[ News | Newsletters | Blogs | Lists | Media | Jobs ] HoneyDB
DarkReading
AI in the SOC: What Could Go Wrong?
Trivy Supply Chain Attack Targets CI/CD Secrets
Ransomware's New Era: Moving at AI Speed
CISOs Debate Human Role in AI-Powered Security
Attackers Hide Infostealer in Copyright Infringement Notices
AI Dominates RSAC Innovation Sandbox
Patch Now: Oracle's Fusion Middleware Has Critical RCE Flaw
Cyber OpSec Fail: Beast Gang Exposes Ransomware Server
Interlock Ransomware Targets Cisco Enterprise Firewalls
AI Conundrum: Why MCP Security Can't Be Patched Away
Ars Technica
Widely used Trivy scanner compromised in ongoing supply-chain attack
Cloud service providers ask EU regulator to reinstate VMware partner program
Federal cyber experts called Microsoft's cloud a "pile of shit," approved it anyway
Researchers disclose vulnerabilities in IP KVMs from four manufacturers
Supply-chain attack using invisible code hits GitHub and other repositories
The who, what, and why of the attack that has shut down Stryker's Windows network
14,000 routers are infected by malware that's highly resistant to takedowns
Feds take notice of iOS vulnerabilities exploited under mysterious circumstances
Amazon appears to be down, with over 20,000 reported problems
Trump gets data center companies to pledge to pay for power generation
CyberScoop
Experts insist Trump administration’s cyber strategy is already paying off
State officials, election experts question California sheriff’s seizure of ballots
FBI: Iranian hackers targeting opponents with Telegram malware
An AI-powered phishing campaign has compromised hundreds of organizations
The phone call is the new phishing email
FBI, CISA issue PSA on Russian intelligence campaign to target messaging apps
Trio sentenced for facilitating North Korean IT worker scheme from their homes
Ubiquiti defect poses account takeover risk for UniFi Networking Application users
Justice Department disrupts botnet networks that hijacked 3 million devices
North Carolina tech worker found guilty of insider attack netting $2.5M ransom
InfoSecurity Magazine
Handala Group Tied to Iranian Hack‑and‑Leak Operations, FBI Reveals
Most Cybersecurity Staff Don’t Know How Fast They Could Stop a Cyber-Attack on AI Systems
Tycoon2FA Phishing Service Resumes Activity Post-Takedown
High-Tech Sector Overtakes Finance as Top Target for Cyber-Attacks, Mandiant Reports
Trivy Supply Chain Attack Expands With New Compromised Docker Images
CISA Orders US Government to Patch Maximum Severity Cisco Flaw
Operation Alice Takes Down 370,000+ Dark Web Sites
Hackers Exploit Critical Langflow Bug in Just 20 Hours
NCA Boss Warns That Teens Are Being “Radicalized” Into Cybercrime Online
Ransomware Affiliate Exposes Details of 'The Gentlemen' Operation
SecurityWeek
RSAC 2026 Conference Announcements Summary (Pre-Event)
M-Trends 2026: Initial Access Handoff Shrinks From Hours to 22 Seconds
Chip Services Firm Trio-Tech Says Subsidiary Hit by Ransomware 
Aqua’s Trivy Vulnerability Scanner Hit by Supply Chain Attack
QNAP Patches Four Vulnerabilities Exploited at Pwn2Own 
Tycoon 2FA Fully Operational Despite Law Enforcement Takedown
Oracle Releases Emergency Patch for Critical Identity Manager Vulnerability
Critical Quest KACE Vulnerability Potentially Exploited in Attacks
In Other News: New Android Safeguards, Operation Alice, UK Toughens Cyber Reporting
3 Men Charged With Conspiring to Smuggle US Artificial Intelligence to China
ZDNet
I replaced my Sonos Era speakers with an unlikely alternative - and didn't miss a beat
Opera GX for Linux is way more than great gaming browser - here's why
1 in 2 security leaders say they're not ready for AI attacks - 4 actions to take now
Can you trust Firefox's new free VPN for all browser users? What you need to know
It's possible to switch password managers without losing a single login - and I'm proof
Your iPhone has a secret button that's seriously useful - here's how to unlock it
This 205W GaN adapter has effectively replaced my other travel chargers
Stop paying for cable: How to access over 1,000 free streaming channels today
I tested a Samsung Galaxy Z Fold 7 rival with a design I didn't think was ever possible
How high of a refresh rate does your TV really need? An expert's buying advice
The Hacker News
U.S. Sentences Russian Hacker to 6.75 Years for Role in $9M Ransomware Damage
Citrix Urges Patching Critical NetScaler Flaw Allowing Unauthenticated Data Leaks
North Korean Hackers Abuse VS Code Auto-Run Tasks to Deploy StoatWaffle Malware
⚡ Weekly Recap: CI/CD Backdoor, FBI Buys Location Data, WhatsApp Ditches Numbers & More
We Found Eight Attack Vectors Inside AWS Bedrock. Here's What Attackers Can Do with Them
Microsoft Warns IRS Phishing Hits 29,000 Users, Deploys RMM Malware
Trivy Hack Spreads Infostealer via Docker, Triggers Worm and Kubernetes Wiper
Hackers Exploit CVE-2025-32975 (CVSS 10.0) to Hijack Unpatched Quest KACE SMA Systems
FBI Warns Russian Hackers Target Signal, WhatsApp in Mass Phishing Attacks
Oracle Patches Critical CVE-2026-21992 Enabling Unauthenticated RCE in Identity Manager
BleepingComputer
OpenAI rolls out ChatGPT Library to store your personal files
Mazda discloses security breach exposing employee and partner data
Tycoon2FA phishing platform returns after recent police disruption
TeamPCP deploys Iran-targeted wiper in Kubernetes attacks
Crunchyroll probes breach after hacker claims to steal 6.8M users' data
Trivy supply-chain attack spreads to Docker, GitHub repos
Varonis Atlas: Securing AI and the Data That Powers It
Microsoft Exchange Online service change causes email access issues
FBI warns of Handala hackers using Telegram in malware attacks
CISA orders feds to patch DarkSword iOS flaws exploited attacks
gbhackers
Threat Actors Target MS-SQL Servers to Deploy ICE Cloud Scanner Malware
Gcore Radar report reveals 150% surge in DDoS attacks year-on-year
Russian Access Broker Jailed for Facilitating Ransomware Attacks Targeting U.S. Companies
Google Forms Job Scam Spreads PureHVNC Malware
Founder of CoinDCX Arrested Amid Serious Fraud and Cheating Charges
Microsoft Unveils New GenAI Security Protections in Azure AI Foundry
NIST Releases Quick-Start Guide Linking Cybersecurity, Enterprise Risk, and Workforce Management
New Leak Site Tied to Active Initial Access Broker Emerges on Underground Forums
Roundcube Releases Urgent Security Update to Fix Critical Bugs
SilentConnect Uses Fake Invites to Deploy ScreenConnect RAT
Cybersecurity Dive
ISACs confront AI’s promise and peril for threat intelligence-sharing
AI poised to most help low-skilled hackers in the near term
Lockheed Martin targeted in alleged breach by pro-Iran hacktivist
Stryker confirms cyberattack is contained and restoration underway
Network edge devices still widely used after reaching end-of-life status
Companies know AI is essential for cyber defense but aren’t yet seeing returns
US, allies move to dismantle four high-volume IoT botnets
DOJ confirms seizure of domains linked to Iran-backed threat actor
Water utilities need hands-on cybersecurity help, not just free guidance, pilot program finds
CISA urges organizations to harden endpoint security following Stryker attack
Threatpost
Student Loan Breach Exposes 2.5M Records
Watering Hole Attacks Push ScanBox Keylogger
Tentacles of ‘0ktapus’ Threat Group Victimize 130 Firms
Ransomware Attacks are on the Rise
Cybercriminals Are Selling Access to Chinese Surveillance Cameras
Twitter Whistleblower Complaint: The TL;DR Version
Firewall Bug Under Active Attack Triggers CISA Warning
Fake Reservation Links Prey on Weary Travelers
iPhone Users Urged to Update to Patch 2 Zero-Days
Google Patches Chrome’s Fifth Zero-Day of the Year
The Register
Claude attacks were 'Rorschach test' for infosec community, scaring former NSA boss
Public-private partnerships vital in disrupting China's Typhoons, says RSA panel with no government speakers
Lightning-fast exploits make it essential to patch fast, ask questions later
Google unleashes Gemini AI agents on the dark web
Smooth criminals talking their way into cloud environments, Google says
US chip testing firm shrugged off ransomware hit as minor – then came the data leak
RSAC 2026: Uncle Sam backs out, and AI agents are everywhere
Microsoft fixes broken Windows update days after vowing fewer broken updates
The drone swarm is coming, and NATO air defenses are too expensive to cope
Russians are posing as Signal support to launch phishing attacks
VentureBeat
Meta's rogue AI agent passed every identity check — four gaps in enterprise IAM explain why
The authorization problem that could break enterprise AI
Nvidia's agentic AI stack is the first major platform to ship with security at launch, but governance gaps remain
OpenClaw can bypass your EDR, DLP and IAM without triggering a single alert
Anthropic and OpenAI just exposed SAST's structural blind spot with free tools
Enterprise identity was built for humans — not AI agents
Microsoft says ungoverned AI agents could become corporate 'double agents.' Its fix costs $99 a month.
TechCrunch
Delve halts demos, Insight Partners scrubs investment post amid ‘fake compliance’ allegations
Someone has publicly leaked an exploit kit that can hack millions of iPhones
Russian authorities block paywall removal site Archive.today
FBI says Iranian hackers are using Telegram to steal data in malware attacks
Federal immigration agents filmed making airport arrests as Trump calls in ICE to ease security line delays
Delve accused of misleading customers with ‘fake compliance’
A French Navy officer accidentally leaked the location of an aircraft carrier by logging his run on Strava
US accuses Iran’s government of operating hacktivist group that hacked Stryker
Cyberattack on vehicle breathalyzer company leaves drivers stranded across the US
FBI seizes pro-Iranian hacking group’s websites after destructive Stryker hack
Network World Security
Cisco: Latest news and insights
Palo Alto updates security platform to discover AI agents
Nvidia: Latest news and insights
Cisco goes all in on agentic AI security
Cisco Talos 2025 year in review and lessons learned
Nvidia overhauls the data center for OpenClaw era
Nile adds microsegmentation and native NAC to its secure NaaS platform
IDC: Dell leads server market driven by AI infrastructure needs
Cloud providers seek to shape European sovereignty legislation
Telnet vulnerability opens door to remote code execution as root
Help Net Security
Cisco builds security framework for safe enterprise adoption of AI agents
GitHub just made it much harder to ship a vulnerable pull request
RSA ID Plus Sovereign Deployment delivers full-stack identity for high-risk environments
Palo Alto Networks’ Prisma AIRS 3.0 closes visibility gaps in autonomous AI systems
Relyance AI’s Lyo addresses data security gaps in autonomous systems
Hadrian unveils Nova, enabling continuous, AI-powered offensive security testing
Measuring security performance in real-time, not once a quarter
Attackers are handing off access in 22 seconds, Mandiant finds
Product showcase: Cross-platform and third-party endpoint patching with Action1
Cybersecurity jobs available right now: March 24, 2026
SC Magazine
RSAC 2026 Day 1: First Impressions and Early Themes - RSAC26 #1
Cloning Attacker Tradecraft: Why AI Pentesting is Becoming Essential - Ido Geffen - RSAC26 #1
AI-related job cuts mostly hit entry-level roles, as AI skills become essential
Downtime: The New Economic Threat - Christy Wyatt - RSAC26 #1
Privileged by Design: AI Agents and the New Identity Risk to Production Systems - Shashwat Sehgal - RSAC26 #1
Scripted Sparrow: A Prolific BEC Group - John Wilson - RSAC26 #1
Delinea: Redefining Identity Security for the Agentic AI Era - Phil Calvin - RSAC26 #1
Introducing Legion Investigator: Goal-Oriented AI Investigations - Ely Abramovich - RSAC26 #1
The SDLC Blind Spot: Why Breaches Start with Identity, Not Code - Raj Mallempati - RSAC26 #1
Tanium's Tim Morrison on real-time endpoint intelligence in the age of AI
© 2026 RiskDiscovery | Sponsored by: Deception Logic