety bill
Bipartisan energy cybersecurity bills gain House panel nod
© 2026 RiskDiscovery | Sponsored by: Deception Logic