[ News | Newsletters | Blogs | Reddits | Lists | Media | Jobs ] HoneyDB
DarkReading
'Haozi' Gang Sells Turnkey Phishing Tools to Amateurs
Certified Randomness Uses Quantum Cryptography to Make Stronger Keys
Hundreds of Web Apps Have Full Access to Microsoft OneDrive Files
CISA Issues SOAR, SIEM Implementation Guidance
Implementing Secure by Design Principles for AI
Cellcom Restores Regional Mobile Services After Cyberattack
Why Take9 Won't Improve Cybersecurity
Have Your Say: Dark Reading Seeks Your Input
Zscaler Announces Deal to Acquire Red Canary
Indian Police Arrest Cybercrime Gang Copycats of Myanmar Biz Model
Ars Technica
Thousands of Asus routers are being hit with stealthy, persistent backdoors
Where hyperscale hardware goes to retire: Ars visits a very big ITAD site
Feds charge 16 Russians allegedly tied to botnets used in cyberattacks and spying
Researchers cause GitLab AI developer assistant to turn safe code malicious
Google’s Will Smith double is better at eating AI spaghetti … but it’s crunchy?
Destructive malware available in NPM repo went unnoticed for 2 years
Report calls for regulation of “legally and ethically flawed” VMware
New Claude 4 AI model refactored code for 7 hours straight
Authorities carry out global takedown of infostealer used by cybercriminals
“Microsoft has simply given us no other option,” Signal says as it blocks Windows Recall
CyberScoop
Questions mount as Ivanti tackles another round of zero-days
Chinese hackers used Google Calendar to aid attacks on government entities
Iranian man pleads guilty in Robbinhood ransomware scheme
ZScaler acquires Red Canary for boost in AI-driven security operations
Mandiant flags fake AI video generators laced with malware
New Russian state-sponsored APT quickly gains global reach, hitting expansive targets
Senators take another swing at vulnerability disclosure policy bill for federal contractors
Large-scale sting tied to Operation Endgame disrupts ransomware infrastructure
DanaBot malware operation seized in global takedown
FCC looking to expand anti-robocalling initiative 
HITBSecNews
Found on VirusTotal: The world’s first UEFI bootkit for Linux
OpenAI is at war with its own Sora video testers following brief public leak
North Korean hackers posing as IT workers steal over $1B in cyberattack
WhatsApp: NSO Group Operates Pegasus Spyware for Customers
Korea extradites Russian, Vietnamese suspects linked to $16M ransomware scheme
CISA Director Jen Easterly, in Place Since 2021, to Step Down
Man sick of crashes sues Intel for allegedly hiding CPU defects
North Korean hackers target cryptocurrency with malware
Law enforcement operation takes down 22,000 malicious IP addresses worldwide
Youth of today say passwords are old news, passkeys are the future
SecurityWeek
ZDNet
Is that extension safe? This free tool lets you know before you install
How to disable ACR on your TV (and why you shouldn't wait to do it)
Lock down your data and save 20% on this encrypted Kingston portable SSD
How to get 2FA codes on your desktop when your phone is MIA
I replaced my Ring with this outdoor security camera - and there's no subscription required
Most AI chatbots devour your user data - these are the worst offenders
Massive data breach exposes 184 million passwords for Google, Microsoft, Facebook, and more
Oversharing online? 5 ways it makes you an easy target for cybercriminals
Phone theft is on the rise - 7 ways to protect your device before it's too late
The best malware removal software of 2025: Expert tested and reviewed
The Hacker News
DragonForce Exploits SimpleHelp Flaws to Deploy Ransomware Across Customer Endpoints
Chinese APT41 Exploits Google Calendar for Malware Command-and-Control Operations
Over 100,000 WordPress Sites at Risk from Critical CVSS 10.0 Vulnerability in Wishlist Plugin
Iranian Hacker Pleads Guilty in $19 Million Robbinhood Ransomware Attack on Baltimore
Czech Republic Blames China-Linked APT31 Hackers for 2022 Cyberattack
Microsoft OneDrive File Picker Flaw Grants Apps Full Cloud Access — Even When Uploading Just One File
New PumaBot Botnet Targets Linux IoT Devices to Steal SSH Credentials and Mine Crypto
From Infection to Access: A 24-Hour Timeline of a Modern Stealer Campaign
Mimo Hackers Exploit CVE-2025-32432 in Craft CMS to Deploy Cryptominer and Proxyware
How 'Browser-in-the-Middle' Attacks Steal Sessions in Seconds
BleepingComputer
Victoria’s Secret takes down website after security incident
Microsoft: Windows 11 might fail to start after installing KB5058405
Data broker LexisNexis discloses data breach affecting 364,000 people
Windows 10 KB5058481 update brings seconds back to calendar flyout
Windows 11 KB5058499 update rolls out new Share and Click to Do features
APT41 malware abuses Google Calendar for stealthy C2 communication
New PumaBot botnet brute forces SSH credentials to breach devices
Interlock ransomware gang deploys new NodeSnake RAT on universities
Botnet hacks 9,000+ ASUS routers to add persistent SSH backdoor
Dark Partners cybercrime gang fuels large-scale crypto heists
Cybersecurity Dive
CFOs, financial execs in crosshairs of ‘highly targeted’ spearphishing campaign
Microsoft, Dutch government discover new Russian hacking group
Zscaler enters agreement to buy Red Canary
Masimo says cyberattack will not prevent it from fulfilling orders
CISA loses nearly all top officials as purge continues
US authorities charge 16 in operation to disrupt DanaBot malware
US, allies recommend security protections for AI models
Ohio’s Kettering Health hit by cyberattack
Palo Alto Networks beats earnings estimates amid consolidation, AI concerns
Russia stepping up attacks on firms aiding Ukraine, Western nations warn
Threatpost
Student Loan Breach Exposes 2.5M Records
Watering Hole Attacks Push ScanBox Keylogger
Tentacles of ‘0ktapus’ Threat Group Victimize 130 Firms
Ransomware Attacks are on the Rise
Cybercriminals Are Selling Access to Chinese Surveillance Cameras
Twitter Whistleblower Complaint: The TL;DR Version
Firewall Bug Under Active Attack Triggers CISA Warning
Fake Reservation Links Prey on Weary Travelers
iPhone Users Urged to Update to Patch 2 Zero-Days
Google Patches Chrome’s Fifth Zero-Day of the Year
CISA News
CISA Welcomes Madhu Gottumukkala as the New Deputy Director
CISA Statement on Cyber-Related Alerts and Notifications
CISA, DHS S&T, INL, LSU Help Energy Industry Partners Strengthen Incident Response and OT Cybersecurity
Statement from Matt Hartman on the CVE Program
CISA Statement on CVE Program
CISA and Partners Issue Fast Flux Cybersecurity Advisory
CISA Probationary Reinstatements
Statement on CISA's Red Team
CISA Calls For Action to Close the Software Understanding Gap
CISA Publishes Microsoft Expanded Cloud Log Implementation Playbook
The Register
Billions of cookies up for grabs as experts warn over session security
European Commission: Make Europe Great Again... for startups
Victoria's Secret website laid bare for three days after 'security incident'
Adversarial AI: The new frontier in financial cybersecurity
Attack on LexisNexis Risk Solutions exposes data on 300k +
Russian IT pro sentenced to 14 years forced labor for sharing medical data with Ukraine
The cost of compromise: Why password attacks are still winning in 2025
DragonForce double-whammy: First hit an MSP, then use RMM software to push ransomware
ASUS to chase business PC market with free AI, or no AI - because nobody knows what to do with it
Don't click on that Facebook ad for a text-to-AI-video tool
VentureBeat
DanaBot takedown shows how agentic AI cut months of SOC analysis to weeks
Less is more: Meta study shows shorter reasoning improves AI accuracy by 34%
Security leaders lose visibility as consultants deploy shadow AI copilots to stay employed
Anthropic overtakes OpenAI: Claude Opus 4 codes seven hours nonstop, sets record SWE-Bench score and reshapes enterprise AI
Microsoft just launched an AI that discovered a new chemical in 200 hours instead of years
Reddit, Webflow, and Superhuman are already customers—now GrowthX has $12M to grow
Salesforce just unveiled AI ‘digital teammates’ in Slack — and they’re coming for Microsoft Copilot
Shrink exploit windows, slash MTTP: Why ring deployment is now a must for enterprise defense
You.com’s ARI Enterprise crushes OpenAI in head-to-head tests, aims at deep research market
Meet AlphaEvolve, the Google AI that writes its own code—and just saved millions in computing costs
TechCrunch
Security startup Horizon3.ai is raising $100M in new round
Victoria’s Secret hit by outages as it battles security incident
Data broker giant LexisNexis says breach exposed personal information of over 364,000 people
Vote for the sessions you want to see at TechCrunch Disrupt 2025
Last 24 hours: TechCrunch Disrupt 2025 Early Bird deals will fly away after today
Naukri exposed recruiter email addresses, researcher says
Apple CEO reportedly urged Texas’ governor to ditch online child safety bill
At TechCrunch Sessions: AI, Artemis Seaford and Ion Stoica confront the ethical crisis — when AI crosses the line
Mysterious hacking group Careto was run by the Spanish government, sources say
Microsoft says Lumma password stealer malware found on 394,000 Windows PCs
Network World Security
HPE Aruba unveils raft of new switches for data center, campus modernization
2025 global network outage report and internet health check
SAP teams up with Alibaba to host Cloud ERP workloads in China
Indian startup Refroid launches India’s first data center CDUs
China to boost chip-to-server ecosystem with the merger of Hygon and Sugon
Many ways to use the date command on Linux
Six vendor platforms to watch
Platform approach gains steam among network teams
Oracle to spend $40B on Nvidia chips for OpenAI data center in Texas
Nvidia eyes China rebound with stripped-down AI chip tailored to export limits
Help Net Security
Microsoft unveils “centralized” software update tool for Windows
Resecurity Compliance Manager empowers cybersecurity leaders with AI-driven insights
Cisco Duo IAM protects against AI-driven identity threats
What CISOs can learn from the frontlines of fintech cybersecurity
How CISOs can regain ground in the AI fraud war
CISOs prioritize AI-driven automation to optimize cybersecurity spending
How to threat hunt Living Off The Land binaries
Review: Cybersecurity For Dummies, 3rd Edition
PlainID announces Policy Management for Agentic AI
RadiantOne platform enhancements prevent identity-based attacks
SC Magazine
ASUS router backdoors affect 9K devices, persist after firmware updates
AT&T Dynamic Defense: Reinventing Cybersecurity at the Network Edge - Senthil Ramakrishnan - SCA25 #1
Enterprise security risk increases as transition to IAM platforms lag
Cisco launches new identity access management products, services
File Picker grants access to a user's entire Microsoft OneDrive
Cisco warns of FinTech cyber gaps in Saudi Arabia
New Silent Push Chrome tool delivers real-time cyber intel
Marlink flags surge in AI-powered cyberattacks
Ex-White House adviser warns on cybercrime surge
U.S. cyber veteran urges stronger Korea response
InfoSecurity Magazine
Malware Analysis Reveals Sophisticated RAT With Corrupted Headers
Thousands of ASUS Routers Hijacked in Stealthy Backdoor Campaign
Cybersecurity Teams Generate Average of $36M in Business Growth
#Infosec2025: Over 90% of Top Email Domains Vulnerable to Spoofing Attacks
Ivanti Vulnerability Exploit Could Expose UK NHS Data
Fake Bitdefender Site Spreads Trio of Malware Tools
Czech Republic Accuses China of Government Hack
Microsoft OneDrive Flaw Exposes Users to Data Overreach Risks
Adidas Customer Data Stolen in Third-Party Attack
Vietnam-Nexus Hackers Distribute Malware Via Fake AI Video Generator Websites
© 2024 RiskDiscovery | Sponsored by: Deception Logic