[ News | Newsletters | Blogs | Lists | Media | Jobs ] HoneyDB
DarkReading
[Virtual Event] Shields Up: Key Technologies Reshaping Cybersecurity Defenses
Connected and Compromised: When IoT Devices Turn Into Threats
More Than 40% of South Africans Were Scammed in 2025
Scam Abuses Gemini Chatbots to Convince People to Buy Fake Crypto
Critical Grandstream VoIP Bug Highlights SMB Security Blind Spot
Threat Intelligence Has a Human-Shaped Blind Spot
Dell's Hard-Coded Flaw: A Nation-State Goldmine
A CISO's Playbook for Defending Data Assets Against AI Scraping
Singapore & Its 4 Major Telcos Fend Off Chinese Hackers
Supply Chain Attack Embeds Malware in Android Devices
Ars Technica
Password managers' promise that they can't see your vaults isn't always true
Most VMware users still "actively reducing their VMware footprint," survey finds
Retraction: After a routine code rejection, an AI agent published a hit piece on someone by name
OpenAI sidesteps Nvidia with unusually fast coding model on plate-sized chips
Attackers prompted Gemini over 100,000 times while trying to clone it, Google says
Once-hobbled Lumma Stealer is back with lures that are hard to resist
OpenAI researcher quits over ChatGPT ads, warns of "Facebook" path
Sixteen Claude AI agents working together created a new C compiler
Malicious packages for dYdX cryptocurrency exchange empties user wallets
AI companies want you to stop chatting with bots and start managing them
CyberScoop
 FBI: Threats from Salt Typhoon are ‘still very much ongoing’
HHS burrows into identifying risks to health sector from third-party vendors
ONCD official says Trump administration aims to bolster AI use for defense without increasing risk
The Caracas operation suggests cyber was part of the plan – just not the whole operation
Nigerian man sentenced to 8 years in prison for running phony tax refund scheme
Fulton County lawsuit claims feds used ‘gross mischaracterizations’ to justify raid
Chinese hackers exploited a Dell zero-day for 18 months before anyone noticed
Polish authorities arrest alleged Phobos ransomware affiliate
Palo Alto Networks’ Koi acquisition is all about keeping AI agents in check
Citizen Lab links Cellebrite to the hacking of a Kenyan presidential candidate’s phone
InfoSecurity Magazine
Remcos RAT Expands Real-Time Surveillance Capabilities
Industrial-Scale Fake Coretax Apps Drive $2m Fraud in Indonesia
Industrial Control System Vulnerabilities Hit Record Highs
Starkiller: New ‘Commercial-Grade’ Phishing Kit Bypasses MFA
Flaws in Popular Software Development App Extensions Allow Data Exfiltration
Researchers Reveal Six New OpenClaw Vulnerabilities
Cryptojacking Campaign Exploits Driver to Boost Monero Mining
AI Assistants Used as Covert Command-and-Control Relays
Record Number of Ransomware Victims and Groups in 2025
Chinese APT Group Exploits Dell Zero-Day for Two Years
SecurityWeek
French Government Says 1.2 Million Bank Accounts Exposed in Breach
Nearly 1 Million User Records Compromised in Figure Data Breach
Venice Security Emerges From Stealth With $33M Funding for Privileged Access Management
Ivanti Exploitation Surges as Zero-Day Attacks Traced Back to July 2025
OpenClaw Security Issues Continue as SecureClaw Open Source Tool Debuts
German Rail Giant Deutsche Bahn Hit by Large-Scale DDoS Attack
New Keenadu Android Malware Found on Thousands of Devices
Cogent Security Raises $42 Million for AI-Driven Vulnerability Management
Vulnerabilities in Popular PDF Platforms Allowed Account Takeover, Data Exfiltration
CISA: Hackers Exploiting Vulnerability in Product of Taiwan Security Firm TeamT5
ZDNet
You can get a new iPhone 13 for just $99 at Walmart - here's how
Half of all cyberattacks start in your browser: 10 essential tips for staying safe
Why I always encrypt my web browsing - and the top free secure DNS services I trust
Google's Gemini 3.1 Pro is here, and it just doubled its reasoning score
This new Windows 11 taskbar tool lets you test your internet speed in seconds - how to try it
The best way to transfer to a new MacBook is faster (and cheaper) than you'd think
These $60 earbuds changed my mind about budget headphones
I tested Chrome's soon-to-be-released vertical tab feature, and it makes the browser so much better
I've used Windows for decades, but I tried Linux to see if it's truly 'easy' now - and one thing surprised me
Edge just got a useful AI tool that Chrome doesn't have - here's how to try it
The Hacker News
PromptSpy Android Malware Abuses Gemini AI to Automate Recent-Apps Persistence
INTERPOL Operation Red Card 2.0 Arrests 651 in African Cybercrime Crackdown
Microsoft Patches CVE-2026-26119 Privilege Escalation in Windows Admin Center
ThreatsDay Bulletin: OpenSSL RCE, Foxit 0-Days, Copilot Leak, AI Password Flaws & 20+ Stories
From Exposure to Exploitation: How AI Collapses Your Response Window
Fake IPTV Apps Spread Massiv Android Malware Targeting Mobile Banking Users
CRESCENTHARVEST Campaign Targets Iran Protest Supporters With RAT Malware
Citizen Lab Finds Cellebrite Tool Used on Kenyan Activist’s Phone in Police Custody
Grandstream GXP1600 VoIP Phones Exposed to Unauthenticated Remote Code Execution
Critical Flaws Found in Four VS Code Extensions with Over 125 Million Installs
BleepingComputer
Flaw in Grandstream VoIP phones allows stealthy eavesdropping
Google blocked over 1.75 million Play Store app submissions in 2025
CISA orders feds to patch actively exploited Dell flaw within 3 days
How infostealers turn stolen credentials into real identities
Nigerian man gets eight years in prison for hacking tax firms
Texas sues TP-Link over Chinese hacking risks, user deception
Hackers target Microsoft Entra accounts in device code vishing attacks
Police arrests 651 suspects in African cybercrime crackdown
New 'Massiv' Android banking malware poses as an IPTV app
Critical infra Honeywell CCTVs vulnerable to auth bypass flaw
gbhackers
AI Under Control: Link11 Launches AI Management Dashboard for Clean Traffic
China’s Parallel CVE Systems Expose Alternate Vulnerability Disclosure Timeline
Citizen Lab Finds Evidence of Mobile Data Extraction from Detained Kenyan Activist
Researchers Uncover DoS Vulnerabilities in Socomec DIRIS M-70 IIoT Power Meter via Thread Emulation & Fuzzing
Microsoft Defender Introduces Centralized Script Library Powered by Copilot for Live Response
CISA Alerts Organizations to Honeywell CCTV Flaw Enabling Account Takeovers
Threat Actors Using Fake Google Forms Site to Harvest Google Logins
Hackers Hide Malware in Emoji-Based Code to Bypass Security Defenses
Hackers Abuse nslookup.exe in ClickFix Campaign to Deliver Malware via DNS
Stealthy Crypto-Mining Malware Jumps Air-Gaps, Spreads via External Drives
Cybersecurity Dive
Palo Alto Networks CEO sees AI as demand driver, not a threat
AI’s ‘connective tissue’ is woefully insecure, Cisco warns
Identity and supply chain need more attention, risk intelligence firm says
Threat groups using AI to speed up and scale cyberattacks
Hackers exploit zero-day flaw in Dell RecoverPoint for Virtual Machines
Newly identified hacking groups provide access to OT environments
Data-only extortion grows as ransomware gangs seek better profits
When AI agent security controls are enough – and when they’re not
New security research finds governance determines trust in AI
Critical flaw in BeyondTrust Remote Support sees early signs of exploitation
Threatpost
Student Loan Breach Exposes 2.5M Records
Watering Hole Attacks Push ScanBox Keylogger
Tentacles of ‘0ktapus’ Threat Group Victimize 130 Firms
Ransomware Attacks are on the Rise
Cybercriminals Are Selling Access to Chinese Surveillance Cameras
Twitter Whistleblower Complaint: The TL;DR Version
Firewall Bug Under Active Attack Triggers CISA Warning
Fake Reservation Links Prey on Weary Travelers
iPhone Users Urged to Update to Patch 2 Zero-Days
Google Patches Chrome’s Fifth Zero-Day of the Year
The Register
Crims hit a $20M jackpot via malware-stuffed ATMs
Android malware taps Gemini to navigate infected devices
DEF CON bans three Epstein-linked men from future events
UK to demand social platforms take down abusive intimate images within 48 hours
Healthcare security: Write login details on whiteboard, hope for the best
Poland bans camera-packing cars made in China from military bases
Adidas investigates third-party data breach after criminals claim they pwned the sportswear giant
ShinyHunters claims it drove off with 1.7M CarGurus records
Fraudster hacked hotel system, paid 1 cent for luxury rooms, Spanish cops say
Texas sues TP-Link over China links and security vulnerabilities
VentureBeat
How attackers hit 700 organizations through CX platforms your SOC already approved
Most ransomware playbooks don't address machine credentials. Attackers know it.
How to test OpenClaw without giving an autonomous agent shell access to your corporate laptop
Anthropic published the prompt injection failure rates that enterprise security teams have been asking every vendor for
How recruitment fraud turned cloud IAM into a $2 billion attack surface
OpenClaw proves agentic AI works. It also proves your security model doesn't. 180,000 developers just made that your problem.
Infostealers added Clawdbot to their target lists before most security teams knew it was running
TechCrunch
Sex toys maker Tenga says hacker stole customer information
Bug in student admissions website exposed children’s personal information
Hacking conference Def Con bans three people linked to Epstein
Data breach at fintech giant Figure affects close to a million customers
This former Microsoft PM thinks she can unseat CyberArk in 18 months
Microsoft says Office bug exposed customers’ confidential emails to Copilot AI
Intellexa’s Predator spyware used to hack iPhone of journalist in Angola, research says
European Parliament blocks AI on lawmakers’ devices, citing security risks
Homeland Security reportedly sent hundreds of subpoenas seeking to unmask anti-ICE accounts
Indian pharmacy chain giant exposed customer data and internal systems
Network World Security
Western Digital wants to ramp-up hard disk drive speeds
LoRaWAN reaches 125 million devices as industrial IoT expands
Data stored in glass could last over 10,000 years, Microsoft says
Arista hints at in-the-works telemetry tools to manage AI fabrics
Spirent Luma brings agentic AI to network testing, slashes triage time
ECL targets AI data centers with fuel-agnostic power platform
Some enterprises are dropping VMware, just not all at once
Network jobs watch: Hiring, skills and certification trends
AI likely to put a major strain on global networks—are enterprises ready?
Palo Alto to acquire Israeli startup Koi for agentic AI security
Help Net Security
Microsoft reveals critical Windows Admin Center vulnerability (CVE-2026-26119)
Simbian AI Pentest Agent delivers continuous, context-aware penetration testing
Poland restricts Chinese-made cars at protected military sites
Data on 1.2 million French bank accounts accessed in registry breach
Adidas investigates alleged data breach affecting 815,000 records
Bug in widely used VoIP phones allows stealthy network footholds, call interception (CVE-2026-2329)
PromptSpy: First Android malware to use generative AI in its execution flow
Men sentenced to 8 years in $1.3 million computer intrusion and tax fraud scheme
UK sounds alarm on rising cyber risks to businesses
Microsoft signals breakthrough in data storage that can last for generations
SC Magazine
Attacks on 2 critical Ivanti EPMM bugs surge worldwide
New cybersecurity initiative unveiled for local election officials
Federal court jails man in fraudulent tax refund scheme
Account hijacking, data theft likely with Foxit, Apryse flaws
Updated CISA vulnerabilities catalog adds Chrome, Zimbra, Windows, ThreatSonar flaws
Massive OpenClaw supply chain attack floods OpenClaw with malicious skills
Third-party hack probed by Adidas amid data theft assertions
Cyberattack refuted by Safran Group after alleged data leak
Almost 1M accounts affected by Figure breach
CarGurus purportedly breached by ShinyHunters
© 2026 RiskDiscovery | Sponsored by: Deception Logic