[ News | Newsletters | Blogs | Reddits | Lists | Media | Jobs ] HoneyDB
DarkReading
Patch Now: Microsoft Flags Zero-Day & Critical Zero-Click Bugs
Grandparents to C-Suite: Elder Fraud Reveals Gaps in Human-Centered Cybersecurity
Bridging the Skills Gap: How Military Veterans Are Strengthening Cybersecurity
Kimsuky APT Takes Over South Korean Androids, Abuses KakaoTalk
OWASP Highlights Supply Chain Risks in New Top 10 List
GlassWorm Returns, Slices Back into VS Code Extensions
ClickFix Campaign Targets Hotels, Spurs Secondary Customer Attacks
'Landfall' Malware Targets Samsung Galaxy Users
'Ransomvibing' Infests Visual Studio Extension Market
Microsoft Backs Massive AI Push in UAE, Raising Security Concerns
Ars Technica
ClickFix may be the biggest security threat your family has never heard of
Researchers isolate memorization from problem-solving in AI neural networks
Researchers surprised that with AI, toxicity is harder to fake than intelligence
Wipers from Russia’s most cut-throat hackers rain destruction on Ukraine
Google says project on famous crab-covered island is about cables, not combat
5 AI-developed malware families analyzed by Google fail to work and are easily detected
OpenAI signs massive AI compute deal with Amazon
Two Windows vulnerabilities, one a 0-day, are under active exploitation
ChatGPT maker reportedly eyes $1 trillion IPO despite major quarterly losses
After teen death lawsuits, Character.AI will restrict chats for under-18 users
CyberScoop
Microsoft Patch Tuesday addresses 63 defects, including one actively exploited zero-day
Amazon rolls out AI bug bounty program 
Hitachi subsidiary GlobalLogic impacted by Clop’s attack spree on Oracle customers
BigBear.ai to buy Ask Sage, strengthening security-centric AI for federal agencies
What’s left to worry (and not worry) about in the F5 breach aftermath
Cyber information sharing law would get extension under shutdown deal bill
CISA’s expiration leaves a dangerous void in US cyber collaboration
Russian national pleads guilty to breaking into networks for Yanluowang ransomware attacks
Report: Government data mining has gone too far – and AI will make it worse
New Landfall spyware apparently targeting Samsung phones in Middle East
HITBSecNews
Found on VirusTotal: The world’s first UEFI bootkit for Linux
OpenAI is at war with its own Sora video testers following brief public leak
North Korean hackers posing as IT workers steal over $1B in cyberattack
WhatsApp: NSO Group Operates Pegasus Spyware for Customers
Korea extradites Russian, Vietnamese suspects linked to $16M ransomware scheme
CISA Director Jen Easterly, in Place Since 2021, to Step Down
Man sick of crashes sues Intel for allegedly hiding CPU defects
North Korean hackers target cryptocurrency with malware
Law enforcement operation takes down 22,000 malicious IP addresses worldwide
Youth of today say passwords are old news, passkeys are the future
ZDNet
Sick of online ads and trackers? How I block them across my entire home network
The one travel gadget I always pack, and how it's unlike any other charger I've tested
Need to share your Wi-Fi password? Do it instantly with this simple phone trick
My favorite electric screwdriver of all time just got a worthy successor - and it's already on sale
I replaced my smartwatch with this e-paper wearable, and more people should do the same
This compact label printer is already proving its worth in my office - here's how
I would skip the AirTag and buy this Bluetooth tracker rival instead - here's why it's better
Finally, an Android Auto wireless adapter that's reliable, highly functional, and priced to sell
This Samsung flagship OLED TV spoiled the way I consume content - and it's $1,000 off today
Are battery analyzers legit? I tested this $30 one from Amazon, and it's already paying off
The Hacker News
Amazon Uncovers Attacks Exploited Cisco ISE and Citrix NetScaler as Zero-Day Flaws
[Webinar] Learn How Leading Security Teams Reduce Attack Surface Exposure with DASR
Active Directory Under Siege: Why Critical Infrastructure Needs Stronger Security
Microsoft Fixes 63 Security Flaws, Including a Windows Kernel Zero-Day Under Active Attack
Google Launches 'Private AI Compute' — Secure AI Processing with On-Device-Level Privacy
WhatsApp Malware 'Maverick' Hijacks Browser Sessions to Target Brazil's Biggest Banks
GootLoader Is Back, Using a New Font Trick to Hide Malware on WordPress Sites
CISO's Expert Guide To AI Supply Chain Attacks
Npm Package Targeting GitHub-Owned Repositories Flagged as Red Team Exercise
Android Trojan 'Fantasy Hub' Malware Service Turns Telegram Into a Hub for Hackers
BleepingComputer
New UK laws to strengthen critical infrastructure cyber defenses
Hackers exploited Citrix, Cisco ISE flaws in zero-day attacks
Synnovis notifies of data breach after 2024 ransomware attack
Microsoft fixes Windows Task Manager bug affecting performance
Rhadamanthys infostealer disrupted as cybercriminals lose server access
Synology fixes BeeStation zero-days demoed at Pwn2Own Ireland
Hackers abuse Triofox antivirus feature to deploy remote access tools
Microsoft: Windows 11 23H2 Home and Pro reach end of support
Microsoft releases KB5068781 — The first Windows 10 extended security update
Microsoft November 2025 Patch Tuesday fixes 1 zero-day, 63 flaws
Cybersecurity Dive
AI agents worsen IT’s capacity crunch: S&P Global
Cisco detects new attack variant targeting vulnerable firewalls
Conduent warns of further financial fallout from cyberattack
Nevada ransomware attack traced back to malware download by employee
Cyberattacks surge against IoT, mobile devices in critical infrastructure
In financial sector, vendors lag behind customers on cybersecurity
SonicWall says state-linked actor behind attacks against cloud backup service
Your AI-driven threat hunting is only as good as your data platform and pipeline
AI-based malware makes attacks stealthier and more adaptive
Hackers targeting Cisco IOS XE devices with BadCandy implant
Threatpost
Student Loan Breach Exposes 2.5M Records
Watering Hole Attacks Push ScanBox Keylogger
Tentacles of ‘0ktapus’ Threat Group Victimize 130 Firms
Ransomware Attacks are on the Rise
Cybercriminals Are Selling Access to Chinese Surveillance Cameras
Twitter Whistleblower Complaint: The TL;DR Version
Firewall Bug Under Active Attack Triggers CISA Warning
Fake Reservation Links Prey on Weary Travelers
iPhone Users Urged to Update to Patch 2 Zero-Days
Google Patches Chrome’s Fifth Zero-Day of the Year
The Register
Bitcoin bandit's £5B bubble bursts as cops wrap seven-year chase
UK's Cyber Security and Resilience Bill makes Parliamentary debut
Aviation watchdog says organized drone attacks will shut UK airports ‘sooner or later’
China hates crypto and scams, but is now outraged USA acquired bitcoin from a scammer
Australia’s spy boss says authoritarian nations ready to commit ‘high-impact sabotage’
North Korean spies turn Google's Find Hub into remote-wipe weapon
EU's reforms of GDPR, AI slated by privacy activists for 'playing into Big Tech’s hands'
OWASP Top 10: Broken access control still tops app security list
Hitachi-owned GlobalLogic admits data stolen on 10k current and former staff
UK asks cyberspies to probe whether Chinese buses can be switched off remotely
VentureBeat
How Anthropic's Claude cuts SOC investigation time from 5 hours to 7 minutes
CrowdStrike & NVIDIA’s open source AI gives enterprises the edge against machine-speed attacks
Meet Aardvark, OpenAI’s security agent for code analysis and patching
Security's AI dilemma: Moving faster while risking more
Fortanix and NVIDIA partner on AI security platform for highly regulated industries
Your IT stack is the enemy: How 84% of attacks evade detection by turning trusted tools against you
When your AI browser becomes your enemy: The Comet security disaster
TechCrunch
Australian spy chief warns Chinese hackers are ‘probing’ critical networks for espionage and sabotage
Red Bull Racing’s secret weapon? An engineer who treats workflows like lap times
Why a lot of people are getting hacked with government spyware
Washington Post confirms data breach linked to Oracle hacks
Congressional Budget Office confirms it was hacked
‘Landfall’ spyware abused zero-day to hack Samsung Galaxy phones
Italian political consultant says he was targeted with Paragon spyware
University of Pennsylvania confirms hacker stole data during cyberattack
Google gets the US government’s green light to acquire Wiz for $32B
Armis raises $435M pre-IPO round at $6.1B valuation after refusing M&A offers
Network World Security
2025 global network outage report and internet health check
Buyer’s guide to AI networking technology
AWS launches ‘Capabilities by Region’ to simplify planning for cloud deployments
Google Cloud aims for more cost-effective Arm computing with Axion N4A
Google’s cheaper, faster TPUs are here, while users of other AI processors face a supply crunch
Top network and data center events 2025 & 2026
Network jobs watch: Hiring, skills and certification trends
Cisco launches AI infrastructure, AI practitioner certifications
Perplexity’s open-source tool to run trillion-parameter models without costly upgrades
Space: The final frontier for data processing
Help Net Security
Stellar Cyber 6.2 strengthens human-augmented autonomous SOC
Cyware enhances cyber defense with AI Fabric merging generative and agentic AI
Aryaka advances converged networking and security with Unified SASE as a Service 2.0
IBM pushes toward quantum advantage by 2026 with new Nighthawk processor
Patch Tuesday: Microsoft fixes actively exploited Windows kernel vulnerability (CVE-2025-62215)
Avast delivers AI-powered protection for Android and iOS
When every day is threat assessment day
Autonomous AI could challenge how we define criminal behavior
ProxyBridge: Open-source proxy routing for Windows applications
Shadow AI risk: Navigating the growing threat of ungoverned AI adoption
InfoSecurity Magazine
Cyber-Insurance Payouts Soar 230% in UK
Microsoft Fixes Windows Kernel Zero Day in November Patch Tuesday
UK Government Finally Introduces Cyber Security and Resilience Bill
Android Devices Targeted By KONNI APT in Find Hub Exploitation
Qilin Ransomware Activity Surges as Attacks Target Small Businesses
Hackers Exploit Critical Flaw in Gladinet's Triofox File Sharing Product
CISA Adds Zero-Day Bug Used in Spyware Attacks to KEV
Quantum Route Redirect Phishing Kit Democratizes Cyber-Attacks
65% of Leading AI Companies Found With Verified Secrets Leaks
China-Aligned UTA0388 Uses AI Tools in Global Phishing Campaigns
© 2025 RiskDiscovery | Sponsored by: Deception Logic