[ News | Newsletters | Blogs | Lists | Media | Jobs ] HoneyDB
DarkReading
Attackers Now Need Just 29 Minutes to Own a Network
Lazarus Group Picks a New Poison: Medusa Ransomware
As Cybersecurity Firms Chase AI, VC Market Skyrockets
Spitting Cash: ATM Jackpotting Attacks Surged in 2025
More Than Dashboards: AI Decisions Must Be Provable
Iran's MuddyWater Targets Orgs With Fresh Malware as Tensions Mount
Enigma Cipher Device Still Holds Secrets for Cyber Pros
600+ FortiGate Devices Hacked by AI-Armed Amateur
Attackers Use New Tool to Scan for React2Shell Exposure
'God-Like' Attack Machines: AI Agents Ignore Security Policies
Ars Technica
Password managers' promise that they can't see your vaults isn't always true
Most VMware users still "actively reducing their VMware footprint," survey finds
Retraction: After a routine code rejection, an AI agent published a hit piece on someone by name
OpenAI sidesteps Nvidia with unusually fast coding model on plate-sized chips
Attackers prompted Gemini over 100,000 times while trying to clone it, Google says
Once-hobbled Lumma Stealer is back with lures that are hard to resist
OpenAI researcher quits over ChatGPT ads, warns of "Facebook" path
Sixteen Claude AI agents working together created a new C compiler
Malicious packages for dYdX cryptocurrency exchange empties user wallets
AI companies want you to stop chatting with bots and start managing them
CyberScoop
Ex-L3Harris executive sentenced to 87 months in prison for selling zero-day exploits to Russian broker
CrowdStrike says attackers are moving through networks in under 30 minutes
Anthropic accuses Chinese labs of trying to illicitly take Claude’s capabilities
Anthropic rolls out embedded security scanning for Claude 
Ukrainian sentenced to 5 years in prison for facilitating North Korean remote worker scheme
State Dept. official says post-quantum transition plans will outlive current leadership
FBI: Threats from Salt Typhoon are ‘still very much ongoing’
HHS burrows into identifying risks to health sector from third-party vendors
ONCD official says Trump administration aims to bolster AI use for defense without increasing risk
The Caracas operation suggests cyber was part of the plan – just not the whole operation
InfoSecurity Magazine
Cost of Insider Incidents Surges 20% to Nearly $20m
Multifaceted Phishing Scheme Deceives Bitpanda Customers
North Korean Lazarus Group Expands Ransomware Activity With Medusa
AI Accelerates Attacker Breakout Time to Just Four Minutes
Chinese AI Firms Hit Claude with Distillation Attacks, Anthropic Warns
AI-powered Cyber-Attacks Up Significantly in the Last Year, Warns CrowdStrike
Shai-Hulud-Like Worm Targets Developers via npm and AI Tools
Fraud Investigation Reveals Sophisticated Python Malware
Russian Cyber Threat Actor Uses GenAI to Compromise Fortinet Firewalls
Leading Semiconductor Supplier Advantest Hit by Ransomware Attack
SecurityWeek
‘Arkanix Stealer’ Malware Disappears Shortly After Debut
VMware Aria Operations Vulnerability Could Allow Remote Code Execution
CISO Conversations: Timothy Youngblood; 4x Fortune 500 CISO/CSO
New ‘Sandworm_Mode’ Supply Chain Attack Hits NPM
GitHub Issues Abused in Copilot Attack Leading to Repository Takeover
Taiwan Security Firm Confirms Flaw Flagged by CISA Likely Exploited by Chinese APTs
Anonymous Fénix Members Arrested in Spain
US Healthcare Diagnostic Firm Says 140,000 Affected by Data Breach
Ukrainian Gets 5 Years in US Prison for Aiding North Korean IT Fraud
Autonomous AI Agents Provide New Class of Supply Chain Attack
ZDNet
Samsung Unpacked 2026: 5 biggest rumors I'm seeing on Galaxy S26 Ultra, Buds 4 Pro, more
Samsung Unpacked 2026 live blog: Galaxy S26 Ultra specs, Buds 4 Pro, Bixby, more
How to schedule a text on Android - it's quick and easy
Forget Samsung: This Motorola phone I tested is the king of battery life for under $300
10 oddly useful cables and connectors I always pack with me (and they're mostly cheap)
5 TV settings that I changed to dramatically improve the performance and picture quality
How to clear your Android phone cache - and easily remove junk files
I tested the Raspberry Pi Flash Drive - and its 4K write speed beats competing models
What is MoCA 2.5? This low-cost network solution replaced my Wi-Fi and fixed dead zones
Dell XPS 14 (2026) review: The true MacBook competitor has returned - and it's even better
The Hacker News
RoguePilot Flaw in GitHub Codespaces Enabled Copilot to Leak GITHUB_TOKEN
UAC-0050 Targets European Financial Institution With Spoofed Domain and RMS Malware
Identity Prioritization isn't a Backlog Problem - It's a Risk Math Problem
Lazarus Group Uses Medusa Ransomware in Middle East and U.S. Healthcare Attacks
UnsolicitedBooker Targets Central Asian Telecoms With LuciDoor and MarsSnake Backdoors
Anthropic Says Chinese AI Firms Used 16 Million Claude Queries to Copy Model
APT28 Targeted European Entities Using Webhook-Based Macro Malware
Wormable XMRig Campaign Uses BYOVD Exploit and Time-Based Logic Bomb
⚡ Weekly Recap: Double-Tap Skimmers, PromptSpy AI, 30Tbps DDoS, Docker Malware & More
How Exposed Endpoints Increase Risk Across LLM Infrastructure
BleepingComputer
Wynn Resorts confirms employee data breach after extortion threat
1Campaign platform helps malicious Google ads evade detection
CarGurus data breach exposes information of 12.4 million accounts
Microsoft adds Copilot data controls to all storage locations
Identity-First AI Security: Why CISOs Must Add Intent to the Equation
UK fines Reddit $19 million for using children’s data unlawfully
Critical SolarWinds Serv-U flaws offer root access to servers
ShinyHunters extortion gang claims Odido breach affecting millions
North Korean Lazarus group linked to Medusa ransomware attacks
Android mental health apps with 14.7M installs filled with security flaws
gbhackers
Sendmarc Releases DMARCbis Fireside Chat Featuring Co-Editor Todd Herr
VMware Aria Flaws Enable Attackers to Execute Remote Code
Threat Actors Exploit Weaponized AI to Seize Full Domain Access in Under 30 Minutes
Cybercriminals Exploit Windows Management Instrumentation WMI to Maintain Stealthy Access and Silent Control
Massive Conduent Data Breach Exfiltrates 8 TB Affects Over 25 Million Americans
Malicious NuGet Packages Target ASP.NET Developers to Steal Login Credentials
Chinese AI Labs Launch Massive Distillation Attacks on Anthropic Claude, Tracking 13M Exchanges
Romanian Cybercriminal Admits Guilt in Scheme Selling Oregon State Government Network Access
Malicious OpenClaw Tactics Deceive Users into Manual Password Entry for AMOS Infection
ZeroDayRAT Targets Android and iOS Devices for Surveillance and Financial Data Theft
Cybersecurity Dive
In the AI era, CISOs worry about data leaks and doubt tech will solve skills gaps
Threat groups move at record speeds, as AI helps scale attacks
Hackers target vulnerabilities in Roundcube Webmail
AI helps novice threat actor compromise FortiGate devices in dozens of countries
AI vs. AI: Why cybersecurity’s new front line is behavioral intelligence
BeyondTrust Remote Support exploitation ramps up with backdoors, remote tools
US Treasury Department offers secure AI advice to financial services firms
Palo Alto Networks CEO sees AI as demand driver, not a threat
AI’s ‘connective tissue’ is woefully insecure, Cisco warns
Identity and supply chain need more attention, risk intelligence firm says
Threatpost
Student Loan Breach Exposes 2.5M Records
Watering Hole Attacks Push ScanBox Keylogger
Tentacles of ‘0ktapus’ Threat Group Victimize 130 Firms
Ransomware Attacks are on the Rise
Cybercriminals Are Selling Access to Chinese Surveillance Cameras
Twitter Whistleblower Complaint: The TL;DR Version
Firewall Bug Under Active Attack Triggers CISA Warning
Fake Reservation Links Prey on Weary Travelers
iPhone Users Urged to Update to Patch 2 Zero-Days
Google Patches Chrome’s Fifth Zero-Day of the Year
The Register
AI has gotten good at finding bugs, not so good at swatting them
Patch these 4 critical, make-me-root SolarWinds bugs ASAP
North Korea's Lazarus Group targets healthcare orgs with Medusa ransomware
Go library maintainer brands GitHub's Dependabot a 'noise machine'
UK data watchdog fines Reddit £14.47M for letting kids slip past the gate
Korean cops charge teens over bike hire breach that exposed data on 4.62M riders
UK tech hit by double trouble: Fewer foreign techies amid skills squeeze
Euro allies aiming to rapidly build low-cost air defense weapons
Infosec community panics as Anthropic rolls out Claude code security checker
Global regulators say AI image tools don't get a free pass on privacy rules
VentureBeat
Anthropic says DeepSeek, Moonshot, and MiniMax used 24,000 fake accounts to rip off Claude
Anthropic's Claude Code Security is available now after finding 500+ vulnerabilities: how security leaders should respond
Microsoft Copilot ignored sensitivity labels twice in eight months — and no DLP stack caught either one
How attackers hit 700 organizations through CX platforms your SOC already approved
Most ransomware playbooks don't address machine credentials. Attackers know it.
How to test OpenClaw without giving an autonomous agent shell access to your corporate laptop
Anthropic published the prompt injection failure rates that enterprise security teams have been asking every vendor for
TechCrunch
Former L3Harris Trenchant boss jailed for selling hacking tools to Russian broker
CarGurus data breach affects 12.5 million accounts
Treasury sanctions Russian zero-day broker accused of buying exploits stolen from US defense contractor
Marquis sues firewall provider SonicWall, alleges security failings with its firewall backup led to ransomware attack
Conduent data breach grows, affecting at least 25M people
Americans are destroying Flock surveillance cameras
VPN flaws allowed Chinese hackers to compromise dozens of Ivanti customers, says report
5 days left to lock in the lowest TechCrunch Disrupt 2026 ticket rates
6 days left to lock in the lowest TechCrunch Disrupt 2026 rates
7 days until ticket prices rise for TechCrunch Disrupt 2026
Network World Security
From packets to prompts: What Cisco’s AITECH certification means for IT pros
HPE’s latest Juniper routers target large‑scale AI fabrics
Nvidia: Latest news and insights
New Relic connects observability platform to business outcomes
2026 network outage report and internet health check
Nvidia lines up partners to boost security for industrial operations
Pure Storage becomes Everpure, acquires 1touch
Favorable Wi-Fi 7 prices won’t be around for long, Dell’Oro Group warns
Raising the temp on liquid cooling
Cisco and AT&T partner for 5G IoT services
Help Net Security
Forescout VistaroAI replaces prompt engineering with role-based AI automation
Teenagers charged over public bike service breach that exposed 4.62 million records
Druva expands DruAI with autonomous agents for forensics and compliance
Veeam Agent Commander unifies AI risk detection, protection, and recovery
New Relic Agentic Platform brings governance and scale to AI agents
Aikido Infinite introduces continuous, self-remediating AI penetration testing
Microsoft expands Sovereign Cloud security with governance, local productivity and AI
Self-spreading npm malware targets developers in new supply chain attack
Windows 365 for Agents brings managed cloud PCs to autonomous workflows
International operation dismantles fraud network, €400,000 seized
SC Magazine
North Korea's Lazarus Group targets US, Middle East healthcare sectors
Trust and transparency critical in cloud AI security
Rackspace to run Palantir in sovereign clouds
Tenable report flags rising AI and cloud risks
Google Cloud urges shared grid cyber defense
Mental health apps vulnerable, exposing sensitive user data
XWorm malware campaign leverages business-themed for PC infections
Spanish authorities arrest 4 suspected Anonymous Fénix hacktivists
MuddyWater APT launches Operation Olalampo with new malware targeting MENA region
Romanian national pleads guilty to selling Oregon state network access
© 2026 RiskDiscovery | Sponsored by: Deception Logic