[ News | Newsletters | Blogs | Reddits | Lists | Media | Jobs ] HoneyDB
DarkReading
An Audit Isn't a Speed Bump — It's Your Cloud Co-Pilot
Proof-of-Concept in 15 Minutes? AI Turbocharges Exploitation
CISA, FBI, NSA Warn of Chinese 'Global Espionage System'
Hackers Steal 4M+ TransUnion Customers' Data
Akira, Cl0p Top List of 5 Most Active Ransomware-as-a-Service Groups
1,000+ Devs Lose Their Secrets to an AI-Powered Stealer
Dark Reading Confidential: A Guided Tour of Today's Dark Web
CISA's New SBOM Guidelines Get Mixed Reviews
CrowdStrike to Acquire Onum, Boost Falcon Next-Gen SIEM
Anthropic AI Used to Automate Data Extortion Campaign
Ars Technica
Zuckerberg’s AI hires disrupt Meta with swift exits and threats to leave
Google warns that mass data theft hitting Salesloft AI agent has grown bigger
High-severity vulnerability in Passwordstate credential manager. Patch now.
Unpacking Passkeys Pwned: Possibly the most specious research in decades
The personhood trap: How AI fakes human personality
Anthropic’s auto-clicking AI Chrome extension raises browser-hijacking concerns
OpenAI admits ChatGPT safeguards fail during extended conversations
Senator castigates federal judiciary for ignoring “basic cybersecurity”
With AI chatbots, Big Tech is moving fast and breaking people
College student’s “time travel” AI experiment accidentally outputs real 1834 history
CyberScoop
Workado settles with FTC over allegations it inflated its AI detectors’ capabilities 
Top FBI official says Chinese reliance on domestic firms for hacking is a weakness
Salesloft Drift compromised en masse, impacting all third-party integrations
Trump administration setting the stage for elections power grab, voting rights group warns
Treasury sanctions North Korea IT worker scheme facilitators and front organizations
Salt Typhoon hacking campaign goes beyond previously disclosed targets, world cyber agencies say
Google previews cyber ‘disruption unit’ as U.S. government, industry weigh going heavier on offense
Microsoft details Storm-0501’s focus on ransomware in the cloud
Citrix NetScaler customers hit by third actively exploited zero-day vulnerability since June
Hundreds of Salesforce customers impacted by attack spree linked to third-party AI agent
HITBSecNews
Found on VirusTotal: The world’s first UEFI bootkit for Linux
OpenAI is at war with its own Sora video testers following brief public leak
North Korean hackers posing as IT workers steal over $1B in cyberattack
WhatsApp: NSO Group Operates Pegasus Spyware for Customers
Korea extradites Russian, Vietnamese suspects linked to $16M ransomware scheme
CISA Director Jen Easterly, in Place Since 2021, to Step Down
Man sick of crashes sues Intel for allegedly hiding CPU defects
North Korean hackers target cryptocurrency with malware
Law enforcement operation takes down 22,000 malicious IP addresses worldwide
Youth of today say passwords are old news, passkeys are the future
ZDNet
My favorite affordable phone cases are BOGO free (including for the new Google Pixel 10 series)
You can save up to $700 on my favorite Bluetti power stations for Labor Day
Best Costco Labor Day deals 2025: 15+ sales up to $1,700 off
The 13+ best Walmart Labor Day deals 2025: Sales on Apple, Samsung, LG, and more
Best Labor Day smartwatch deals 2025: Sales on Apple, Google, and Samsung watches
Best Labor Day TV deals 2025: Save almost 50% on Samsung, LG, and more
Best Labor Day laptop deals 2025: Sales on Apple, Dell, Lenovo, and more
Best Labor Day phone deals 2025: Save up to $300 on Samsung, Google, and more
The 13+ best Labor Day deals live now: Save on Apple, Samsung and more
The best iPhone 15 screen protectors of 2025: Expert tested
The Hacker News
Attackers Abuse Velociraptor Forensic Tool to Deploy Visual Studio Code for C2 Tunneling
WhatsApp Issues Emergency Update for Zero-Click Exploit Targeting iOS and macOS Devices
Researchers Warn of Sitecore Exploit Chain Linking Cache Poisoning and Remote Code Execution
Webinar: Learn How to Unite Dev, Sec, and Ops Teams With One Shared Playbook
Amazon Disrupts APT29 Watering Hole Campaign Abusing Microsoft Device Code Authentication
Abandoned Sogou Zhuyin Update Server Hijacked, Weaponized in Taiwan Espionage Campaign
Can Your Security Stack See ChatGPT? Why Network Visibility Matters
Click Studios Patches Passwordstate Authentication Bypass Vulnerability in Emergency Access Page
FreePBX Servers Targeted by Zero-Day Flaw, Emergency Patch Now Available
Feds Seize $6.4M VerifTools Fake-ID Marketplace, but Operators Relaunch on New Domain
BleepingComputer
TamperedChef infostealer delivered through fraudulent PDF Editor
Windows 11 KB5064081 update clears up CPU usage metrics in Task Manager
Microsoft fixes bug behind Windows certificate enrollment errors
WhatsApp patches vulnerability exploited in zero-day attacks
Microsoft to enforce MFA for Azure resource management in October
Microsoft says recent Windows update didn't kill your SSD
Google warns Salesloft breach impacted some Workspace accounts
US targets North Korean IT worker army with new sanctions
Google shares workarounds for auth failures on ChromeOS devices
Malware devs abuse Anthropic’s Claude AI to build ransomware
Cybersecurity Dive
Federal, state officials investigating ransomware attack targeting Nevada
US, allies warn China-linked actors still targeting critical infrastructure
NetScaler warns hackers are exploiting zero-day vulnerability
Safety-critical industries wary about using AI for cybersecurity
Hackers steal data from Salesforce instances in widespread campaign
CISOs grow more concerned about risk of material cyberattack
Execs worry about unknown identity-security weaknesses
IT, business leaders clash over cloud, data security
Credential harvesting campaign targets ScreenConnect cloud administrators
CISA updates SBOM recommendations
Threatpost
Student Loan Breach Exposes 2.5M Records
Watering Hole Attacks Push ScanBox Keylogger
Tentacles of ‘0ktapus’ Threat Group Victimize 130 Firms
Ransomware Attacks are on the Rise
Cybercriminals Are Selling Access to Chinese Surveillance Cameras
Twitter Whistleblower Complaint: The TL;DR Version
Firewall Bug Under Active Attack Triggers CISA Warning
Fake Reservation Links Prey on Weary Travelers
iPhone Users Urged to Update to Patch 2 Zero-Days
Google Patches Chrome’s Fifth Zero-Day of the Year
The Register
Researcher who found McDonald's free-food hack turns her attention to Chinese restaurant robots
AWS catches Russia's Cozy Bear clawing at Microsoft credentials
Enterprise password management outfit Passwordstate patches Emergency Access bug
UK government dragged for incomplete security reforms after Afghan leak fallout
FBI cyber cop: Salt Typhoon pwned 'nearly every American'
DHS says it needs $100M worth of counter-drone tech to protect America
Not in my browser! Vivaldi capo doubles down on generative AI ban
FBI, Dutch cops seize fake ID marketplace that sold identity docs for $9
How does China keep stealing our stuff, wonders DoD group responsible for keeping foreign agents out
16 billion credentials exposed: why your business needs a password manager now
VentureBeat
Software commands 40% of cybersecurity budgets as gen AI attacks execute in milliseconds
Nous Research drops Hermes 4 AI models that outperform ChatGPT without content restrictions
Salesforce builds ‘flight simulator’ for AI agents as 95% of enterprise pilots fail to reach production
Anthropic launches Claude for Chrome in limited beta, but prompt injection attacks remain a major concern
This website lets you blind-test GPT-5 vs. GPT-4o—and the results may surprise you
Four big enterprise lessons from Walmart’s AI security: agentic risks, identity reboot, velocity with governance, and AI vs. AI defense
MIT report misunderstood: Shadow AI economy booms while headlines cry failure
CodeSignal’s new AI tutoring app Cosmo wants to be the ‘Duolingo for job skills’
DeepSeek V3.1 just dropped — and it might be the most powerful open AI yet
Anthropic takes on OpenAI and Google with new Claude AI features designed for students and developers
TechCrunch
WhatsApp fixes ‘zero-click’ bug used to hack Apple users with spyware
TransUnion says hackers stole 4.4 million customers’ personal information
FBI says China’s Salt Typhoon hacked at least 200 US companies
US sanctions fraud network used by North Korean ‘remote IT workers’ to seek jobs and steal money
DOGE uploaded live copy of Social Security database to ‘vulnerable’ cloud server, says whistleblower
Security researcher maps hundreds of TeslaMate servers spilling Tesla vehicle data
A new security flaw in TheTruthSpy phone spyware is putting victims at risk
Developer gets prison time for sabotaging former employer’s network with a ‘kill switch’
Hackers who exposed North Korean government hacker explain why they did it
Device searches at the US border hit record high, new data shows
Network World Security
Network jobs watch: Hiring, skills and certification trends
Kubernetes v1.34 brings networking refinements for cloud-native infrastructure
AI networking success requires deep, real-time observability
Intel touts efficiency and performance in new 288-core Xeon processor
Linux Foundation launches Essedum 1.0 to simplify AI integration in network operations
Cisco: Latest news and insights
Cisco launches dedicated wireless certification track
AMD: Latest news and insights
IBM, AMD team on quantum computing
Spotlight report: IT careers in the AI era
Help Net Security
Attackers use “Contact Us” forms and fake NDAs to phish industrial manufacturing firms
Halo Security platform updates give teams better control over exposure data
New framework aims to outsmart malware evasion tricks
Finding connection and resilience as a CISO
AI isn’t taking over the world, but here’s what you should worry about
AI can’t deliver without trusted, well-governed information
Infosec products of the month: August 2025
Agentic AI coding assistant helped attacker breach, extort 17 distinct organizations
Cycuity Radix-ST identifies security weaknesses earlier in chip design
ScamAgent shows how AI could power the next wave of scam calls
InfoSecurity Magazine
North Korean Hackers Weaponize Seoul Intelligence Files to Target South Koreans
Npm Package Hijacked to Steal Data and Crypto via AI-Powered Malware
State-Sponsored Hackers Behind Majority of Vulnerability Exploits
TransUnion Data Breach Impacts 4.5 Million US Customers
Fake IT Support Attacks Hit Microsoft Teams
Netherlands Confirms China's Salt Typhoon Targeted Small Dutch Telcos
Malicious VS Code Extensions Exploit Name Reuse Loophole
Nevada Confirms Ransomware Attack, State Data Stolen
Chinese Tech Firms Linked to Salt Typhoon Espionage Campaigns
Crypto Companies Freeze $47m in Romance Baiting Funds
© 2025 RiskDiscovery | Sponsored by: Deception Logic