[ News | Newsletters | Blogs | Lists | Media | Jobs ] HoneyDB
DarkReading
[Virtual Event] Anatomy of a Data Breach: What to Do if it Happens to You
Infosecurity Europe
Remembering Tim Wilson, Whose Legacy Lives on at Dark Reading
Akamai Joins Growing Chorus of Vendors Betting Big on Secure Enterprise Browsers
Verizon DBIR: Healthcare Fends Off Increased Social Engineering Attacks
China's Webworm Uses Discord, Microsoft Graphs to Hack EU Governments
Google API Keys Remain Active After Deletion
AI Agents Are Shifting Identity Security Budget Dynamics
Chinese APTs Share Linux Backdoor in Central Asia Telco Attacks
Content Delivery Exploit Opens Websites to Brand Hijacking
Ars Technica
US's big bet on quantum computing may not be entirely legal
Texas AG sues Meta over claims that WhatsApp doesn't provide end-to-end encryption
A hacker group is poisoning open source code at an unprecedented scale
US government takes $2 billion equity stake in nine quantum computing firms
Google publishes exploit code threatening millions of Chromium users
In stunning display of stupid, secret CISA credentials found in public GitHub repo
Zero-day exploit completely defeats default Windows 11 BitLocker protections
Cisco announces record revenue and 4,000 layoffs in the same day
Linux bitten by second severe vulnerability in as many weeks
Chaos erupts as cyberattack disrupts learning platform Canvas amid finals
CyberScoop
Anthropic: Mythos finds more than 10,000 software flaws in first month
FBI warns about fast-growing phishing kit targeting Microsoft 365 users
Alleged leader of Kimwolf, a sweeping botnet for cybercriminals, arrested in Canada
Lawmakers from both parties say CISA cuts have gone too far
Trump postpones executive order focused on AI security 
CISA chief frets about open-source vulnerabilities, delayed security improvements
European authorities take down prolific cybercrime VPN service
The readiness paradox: Why a false sense of cyber confidence is becoming a liability
Meet Rampart and Clarity, Microsoft’s new red team combo AI agents
GitHub says internal repositories were impacted in poisoned VS Code extension attack
InfoSecurity Magazine
Chinese Threat Actors Ditch Static Phishing Pages for Live Credential Interception
BTMOB Android RAT Spreads Through No-Code Builder Tooling
India's CERT-In Sets 12-Hour Patch Deadline for Exposed Flaws
Iran-Linked Hackers Target US Aviation with Phishing and SEO Poisoning Campaign
FBI Warns 'Kali365' Phishing Kit Hijacks Microsoft 365 OAuth Tokens
Fake Streams, Counterfeit Merch and Other Scams: How Fraudsters Target F1 Fans
Fake Gemini and Claude Code Sites Spread Infostealers Through SEO Poisoning
Apple Blocked $2.2bn in App Store Fraud in the Last Year
Cybercriminal VPN Dismantled in Europol Crackdown
GitHub Breach Traced to Malicious 'Nx Console' VS Code Extension
SecurityWeek
AppOmni’s Marlin AI Brings Autonomous Investigation to SaaS Security
Iranian APT Targets Aviation, Software Companies With Updated Tools
185,000 Likely Impacted by 7-Eleven Data Breach
Anthropic Expands Claude’s Enterprise Security Governance With 28 New Integrations
Hackers Exploited KnowledgeDeliver Zero-Day for Web Shell Deployment
Watch on Demand: Threat Detection & Incident Response Summit – All Sessions Available
Open Source DockSec Uses AI to Cut Through Vulnerability Noise in Docker Images
Lithuania Suspects Foreign Involvement in Data Leak of Over 600,000 National Register Entries
Admins of Bulletproof Hosting Service Used by Russian Hackers Arrested in Netherlands
Ghost CMS Vulnerability Exploited to Hack Over 700 Websites
ZDNet
I've used Chrome, Edge, and Safari for years - here's why Firefox is the better browser for most people
I quit ChatGPT for a free, private, and local AI called Ollama - here's why
I compared the 100x zoom cameras on Samsung, Google, and Motorola phones - this model won
I found the best Memorial Day Apple deals still available: Save on iPad, Apple Watch, and more
Last chance on Memorial Day laptop deals: Save on Apple, Dell, Lenovo, and more
How I make my solar panels last long enough to pay for themselves
Avoid these 8 solar mistakes that cut your power output in half - I learned the hard way
I wore Google's Fitbit Air for a week, and it gives the Whoop a serious run for its money
How I easily built my own Wi-Fi router with a Raspberry Pi - for Starlink and solar control
Is graphene heat dissipation in portable batteries legit? I cracked one open to find out
The Hacker News
MuddyWater Uses DLL Side-Loading in Espionage Campaign Targeting 9 Countries
[THN Webinar] New AI DDoS Attacks Are Smarter. Learn How to Fight Back
Microsoft Patches SharePoint RCE Flaw CVE-2026-45659 Across Server Versions
MFA Prompt Bombing: Why Your Second Factor Isn't Saving You
CERT-In Recommends 12-Hour Patching for Internet-Facing Flaws Amid AI-Assisted Attacks
Iranian Hackers Deploy MiniFast and MiniJunk V2 via Phishing and SEO Poisoning
KnowledgeDeliver LMS Flaw Exploited to Deploy Godzilla and Cobalt Strike
⚡ Weekly Recap: Linux Flaws, Defender 0-Days, Router Botnets, and Supply Chain Chaos
Ghost CMS CVE-2026-26980 Exploited to Hijack 700+ Sites for ClickFix Attacks
The Alert Firehose Finally Meets Its Match
BleepingComputer
How Varonis Atlas integrates Claude Compliance API for AI governance
Microsoft Defender can now automatically isolate hacked endpoints
Webinar: Too many tools are slowing network incident response
CISA orders feds to patch actively exploited Drupal vulnerability
Microsoft: Domain Controller lookup may fail on Windows Server 2016
7-Eleven data breach exposes personal information of 185,000 people
Anthropic’s restricted Claude Mythos model may be coming to Claude Code
FBI warns of Kali365 phishing service targeting Microsoft 365 accounts
Ghost CMS SQL injection flaw exploited in large-scale ClickFix campaign
Laravel Lang packages hijacked to deploy credential-stealing malware
gbhackers
CERT-In Mandates 12-Hour Patch Deadline for Internet-Facing Vulnerabilities
Quasar RAT Hits Developers With Fileless Linux Attacks
EU Regulators Prepare Landmark Fine Against Google Under Digital Markets Act
Angular Language Service Extension Flaws Allow Remote Code Execution
China-Linked Hackers Hit SEA Edge Routers With Custom Linux Implant
Memcached SASL Flaw Exposes Usernames to Enumeration Attacks
NightSpire Ransomware Abuses RDP for Stealthy Persistence
Ghost CMS Vulnerability Exploited to Infect 700 Sites With ClickFix Malware
Apache CXF Flaw Exposes Systems to LDAP Injection Attacks
Hackers Use SEO Poisoning to Fake Gemini CLI and Claude Code Installers
Cybersecurity Dive
Iranian government, not hacktivist group, breached LA Metro system, security firm says
FBI warns about PhaaS platform used to access Microsoft 365 environments
Iran-linked hackers target key US, allied sectors with sophisticated spear-phishing messages
New York regulator calls for additional cyber mitigation amid heightened threat environment
CISA asks cybersecurity community to alert it to vulnerability exploitation
Grafana Labs links GitHub environment breach to TanStack npm supply chain attack
7-Eleven hit by data breach
Microsoft disrupts cybercrime operation that hid behind legitimate software
Compromised coding tool helped hackers breach thousands of GitHub repositories
Telecom sector launches its own private ISAC
Threatpost
Student Loan Breach Exposes 2.5M Records
Watering Hole Attacks Push ScanBox Keylogger
Tentacles of ‘0ktapus’ Threat Group Victimize 130 Firms
Ransomware Attacks are on the Rise
Cybercriminals Are Selling Access to Chinese Surveillance Cameras
Twitter Whistleblower Complaint: The TL;DR Version
Firewall Bug Under Active Attack Triggers CISA Warning
Fake Reservation Links Prey on Weary Travelers
iPhone Users Urged to Update to Patch 2 Zero-Days
Google Patches Chrome’s Fifth Zero-Day of the Year
The Register
Experts pour cold borscht on Farage's Russian hack claim
Anthropic to release Mythos-class models to the public
AI eyes scanning for bugs create a worrisome Linux security trend
A Russian speaker and jailbroken Gemini went on a hacking spree and emptied at least one MAGA victim's crypto wallets
Megalodon chums the waters in 5.5K+ GitHub repo poisonings
Techie claims Trump Mobile website was leaking thousands of people's data
Cisco used AI to write security incident reports, with mixed results
Dems slam Trump for making cybersecurity hold out the tin cup while splurging on ballroom and Jan. 6 'slush fund'
Threat hunters find Google API keys still usable 23 minutes after deletion
HackerOne takes an axe to its bug bounty rewards
VentureBeat
Valid certificates, stolen accounts: how attackers broke npm's last trust signal
Americans can’t spot a deepfake, and that’s a business crisis, not just a consumer problem
MFA verifies who logged in. It has no idea what they do next.
GitHub confirms 3,800 internal repos stolen through poisoned VS Code extension as supply chain worm hits Microsoft’s Python SDK
Four AI supply-chain attacks in 50 days exposed the release pipeline red teams aren't covering
Agent authorization is broken — and authentication passing makes it worse
Protect your enterprise now from the Shai-Hulud worm and npm vulnerability in 6 actionable steps
TechCrunch
Dutch government blocks US company from acquisition, citing ‘risk to public interest’
Ghost hackers: the cybersecurity mystery that nobody has solved
Iranian hackers blamed for breach of Los Angeles transit system that took weeks to recover
7-Eleven data breach affects over 185,000 people’s personal data
These special phone and app features can help protect you from spyware
Kash Patel’s clothing brand website shut down after reports it was hacked
Trump Mobile confirms it exposed customers’ personal data, including phone numbers and home addresses
Law enforcement shuts down VPN service used by two dozen ransomware gangs
Scammers are abusing an internal Microsoft account to send spam links
Customers say Trump Mobile is leaking their personal information
Network World Security
Cisco redefines ‘job-ready’ for network engineers with its certification overhaul
2026 network outage report and internet health check
IBM plans $2B quantum chip foundry; government will pay half
Cisco: AI traffic is radically reshaping WANs
xAI-Anthropic deal signals the rise of AI compute as a standalone business
Critical vulnerability in Cisco Secure Workload rated at maximum severity
Cisco’s new certs are a wake-up call for AI-era network engineers
Microsoft plans significant update to Windows Secure Boot
Forward launches Predict to take the guesswork out of network changes
Network jobs watch: Hiring, skills and certification trends
Help Net Security
Anthropic: Claude Mythos identified 10,000+ software flaws
Chinese phishing gangs grow into a force to be reckoned with
Detectify brings AppSec automation to AI agents with MCP Server and continuous testing
Actively exploited Trend Micro Apex One flaw gets CISA warning (CVE-2026-34926)
Conifers rolls out AI-powered SOC for unified security operations and automated response
Personal information of 185,000 people exposed after cyberattack on 7-Eleven
Tamnoon introduces skill-based AI orchestration for autonomous cloud defense
High-severity SharePoint RCE bug patched by Microsoft (CVE-2026-45659)
What happens when security teams inherit identity
Product showcase: F-Secure Internet Security blocks phishing sites, fake stores, and SMS scams
SC Magazine
RondoDox botnet exploits old ASUS router vulnerability
AppSec Conversations on Agents, LLMs, and OWASP from RSAC - Scott Clinton, Janet Worthington, Merritt Maxim - ASW #384
Visibility with EDR/MDR is still important, 'the basics' are impossible, and the news - Rob Allen - ESW #460
Ubiquiti patches three critical vulnerabilities in UniFi OS
Cisco warns of AI inaccuracies in security incident reports
Organizations knowingly ship vulnerable code amid shrinking exploit windows
Kash Patel's merchandise site hacked to distribute malware
TVs, Old York, Flipper One, Ubiquity, Underminr, CISOs, GitHub, Josh Marpet... - SWN #583
Zscaler acquires Symmetry Systems to enhance AI security
Belarus-linked Ghostwriter group targets Ukraine using Prometheus learning platform lures
© 2026 RiskDiscovery | Sponsored by: Deception Logic