[ News | Newsletters | Blogs | Reddits | Lists | Media | Jobs ] HoneyDB
DarkReading
The Quiet Revolution in Kubernetes Security
Dormant macOS Backdoor ChillyHell Resurfaces
Southeast Asian Scam Centers Face More Financial Sanctions
EoP Flaws Again Lead Microsoft Patch Tuesday
Is the Browser Becoming the New Endpoint?
Qantas Reduces Executive Pay Following Cyberattack
Huge NPM Supply Chain Attack Goes Out With Whimper
Salty2FA Takes Phishing Kits to Enterprise Level
SentinelOne Announces Plans to Acquire Observo AI
'MostereRAT' Malware Blends In, Blocks Security Tools
Ars Technica
Microsoft ends OpenAI exclusivity in Office, adds rival Anthropic
Claude’s new AI file-creation feature ships with security risks built in
SAP warns of high-severity vulnerabilities in multiple products
Why accessibility might be AI’s biggest breakthrough
Software packages with more than 2 billion weekly downloads hit in supply-chain attack
Former WhatsApp security boss in lawsuit likens Meta’s culture to a “cult”
AI will consume all of IT by 2030—but not all IT jobs, Gartner says
ChatGPT’s new branching feature is a good reminder that AI chatbots aren’t people
The number of mis-issued 1.1.1.1 certificates grows. Here’s the latest.
Microsoft open-sources Bill Gates’ 6502 BASIC from 1978
CyberScoop
The npm incident frightened everyone, but ended up being nothing to fret about
Acting federal cyber chief outlines his three priorities for the next year
Apple’s new Memory Integrity Enforcement system deals a huge blow to spyware developers
Critical infrastructure security tech needs to be as good as our smartphones, top NSC cyber official says
Microsoft Patch Tuesday addresses 81 vulnerabilities, none actively exploited
U.S. indicts Ukrainian national for hundreds of ransomware attacks using multiple variants
Former WhatsApp security manager sues company for privacy violations, professional retaliation
National cyber director: U.S. strategy needs to shift cyber risk from Americans to its adversaries
Mitsubishi Electric to acquire Nozomi Networks in $1 billion deal
Treasury Department targets Southeast Asia scam hubs with sanctions
HITBSecNews
Found on VirusTotal: The world’s first UEFI bootkit for Linux
OpenAI is at war with its own Sora video testers following brief public leak
North Korean hackers posing as IT workers steal over $1B in cyberattack
WhatsApp: NSO Group Operates Pegasus Spyware for Customers
Korea extradites Russian, Vietnamese suspects linked to $16M ransomware scheme
CISA Director Jen Easterly, in Place Since 2021, to Step Down
Man sick of crashes sues Intel for allegedly hiding CPU defects
North Korean hackers target cryptocurrency with malware
Law enforcement operation takes down 22,000 malicious IP addresses worldwide
Youth of today say passwords are old news, passkeys are the future
ZDNet
Nomad's latest Apple Watch band is bright enough to stop traffic - and it's my new favorite
Apple Events live updates: iPhone 17, iPhone Air, AirPods Pro 3, and reactions to new wearables
iOS 26 update is coming soon - how to download it (and which iPhones support it)
Use Claude's new feature at your own risk - here's why
The best iPhone 17 cases of 2025 (including the Air, Pro, and Max models)
The two tech brands with the most satisfied customers might surprise you
Microsoft taps Anthropic for AI in Word and Excel, signaling distance from OpenAI
Microsoft said these 400 readers couldn't upgrade to Windows 11. They did it anyway
Verizon will give you an iPhone 17 Pro free with trade-in - here's what to know
I swapped my favorite Linux desktop for System76's COSMIC alpha - and I have zero regrets
The Hacker News
Chinese APT Deploys EggStreme Fileless Malware to Breach Philippine Military Systems
CHILLYHELL macOS Backdoor and ZynorRAT RAT Threaten macOS, Windows, and Linux Systems
Microsoft Fixes 80 Flaws — Including SMB PrivEsc and Azure CVSS 10.0 Bugs
Apple iPhone Air and iPhone 17 Feature A19 Chips With Spyware-Resistant Memory Safety
The Time-Saving Guide for Service Providers: Automating vCISO and Compliance Services
Watch Out for Salty2FA: New Phishing Kit Targeting US and EU Enterprises
China-Linked APT41 Hackers Target U.S. Trade Officials Amid 2025 Negotiations
Adobe Commerce Flaw CVE-2025-54236 Lets Hackers Take Over Customer Accounts
SAP Patches Critical NetWeaver (CVSS Up to 10.0) and High-Severity S/4HANA Flaws
Axios Abuse and Salty 2FA Kits Fuel Advanced Microsoft 365 Phishing Attacks
BleepingComputer
Hackers left empty-handed after massive NPM supply-chain attack
Pixel 10 fights AI fakes with new Android photo verification tech
Cursor AI editor lets repos “autorun” malicious code on devices
Jaguar Land Rover confirms data theft after recent cyberattack
Can I have a new password, please? The $400M question.
Microsoft fixes streaming issues triggered by Windows updates
Microsoft fixes app install issues caused by August Windows updates
U.S. sanctions cyber scammers who stole billions from Americans
Hackers hide behind Tor in exposed Docker API breaches
Windows 10 KB5065429 update includes 14 changes and fixes
Cybersecurity Dive
Senior NSC official said US needs to embrace offensive cyber
Ransomware insurance losses spike despite fewer claims: Resilience
National cyber director says US must shift risk burden toward adversaries
Mitsubishi Electric agrees to buy Nozomi Networks in deal valued at about $1B
How AI and politics hampered the secure open-source software movement
Bridgestone Americas continues probe as it looks to restore operations
Salesloft platform integration restored after probe reveals monthslong GitHub account compromise
Data security gaps stymy enterprise AI plans
Marriott checks out AI agents amid technology transformation
Swiss Re warns of rate deterioration in cyber insurance
Threatpost
Student Loan Breach Exposes 2.5M Records
Watering Hole Attacks Push ScanBox Keylogger
Tentacles of ‘0ktapus’ Threat Group Victimize 130 Firms
Ransomware Attacks are on the Rise
Cybercriminals Are Selling Access to Chinese Surveillance Cameras
Twitter Whistleblower Complaint: The TL;DR Version
Firewall Bug Under Active Attack Triggers CISA Warning
Fake Reservation Links Prey on Weary Travelers
iPhone Users Urged to Update to Patch 2 Zero-Days
Google Patches Chrome’s Fifth Zero-Day of the Year
The Register
Jaguar Land Rover U-turns to confirm 'some data' affected after cyber prang
Uncle Sam indicts alleged ransomware kingpin tied to $18B in damages
Flu jab email mishap exposes hundreds of students' personal data
Cybercrooks ripped the wheels off at Jaguar Land Rover. Here's how not to get taken for a ride
This Patch Tuesday, SAP is the worst offender and Microsoft users can kinda chill
More packages poisoned in npm attack, but would-be crypto thieves left pocket change
New cybersecurity rules land for Defense Department contractors
Defense Dept didn't protect social media accounts, left stream keys out in public
No gains, just pains as 1.6M fitness phone call recordings exposed online
What the Plex? Streaming service suffers yet another password spill
VentureBeat
TechCrunch
Vibe coding? Meet vibe security
Jaguar Land Rover says data stolen in disruptive cyberattack
Google’s former security leads raise $13M to fight email threats before they reach you
Plex urges users to change passwords after data breach
Netskope follows Rubrik as a rare cybersecurity IPO, both backed by Lightspeed
VC giant Insight Partners notifies staff and limited partners after data breach
Signal introduces free and paid backup plans for your chats
Salesloft says Drift customer data thefts linked to March GitHub account hack
The growing debate over expanding age-verification laws
X is now offering me end-to-end encrypted chat — you probably shouldn’t trust it yet
Network World Security
Microsoft finds possible solution to Azure capacity issues
Nvidia: Latest news and insights
Cisco’s Splunk embeds agentic AI into security and observability products
New life for the mainframe: AI cost savings materialize, modernization efforts pay off
Cadence adds Nvidia to digital twin tool for data center design
Nvidia rolls out new GPUs for AI inferencing, large workloads
VMware by Broadcom: Product, service and support news
Network jobs watch: Hiring, skills and certification trends
VMware Explore 2025: Latest news and insights
Broadcom’s VMware strategy pays off financially, but customers not as keen as Wall Street
Help Net Security
Coro 3.6 reduces operational burden for resource-constrained SMBs
Microsoft, Adobe, SAP deliver critical fixes for September 2025 Patch Tuesday
Lookout’s AI-powered solution combats SMS phishing attacks
Automated network pentesting uncovers what traditional tests missed
Perforce expands DevOps Data Platform with AI-driven synthetic data generation
Xage Fabric prevents unauthorized access and sensitive data exposure
Gigamon Insights delivers agentic AI for threat detection, compliance, and root-cause analysis
DataLocker boosts data security with DL GO and MySafeConsole
Deepfakes are rewriting the rules of geopolitics
Garak: Open-source LLM vulnerability scanner
InfoSecurity Magazine
KillSec Ransomware Hits Brazilian Healthcare IT Vendor
Cursor Autorun Flaw Lets Repositories Execute Code Without Consent
Adobe Releases Emergency Patch for Critical Flaw in Commerce and Magento
Ransomware Payments Plummet in Education Amid Enhanced Resiliency
Two Zero-Days Among Patch Tuesday CVEs This Month
Malicious npm Code Reached 10% of Cloud Environments
Threat Actor Accidentally Exposes AI-Powered Operations
Salty2FA Phishing Kit Unveils New Level of Sophistication
Open Source Community Thwarts Massive npm Supply Chain Attack
Axios User Agent Helps Automate Phishing on “Unprecedented Scale”
© 2025 RiskDiscovery | Sponsored by: Deception Logic