[ News | Newsletters | Blogs | Reddits | Lists | Media | Jobs ] HoneyDB
DarkReading
Undocumented Radios Found in Solar-Powered Devices
Vyro AI Leak Reveals Poor Cyber Hygiene
'Gentlemen' Ransomware Abuses Vulnerable Driver to Kill Security Gear
Apple CarPlay RCE Exploit Left Unaddressed in Most Cars
F5 to Acquire CalypsoAI for Advanced AI Security Capabilities
AI-Enhanced Malware Sports Super-Stealthy Tactics
Vidar Infostealer Back With a Vengeance
Cyberattack on Kazakhstan's Largest Oil Company Was 'Simulation'
'K2 Think' AI Model Jailbroken Mere Hours After Release
Students Pose Inside Threat to Education Sector
Ars Technica
OpenAI and Microsoft sign preliminary deal to revise partnership terms
35 percent of VMware workloads expected to migrate elsewhere by 2028
Senator blasts Microsoft for making default Windows vulnerable to “Kerberoasting”
Developers joke about “coding like cavemen” as AI service suffers major outage
Microsoft ends OpenAI exclusivity in Office, adds rival Anthropic
Claude’s new AI file-creation feature ships with security risks built in
SAP warns of high-severity vulnerabilities in multiple products
Why accessibility might be AI’s biggest breakthrough
Software packages with more than 2 billion weekly downloads hit in supply-chain attack
Former WhatsApp security boss in lawsuit likens Meta’s culture to a “cult”
CyberScoop
CISA work not ‘degraded’ by Trump administration cuts, top agency official says
F5 to acquire AI security firm CalypsoAI for $180 million
Wyden calls on FTC to investigate Microsoft for ‘gross cybersecurity negligence’ in protecting critical infrastructure
China’s ‘Typhoons’ changing the way FBI hunts sophisticated threats
Three states team up in investigative sweep of companies flouting data opt-out laws
The npm incident frightened everyone, but ended up being nothing to fret about
Acting federal cyber chief outlines his three priorities for the next year
Apple’s new Memory Integrity Enforcement system deals a huge blow to spyware developers
Critical infrastructure security tech needs to be as good as our smartphones, top NSC cyber official says
Microsoft Patch Tuesday addresses 81 vulnerabilities, none actively exploited
HITBSecNews
Found on VirusTotal: The world’s first UEFI bootkit for Linux
OpenAI is at war with its own Sora video testers following brief public leak
North Korean hackers posing as IT workers steal over $1B in cyberattack
WhatsApp: NSO Group Operates Pegasus Spyware for Customers
Korea extradites Russian, Vietnamese suspects linked to $16M ransomware scheme
CISA Director Jen Easterly, in Place Since 2021, to Step Down
Man sick of crashes sues Intel for allegedly hiding CPU defects
North Korean hackers target cryptocurrency with malware
Law enforcement operation takes down 22,000 malicious IP addresses worldwide
Youth of today say passwords are old news, passkeys are the future
ZDNet
I used Google Lens to identify my weirdest junk drawer items - here's how it did
These popular free VPNs all share the same shady security practices - here's why
Why IPVanish is going RAM-only - and what it means for your privacy and data
Apple iPhone 17 event recap: iPhone Air preorders, Apple Watch 11, AirPods Pro 3, more
I did 24 days of coding in 12 hours with a $20 AI tool - but there's one big pitfall
Preorder the iPhone 17 at AT&T and get up to $1,100 off right now - how the deal works
The best Garmin watches of 2025: Expert tested and reviewed
The 5 best iPads of 2025: We've tested every iPad available - these are the best ones
T-Mobile will give you a free iPhone 17 Pro with this preorder deal - how to qualify
The best laptops under $1,000 of 2025: Expert tested and reviewed
The Hacker News
New HybridPetya Ransomware Bypasses UEFI Secure Boot With CVE-2024-7344 Exploit
Critical CVE-2025-5086 in DELMIA Apriso Actively Exploited, CISA Issues Warning
Cloud-Native Security in 2025: Why Runtime Visibility Must Take Center Stage
Cursor AI Code Editor Flaw Enables Silent Code Execution via Malicious Repositories
Google Pixel 10 Adds C2PA Support to Verify AI-Generated Media Authenticity
Senator Wyden Urges FTC to Probe Microsoft for Ransomware-Linked Cybersecurity Negligence
SonicWall SSL VPN Flaw and Misconfigurations Actively Exploited by Akira Ransomware Hackers
Cracking the Boardroom Code: Helping CISOs Speak the Language of Business
Fake Madgicx Plus and SocialMetrics Extensions Are Hijacking Meta Business Accounts
AsyncRAT Exploits ConnectWise ScreenConnect to Steal Credentials and Crypto
BleepingComputer
Man gets over 4 years in prison for selling unreleased movies
Samsung patches actively exploited zero-day reported by WhatsApp
Microsoft fixes Exchange Online outage affecting users worldwide
U.S. Senator accuses Microsoft of “gross cybersecurity negligence”
Apple warns customers targeted in recent spyware attacks
Panama Ministry of Economy discloses breach claimed by INC ransomware
Microsoft adds malicious link warnings to Teams private chats
Akira ransomware exploiting critical SonicWall SSLVPN bug again
New VMScape attack breaks guest-host isolation on AMD, Intel CPUs
The Buyer’s Guide to Browser Extension Management
Cybersecurity Dive
UK cyber leader calls for shift in focus toward continuity of critical services
How the retail sector teams up to defend against cybercrime
Senior NSC official said US needs to embrace offensive cyber
Ransomware insurance losses spike despite fewer claims: Resilience
National cyber director says US must shift risk burden toward adversaries
Mitsubishi Electric agrees to buy Nozomi Networks in deal valued at about $1B
How AI and politics hampered the secure open-source software movement
Bridgestone Americas continues probe as it looks to restore operations
Salesloft platform integration restored after probe reveals monthslong GitHub account compromise
Data security gaps stymy enterprise AI plans
Threatpost
Student Loan Breach Exposes 2.5M Records
Watering Hole Attacks Push ScanBox Keylogger
Tentacles of ‘0ktapus’ Threat Group Victimize 130 Firms
Ransomware Attacks are on the Rise
Cybercriminals Are Selling Access to Chinese Surveillance Cameras
Twitter Whistleblower Complaint: The TL;DR Version
Firewall Bug Under Active Attack Triggers CISA Warning
Fake Reservation Links Prey on Weary Travelers
iPhone Users Urged to Update to Patch 2 Zero-Days
Google Patches Chrome’s Fifth Zero-Day of the Year
The Register
1,200 undergrads hung out to dry after jailbreak attack on laundry machines
Privacy activists warn digital ID won’t stop small boats – but will enable mass surveillance
Hack to school: Parents told to keep their little script kiddies in line
Huntress's 'hilarious' attacker surveillance splits infosec community
We're number 1! America now leads the world in surveillanceware investment
Hijacker helper VoidProxy boosts Google, Microsoft accounts on demand
AI-powered penetration tool, an attacker's dream, downloaded 10K times in 2 months
Anti-DDoS outfit walloped by record packet flood
Spectre haunts CPUs again: VMSCAPE vulnerability leaks cloud secrets
Senator blasts Microsoft for 'dangerous, insecure software' that helped pwn US hospitals
VentureBeat
TechCrunch
Apple’s latest iPhone security feature just made life more difficult for spyware makers
France says Apple notified victims of new spyware attacks
Kids in the UK are hacking their own schools for dares and notoriety
Vibe coding? Meet vibe security
Jaguar Land Rover says data stolen in disruptive cyberattack
Google’s former security leads raise $13M to fight email threats before they reach you
Plex urges users to change passwords after data breach
Netskope follows Rubrik as a rare cybersecurity IPO, both backed by Lightspeed
VC giant Insight Partners notifies staff and limited partners after data breach
Signal introduces free and paid backup plans for your chats
Network World Security
There are 121 AI processor companies. How many will succeed?
F5 to acquire CalypsoAI for advanced AI security capabilities
HomeLM: A foundation model for ambient AI
Google enlists new ‘free’ data transfer service as the EU Data Act deadline approaches
Microsoft finds possible solution to Azure capacity issues
Nvidia: Latest news and insights
Cisco’s Splunk embeds agentic AI into security and observability products
New life for the mainframe: AI cost savings materialize, modernization efforts pay off
Cadence adds Nvidia to digital twin tool for data center design
Nvidia rolls out new GPUs for AI inferencing, large workloads
Help Net Security
CISA looks to partners to shore up the future of the CVE Program
HCL AppScan 360º 2.0 protects software supply chains
Sublime Security enhances threat protection with AI agent
Your heartbeat could reveal your identity, even in anonymized datasets
CISOs brace for a new kind of AI chaos
Attackers are coming for drug formulas and patient data
Ransomware, vendor outages, and AI attacks are hitting harder in 2025
New infosec products of the week: September 12, 2025
Akira ransomware affiliates continue breaching organizations via SonicWall firewalls
F5 moves to secure generative AI with CalypsoAI acquisition
InfoSecurity Magazine
Attackers Adopting Novel LOTL Techniques to Evade Detection
France Warns Apple Users of New Spyware Campaign
ICO Warns of Student-Led Data Breaches in UK Schools
CISA Launches Roadmap for the CVE Program
Fileless Malware Deploys Advanced RAT via Legitimate Tools
Wyden Urges FTC Investigation Over Ascension Ransomware Hack
Chinese APT Actor Compromises Military Firm with Novel Fileless Malware Toolset
France: Three Regional Healthcare Agencies Targeted by Cyber-Attacks
Ukrainian Ransomware Fugitive Added to Europe’s Most Wanted
LNER Reveals Supply Chain Attack Compromised Customer Information
© 2025 RiskDiscovery | Sponsored by: Deception Logic