[ News | Newsletters | Blogs | Lists | Media | Jobs ] HoneyDB
DarkReading
[Virtual Event] Shields Up: Key Technologies Reshaping Cybersecurity Defenses
Latin America's Cyber Maturity Lags Threat Landscape
Emerging Chiplet Designs Spark Fresh Cybersecurity Challenges
Supply Chain Attack Secretly Installs OpenClaw for Cline Users
Best-in-Class 'Starkiller' Phishing Kit Bypasses MFA
Abu Dhabi Finance Week Exposed VIP Passport Details
Connected and Compromised: When IoT Devices Turn Into Threats
More Than 40% of South Africans Were Scammed in 2025
Scam Abuses Gemini Chatbots to Convince People to Buy Fake Crypto
Critical Grandstream VoIP Bug Highlights SMB Security Blind Spot
Ars Technica
Password managers' promise that they can't see your vaults isn't always true
Most VMware users still "actively reducing their VMware footprint," survey finds
Retraction: After a routine code rejection, an AI agent published a hit piece on someone by name
OpenAI sidesteps Nvidia with unusually fast coding model on plate-sized chips
Attackers prompted Gemini over 100,000 times while trying to clone it, Google says
Once-hobbled Lumma Stealer is back with lures that are hard to resist
OpenAI researcher quits over ChatGPT ads, warns of "Facebook" path
Sixteen Claude AI agents working together created a new C compiler
Malicious packages for dYdX cryptocurrency exchange empties user wallets
AI companies want you to stop chatting with bots and start managing them
CyberScoop
Ukrainian sentenced to 5 years in prison for facilitating North Korean remote worker scheme
State Dept. official says post-quantum transition plans will outlive current leadership
 FBI: Threats from Salt Typhoon are ‘still very much ongoing’
HHS burrows into identifying risks to health sector from third-party vendors
ONCD official says Trump administration aims to bolster AI use for defense without increasing risk
The Caracas operation suggests cyber was part of the plan – just not the whole operation
Nigerian man sentenced to 8 years in prison for running phony tax refund scheme
Fulton County lawsuit claims feds used ‘gross mischaracterizations’ to justify raid
Chinese hackers exploited a Dell zero-day for 18 months before anyone noticed
Polish authorities arrest alleged Phobos ransomware affiliate
InfoSecurity Magazine
Dramatic Escalation Frequency and Power of in DDoS Attacks
Android Malware Hijacks Google Gemini to Stay Hidden
Remcos RAT Expands Real-Time Surveillance Capabilities
Industrial-Scale Fake Coretax Apps Drive $2m Fraud in Indonesia
Industrial Control System Vulnerabilities Hit Record Highs
Starkiller: New ‘Commercial-Grade’ Phishing Kit Bypasses MFA
Flaws in Popular Software Development App Extensions Allow Data Exfiltration
Researchers Reveal Six New OpenClaw Vulnerabilities
Cryptojacking Campaign Exploits Driver to Boost Monero Mining
AI Assistants Used as Covert Command-and-Control Relays
SecurityWeek
BeyondTrust Vulnerability Exploited in Ransomware Attacks
FBI: $20 Million Losses Caused by 700 ATM Jackpotting Attacks in 2025
Chip Testing Giant Advantest Hit by Ransomware
PromptSpy Android Malware Abuses Gemini AI at Runtime for Persistence
French Government Says 1.2 Million Bank Accounts Exposed in Breach
Nearly 1 Million User Records Compromised in Figure Data Breach
Venice Security Emerges From Stealth With $33M Funding for Privileged Access Management
Ivanti Exploitation Surges as Zero-Day Attacks Traced Back to July 2025
OpenClaw Security Issues Continue as SecureClaw Open Source Tool Debuts
German Rail Giant Deutsche Bahn Hit by Large-Scale DDoS Attack
ZDNet
Google Pixel 10a vs. Pixel 9a: How much of an upgrade is the new affordable phone?
Your Chrome browser just got three huge upgrades - including a genius tab split-view mode
5 products Samsung could surprise us with at Unpacked - including an ultra wide phone
How digitally sovereign is your organization? This Red Hat tool can tell you in minutes
The best VPN services for iPhone in 2026: Expert tested and reviewed
Get a free Pixel 10 Pro at Verizon right now - here's how
The best Apple TV VPNs of 2026: Expert tested and reviewed
New to VPNs? Everything you need to know about virtual private networks in 2026
Looking for a kids' tablet? Here's what my family uses (with a free screen repair)
Need power at the campsite? This portable battery station has several days worth
The Hacker News
Cline CLI 2.3.0 Supply Chain Attack Installed OpenClaw on Developer Systems
ClickFix Campaign Abuses Compromised Sites to Deploy MIMICRAT Malware
Identity Cyber Scores: The New Metric Shaping Cyber Insurance in 2026
Ukrainian National Sentenced to 5 Years in North Korea IT Worker Fraud Case
FBI Reports 1,900 ATM Jackpotting Incidents Since 2020, $20M Lost in 2025
Former Google Engineers Indicted Over Trade Secret Transfers to Iran
PromptSpy Android Malware Abuses Gemini AI to Automate Recent-Apps Persistence
INTERPOL Operation Red Card 2.0 Arrests 651 in African Cybercrime Crackdown
Microsoft Patches CVE-2026-26119 Privilege Escalation in Windows Admin Center
ThreatsDay Bulletin: OpenSSL RCE, Foxit 0-Days, Copilot Leak, AI Password Flaws & 20+ Stories
BleepingComputer
PayPal discloses data breach that exposed user info for 6 months
Mississippi medical center closes all clinics after ransomware attack
FBI: Over $20 million stolen in surge of ATM malware attacks in 2025
Ukrainian gets 5 years for helping North Koreans infiltrate US firms
PromptSpy is the first known Android malware to use generative AI at runtime
Flaw in Grandstream VoIP phones allows stealthy eavesdropping
Google blocked over 1.75 million Play Store app submissions in 2025
CISA orders feds to patch actively exploited Dell flaw within 3 days
How infostealers turn stolen credentials into real identities
Nigerian man gets eight years in prison for hacking tax firms
gbhackers
Google Blocks 1.75 Million Malicious Apps from Entering Play Store
Grandstream VoIP Phones Vulnerability Grants Attackers Root Privileges
CharlieKirk Grabber Malware Targets Windows Systems to Steal Login Credentials
FBI Issues Emergency Alert as Ploutus Malware Drains U.S. ATMs Without Cards or Accounts
LLM-Generated Passwords Expose Security Risks with Predictability and Weakness
Google Rushes Out Critical Chrome Update to Address Serious PDFium and V8 Vulnerabilities
Hackers Exploit Critical BeyondTrust Vulnerability to Deploy VShell and SparkRAT
Ongoing Campaign Targets Microsoft 365 to Steal OAuth Tokens for Persistent Access
PromptSpy: First Android AI Malware Leverages Google’s Gemini for Decision-Making
AI Under Control: Link11 Launches AI Management Dashboard for Clean Traffic
Cybersecurity Dive
Palo Alto Networks CEO sees AI as demand driver, not a threat
AI’s ‘connective tissue’ is woefully insecure, Cisco warns
Identity and supply chain need more attention, risk intelligence firm says
Threat groups use AI to speed up and scale cyberattacks
Hackers exploit zero-day flaw in Dell RecoverPoint for Virtual Machines
Newly identified hacking groups provide access to OT environments
Data-only extortion grows as ransomware gangs seek better profits
When AI agent security controls are enough – and when they’re not
New security research finds governance determines trust in AI
Critical flaw in BeyondTrust Remote Support sees early signs of exploitation
Threatpost
Student Loan Breach Exposes 2.5M Records
Watering Hole Attacks Push ScanBox Keylogger
Tentacles of ‘0ktapus’ Threat Group Victimize 130 Firms
Ransomware Attacks are on the Rise
Cybercriminals Are Selling Access to Chinese Surveillance Cameras
Twitter Whistleblower Complaint: The TL;DR Version
Firewall Bug Under Active Attack Triggers CISA Warning
Fake Reservation Links Prey on Weary Travelers
iPhone Users Urged to Update to Patch 2 Zero-Days
Google Patches Chrome’s Fifth Zero-Day of the Year
The Register
Founder ditches AWS for Euro stack, finds sovereignty isn't plug-and-play
CISA gives federal agencies three days to patch actively exploited Dell bug
Ex-Google engineers accused of helping themselves to chip security secrets
Attackers have 16-digit card numbers, expiry dates, but not names. Should org get £500k fine?
Snyk CEO bails, wants someone with more AI experience to replace him
AI agents abound, unbound by rules or safety disclosures
Crims create fake remote management vendor that actually sells a RAT
Crims hit a $20M jackpot via malware-stuffed ATMs
Android malware taps Gemini to navigate infected devices
DEF CON bans three Epstein-linked men from future events
VentureBeat
How attackers hit 700 organizations through CX platforms your SOC already approved
Most ransomware playbooks don't address machine credentials. Attackers know it.
How to test OpenClaw without giving an autonomous agent shell access to your corporate laptop
Anthropic published the prompt injection failure rates that enterprise security teams have been asking every vendor for
How recruitment fraud turned cloud IAM into a $2 billion attack surface
OpenClaw proves agentic AI works. It also proves your security model doesn't. 180,000 developers just made that your problem.
Infostealers added Clawdbot to their target lists before most security teams knew it was running
TechCrunch
FBI says ATM ‘jackpotting’ attacks are on the rise, and netting hackers millions in stolen cash
Cellebrite cut off Serbia citing abuse of its phone unlocking tools. Why not others?
Google says its AI systems helped deter Play Store malware in 2025
Sex toys maker Tenga says hacker stole customer information
Bug in student admissions website exposed children’s personal information
Hacking conference Def Con bans three people linked to Epstein
Data breach at fintech giant Figure affects close to a million customers
This former Microsoft PM thinks she can unseat CyberArk in 18 months
Microsoft says Office bug exposed customers’ confidential emails to Copilot AI
Intellexa’s Predator spyware used to hack iPhone of journalist in Angola, research says
Network World Security
Western Digital wants to ramp-up hard disk drive speeds
LoRaWAN reaches 125 million devices as industrial IoT expands
Data stored in glass could last over 10,000 years, Microsoft says
Arista hints at in-the-works telemetry tools to manage AI fabrics
Spirent Luma brings agentic AI to network testing, slashes triage time
ECL targets AI data centers with fuel-agnostic power platform
Some enterprises are dropping VMware, just not all at once
Network jobs watch: Hiring, skills and certification trends
AI likely to put a major strain on global networks—are enterprises ready?
Palo Alto to acquire Israeli startup Koi for agentic AI security
Help Net Security
LLMs change their answers based on who’s asking
Criminals create business website to sell RAT disguised as RMM tool
Ex-Google engineers charged with orchestrating high-tech secrets extraction
Google cleans house, bans 80,000 developer accounts from the Play Store
Man gets five years for aiding North Korean IT employment scam
651 arrested, $4.3 million recovered in African cybercrime sweep
Security Compass brings policy-driven security and compliance to agentic AI development
The CISO view of fraud risk across the retail payment ecosystem
Applying green energy tax policies to improve cybersecurity
Quantum security is turning into a supply chain problem
SC Magazine
New malware-as-a-service fronts as legit RMM provider
Purpose-built AI agents will replace general-purpose promises
Thwarting today's threats with next-generation security technology
Firmware Backdoors Be Spying On You - PSW #914
Attacks on 2 critical Ivanti EPMM bugs surge worldwide
New cybersecurity initiative unveiled for local election officials
Federal court jails man in fraudulent tax refund scheme
Account hijacking, data theft likely with Foxit, Apryse flaws
Updated CISA vulnerabilities catalog adds Chrome, Zimbra, Windows, ThreatSonar flaws
Massive OpenClaw supply chain attack floods OpenClaw with malicious skills
© 2026 RiskDiscovery | Sponsored by: Deception Logic