[ News | Newsletters | Blogs | Lists | Media | Jobs ] HoneyDB
DarkReading
Black Hat USA
Russia's Forest Blizzard Nabs Rafts of Logins Via SOHO Routers
Threat Actors Get Crafty With Emojis to Escape Detection
AI-Led Remediation Crisis Prompts HackerOne to Pause Bug Bounties
Fraud Rockets Higher in Mobile-First Latin America
Full Sail University to Open IBM Cyber Defense Range Powered by AWS and Cloud Range on Campus
Niobium Introduces The Fog
Pluralsight Launches SecureReady to Help Organizations Build Job-Ready Cybersecurity Teams
Iranian Threat Actors Disrupt US Critical Infrastructure Via Exposed PLCs
Storm-1175 Deploys Medusa Ransomware at 'High Velocity'
Ars Technica
Iran-linked hackers disrupt operations at US critical infrastructure sites
Thousands of consumer routers hacked by Russia's military
OpenClaw gives users yet another reason to be freaked out about security
New Rowhammer attacks give complete control of machines running Nvidia GPUs
Quantum computers need vastly fewer resources than thought to break vital encryption
Google bumps up Q Day deadline to 2029, far sooner than previously thought
Self-propagating malware poisons open source software and wipes Iran-based machines
Widely used Trivy scanner compromised in ongoing supply-chain attack
Cloud service providers ask EU regulator to reinstate VMware partner program
Federal cyber experts called Microsoft's cloud a "pile of shit," approved it anyway
CyberScoop
Don’t just fight fraud, hunt it
Hack-for-hire spyware campaign targets journalists in Middle East, North Africa
Feds quash widespread Russia-backed espionage network spanning 18,000 devices
Tech giants launch AI-powered ‘Project Glasswing’ to identify critical software vulnerabilities
Iranian hackers launching disruptive attacks at U.S. energy, water targets, feds warn
Cybercrime losses jumped 26% to $20.9 billion in 2025
‘GrafanaGhost’ bypasses Grafana’s AI defenses without leaving a trace
Fortinet customers confront actively exploited zero-day, with a full patch still pending
pcTattleTale stalkerware maker sentence includes fine, supervised release
Trump budget proposal would cut hundreds of millions more from CISA
InfoSecurity Magazine
Atomic Stealer MacOS ClickFix Attack Bypasses Apple Security Warnings
Middle East Hack-for-Hire Operation Traced to South Asian Cyber Espionage Group
Governance Gaps Emerge as AI Agents Drive 76% Increase in NHIs
Google Warns of New Threat Group Targeting BPOs and Helpdesks
Google API Keys Quietly Gain Access to Gemini on Android Devices
Critical Vulnerability in Ninja Forms Exposes WordPress Sites
Anthropic Launches Project Glasswing to Use AI to Find and Fix Critical Software Vulnerabilities
US Thwarts DNS Hijacking Network Controlled by Russian APT28 Hackers
Claude Discovers Apache ActiveMQ Bug Hidden for 13 Years
Iran‑Backed Threat Actors Hit US CNI Providers via Internet‑Facing OT Assets
SecurityWeek
Apple Intelligence AI Guardrails Bypassed in New Attack
Can we Trust AI? No – But Eventually We Must
Google API Keys in Android Apps Expose Gemini Endpoints to Unauthorized Access
Palo Alto Networks, SonicWall Patch High-Severity Vulnerabilities
The Hidden ROI of Visibility: Better Decisions, Better Behavior, Better Security
Google Warns of New Campaign Targeting BPOs to Steal Corporate Data
Adobe Reader Zero-Day Exploited for Months: Researcher
300,000 People Impacted by Eurail Data Breach
$3.6 Million Stolen in Bitcoin Depot Hack
Shaky Ceasefire Unlikely to Stop Cyberattacks From Iran-Linked Hackers for Long
ZDNet
How I cut my power bill with IFTTT automation - in 4 simple steps
Is Modern Standby draining your Windows laptop battery overnight? Shut it down - here's why
How to share your Kindle books with anyone (and the limits to know) - it's easy
My top 5 Linux desktops of 2026 (so far) - and I've tried them all
The best Home Depot Spring Black Friday deals 2026: Grills, lawnmowers, mulch, & more
I asked 5 data leaders about how they use AI to automate - and end integration nightmares
It's not a BIOS bug: How swapping to a DisplayPort 2.1b cable may fix your PC's boot loops
The best business VoIP services in 2026: Expert tested and reviewed
The best Hisense TVs of 2026: Expert tested and reviewed
KDE Linux is the purest form of Plasma I've tested - but the install isn't for the meek
The Hacker News
ThreatsDay Bulletin: Hybrid P2P Botnet, 13-Year-Old Apache RCE and 18 More Stories
The Hidden Security Risks of Shadow AI in Enterprises
Adobe Reader Zero-Day Exploited via Malicious PDFs Since December 2025
Bitter-Linked Hack-for-Hire Campaign Targets Journalists Across MENA Region
New Chaos Variant Targets Misconfigured Cloud Deployments, Adds SOCKS Proxy
Masjesu Botnet Emerges as DDoS-for-Hire Service Targeting Global IoT Devices
APT28 Deploys PRISMEX Malware in Campaign Targeting Ukraine and NATO Allies
Shrinking the IAM Attack Surface through Identity Visibility and Intelligence Platforms (IVIP)
Anthropic's Claude Mythos Finds Thousands of Zero-Day Flaws Across Major Systems
N. Korean Hackers Spread 1,700 Malicious Packages Across npm, PyPI, Go, Rust
BleepingComputer
When attackers already have the keys, MFA is just another door to open
Webinar: From noise to signal - What threat actors are targeting next
Eurail says December data breach impacts 300,000 individuals
Hackers exploiting Acrobat Reader zero-day flaw since December
Hackers steal $3.6 million from crypto ATM giant Bitcoin Depot
Microsoft suspends dev accounts for high-profile open source projects
Hackers use pixel-large SVG trick to hide credit card stealer
Google: New UNC6783 hackers steal corporate Zendesk support tickets
New macOS stealer campaign uses Script Editor in ClickFix attack
CISA orders feds to patch exploited Ivanti EPMM flaw by Sunday
gbhackers
ClickFix, Malicious DMGs Push notnullOSX to macOS Users
Attackers Deploy Hidden Magecart Skimmer on Magento Using SVG onload Abuse
New Phishing Campaign Exploits Google Storage to Deliver Remcos RAT
ClickFix Campaign Abuses macOS Script Editor to Deploy Atomic Stealer
Technical Details Released for Critical Cisco SSM Command Execution Vulnerability
STX RAT Hides Remote Desktop, Steals Data to Dodge Detection
Microsoft Details How Defender Protects High-Value Assets in Real-World Attacks
Fake Security Tool Spreads LucidRook in Taiwan Cyberattacks
China’s Tianjin Supercomputer Center Allegedly Hit in 10-Petabyte Data Theft
CISA Issues Warning on Critical Ivanti EPMM Flaw Exploited in Ongoing Attacks
Cybersecurity Dive
US operation evicts Russia from hacked SOHO routers used to breach critical infrastructure
Iran-linked hackers target water, energy in US, FBI and CISA warn
CISA’s vulnerability scans, field support on chopping block in Trump budget
React2Shell vulnerability helps hackers steal credentials, AI platform keys and other sensitive data
Olympic Games, FIFA World Cup offer huge platforms, rich cyberattack surface
Threat cluster launches extortion campaign using social engineering
Hims & Hers says limited data stolen in social engineering attack
Critical flaw in FortiClient EMS under exploitation
Trump’s FY2027 budget again targets CISA
Researchers warn of critical flaws in Progress ShareFile
Threatpost
Student Loan Breach Exposes 2.5M Records
Watering Hole Attacks Push ScanBox Keylogger
Tentacles of ‘0ktapus’ Threat Group Victimize 130 Firms
Ransomware Attacks are on the Rise
Cybercriminals Are Selling Access to Chinese Surveillance Cameras
Twitter Whistleblower Complaint: The TL;DR Version
Firewall Bug Under Active Attack Triggers CISA Warning
Fake Reservation Links Prey on Weary Travelers
iPhone Users Urged to Update to Patch 2 Zero-Days
Google Patches Chrome’s Fifth Zero-Day of the Year
The Register
Microsoft locks out VeraCrypt and WireGuard devs, blames verification process
Security researchers tricked Apple Intelligence into cursing at users. It could have been a lot worse
Zephyr Energy loses £700K in cyber hit that rerouted contractor payment
Sticky-note security turned gym into hall of '80s horrors
Cryptographers place $5,000 bet whether quantum will matter
Criminal wannabes even more dangerous than the pros, says ex-FBI cyber chief
Dutch healthcare software vendor goes dark after ransomware attack
NHS Scotland-linked domains caught serving pr0n and dodgy sports streams
Microsoft hints at bit bunkers for war zones
Anthropic: All your zero-days are belong to Mythos
VentureBeat
AI agents that automatically prevent, detect and fix software issues are here as NeuBird AI launches Falcon, FalconClaw
Closing the data security maturity gap: Embedding protection into enterprise workflows
OCSF explained: The shared data language security teams have been missing
In the wake of Claude Code's source code leak, 5 actions enterprise security leaders should take now
Hackers slipped a trojan into the code library behind most of the internet. Your team is probably affected
CrowdStrike, Cisco and Palo Alto Networks all shipped agentic SOC tools at RSAC 2026 — the agent behavioral baseline gap survived all three
OpenClaw has 500,000 instances and no enterprise kill switch
TechCrunch
WireGuard VPN developer can’t ship software updates after Microsoft locks account
Hack-for-hire group caught targeting Android devices and iCloud backups
Hackers steal and leak sensitive LAPD police documents
Developer of VeraCrypt encryption software says Windows users may face boot-up issues after Microsoft locked his account
Final 3 days to save up to $500 on your TechCrunch Disrupt 2026 pass
Iranian hackers are targeting American critical infrastructure, US agencies warn
Anthropic debuts preview of powerful new AI model Mythos in new cybersecurity initiative
Russian government hackers broke into thousands of home routers to steal passwords
Trump administration plans to cut cybersecurity agency’s budget by $700 million
Watch this video of how a job interviewer exposes a North Korean fake IT worker
Network World Security
Lumen: Upstream network visibility is enterprise security’s new front line
Yael Nardi joins Minimus as Chief Business Officer to head growth strategy
Nvidia Rubin GPUs may be delayed, slowing the next phase of AI infrastructure
Aria Networks raises $125M and debuts its approach for AI-optimized networks
Top network and data center events of 2026
Cisco: Latest news and insights
Yael Nardi joins Minimus as Chief Business Officer to drive hyper-growth
Intel bets on Terafab to help it reassert itself in the AI chip race
New v2 UALink specification aims to catch up to NVLink
Cisco joins Anthropic’s multivendor effort to secure AI software
Help Net Security
Claude helps researcher dig up decade-old Apache ActiveMQ RCE vulnerability (CVE-2026-34197)
Mallory brings contextual threat intelligence to security operations
OPSWAT adds predictive AI engine to MetaDefender for pre-execution threat detection
Acrobat Reader zero-day exploited in the wild for many months
Intruder expands cloud security with agentless container image scanning
Advenica’s File Scanner Kiosk scans USB media for malware
WhatsApp brings long-awaited privacy feature to filter who can reach you
Meta’s Muse Spark takes AI a step closer to personal superintelligence
AI agent intent is a starting point, not a security strategy
Asqav: Open-source SDK for AI agent governance
SC Magazine
Rethinking Linux security operations
Report highlights automation, NHI security risks
Over 21K Wynn Resorts employees affected by breach
Minnesota county breach prompts emergency support declaration
Cyberattack disrupts Massachusetts hospital's operations
Russian state-run telco subjected to disruptive DDoS intrusion
Novel BPFDoor malware variants uncovered
Infostealers deployed via fraudulent TradingView Premium posts on Reddit
Nascent extortion campaign underpinned by social engineering
Feds grade themselves high despite legacy gaps
© 2026 RiskDiscovery | Sponsored by: Deception Logic