[ News | Newsletters | Blogs | Lists | Media | Jobs ] HoneyDB
DarkReading
Name That Toon Contest
Trump AI Order Seeks Voluntary Frontier Model Testing
Rust-Written IronWorm Hits NPM Supply Chain
China's TA4922 Expands Cybercrime Attacks Globally
4 Critical Threats Where Attackers Have the Advantage
Bugcrowd Launches EU Data Residency Option For Evolving Data Sovereignty Needs
Pakistan Spies on Afghan Finance Ministry With Xeno RAT
Attackers Use AI to Automate EDR Evasion Testing
Tropical Blend: Cyber & Politics Ramp Up Across Latin America
Cyber Insurance Rates Are Dropping, but Exclusions Widen
Ars Technica
Dashlane explains how attackers managed to download encrypted password vaults
Can't make sense of Dashlane's vault theft notification? You're not alone.
Dozens of Red Hat packages backdoored through its official NPM channel
Botnet of more than 17 million devices dismantled
Fed up with vibe coders, dev sneaks data-nuking prompt injection into their code
Websites have a new way to spy on visitors: Analyzing their SSD activity
Millions of AI agents imperiled by critical vulnerability in open source package
US's big bet on quantum computing may not be entirely legal
Texas AG sues Meta over claims that WhatsApp doesn't provide end-to-end encryption
A hacker group is poisoning open source code at an unprecedented scale
CyberScoop
Hill Dems hammer GOP for $250M CISA budget cut
Your AI agent could become your biggest insider threat 
Inside the race to adapt to an AI-powered security world
European authorities crack down on illegal streaming networks
DHS Secretary Markwayne Mullin pinpoints optimal CISA staffing levels
DOD wants to integrate cyber in all operations, and integrate security into AI
Trump administration releases scaled-back AI executive order
Anthropic expanding access to Project Glasswing
Attackers are exploiting Palo Alto Networks defect that initially flew under the radar
Tina Peters, convicted in election-security breach, emerges defiant and vows legal fight
InfoSecurity Magazine
Infosecurity Europe: Practical Lessons From Lloyds' Agentic AI Security Playbook
Infosecurity Europe: OWASP Introduces Agentic AI Security Maturity Framework
Infosecurity Europe: AI Coding Tools Need Built-In Security for Agentic Development Era
Infosecurity Europe: Reactive Security Is Failing Healthcare Organizations, Experts Warn
Everest Forms Pro Vulnerability Allows Remote Code Execution on WordPress Sites
Infosecurity Europe: AI Adoption Creates New Opportunities for Attackers to Distribute Malware, Microsoft Warns
Chinese-Speaking Actor TA4922 Widens Its Global Reach
Infosecurity Europe: Mythos Outperforms GPT5.5 on Google Chrome Vulnerability Exploits, Says New Benchmark
Infosecurity Europe: How Proton Fights Against Cybercriminals Using Its Services
Infosecurity Europe: How Businesses Can Prepare for a Cybersecurity Crisis with Effective Plans
SecurityWeek
In Other News: Anthropic Maps AI Threats, Unpatched Comodo Flaw, Palantir Chief Eyed for CISA
Hackers Leak DentaQuest Information Impacting 2.6 Million
Chrome 149 Patches 429 Vulnerabilities
Industry Reactions to New Trump AI Cybersecurity Executive Order: Feedback Friday
Five Eyes: Chinese Spies Target Government, Military Staff With Fake Job Opportunities
Nightclub Giant RCI Says Data Breach Affects 40,000 Individuals
Cisco Warns of 7th SD-WAN Zero-Day Exploited in 2026
Offroad Emerges From Stealth With $7 Million to Tackle Enterprise Identity Risk
Webinar Today: Third-Party Risk in Practice – Where Programs Break Down and How to Respond
Willow Raises $7 Million for Securing Autonomous AI Agents
ZDNet
I have a new favorite Linux email client in 2026 - and I've tested them all
How Google could turn Siri into the AI health coach my Apple Watch needs
I trusted Malwarebytes to secure my PC for a month - here's how it performed
6 easy ways I make Zorin OS even faster and more secure
I've tested every Motorola foldable phone in 2026 so far - how to pick between Fold and Ultra
I asked published authors about their favorite e-readers - and the Kindle isn't the only pick
WWDC returns June 8: What we know and how to watch the Apple event
A day later with Oura Ring 5, I can't believe how much of an upgrade it's been from Ring 4
This 65-inch Hisense TV is $130 off ahead of Prime Day - and I highly recommend it
Amazon is selling a 2TB Samsung SSD for nearly 40% off right now - and it's plenty fast for PC
The Hacker News
New Threat Cluster OP-512 Targets Microsoft IIS Servers with Custom Web Shell Framework
Only 10% of SOCs Say They’re Getting Excellent Value From AI. Here’s What the Second Wave Has to Deliver
Hackers Exploit Critical Everest Forms Pro WordPress Plugin Flaw to Take Over Sites
FIFA World Cup 2026 Scams Are Already Live: Fake Sites, Banking Malware, and Stolen Logins
PCPJack Hijacks 230 AWS, Google Cloud, and Azure Servers for Covert SMTP Relay Network
Cisco Patches CVE-2026-20230 in Unified CM as Exploit Code Goes Public
Claude Code GitHub Action Flaw Let One Malicious Issue Hijack Repositories
Agentic AI Is Transforming Defense, But Only Secure IT Infrastructure Will Maximize It
ThreatsDay Bulletin: AI Agents Gone Wrong, Sketchy C2 Tools, ClickFix Tricks, JS Backdoors & 20+ New Stories
China-Linked TA4922 Expands Phishing Attacks to U.K., Germany, Italy, and South Africa
BleepingComputer
Cisco warns of unpatched SD-WAN zero-day exploited in attacks
Brave Software releases Origin for a paid, bloat-free browsing experience
Hola Browser for Windows compromised to deliver cryptominer
Credit card theft campaign abuses Stripe to host stolen payment info
DentaQuest data breach exposed info of 2.6 million accounts
UN food agency discloses breach affecting 600,000 Gaza households
New IronWorm malware hits 36 packages in npm supply-chain attack
Hackers Are After the Gaps in Your Vulnerability Program: Here's Their Playbook
Microsoft blames unexpected Windows driver updates on caching issue
Police dismantles fake ID marketplace used by migrant smugglers
gbhackers
Hackers Weaponize Trusted Tools to Deploy Notorious Malware
New Magecart Attack Abuses Stripe as Malware C2
Hola Browser Windows Delivery Pipeline Hijacked to Deploy Cryptominer
Trend Micro Deep Security Agent Flaw Allows Repeatable Security Bypass
Hugging Face Transformers Security Flaw Allows Remote Code Execution
New Gafgyt Variant Targets Linux Systems With Modular Spread Tactics
Malicious Browser Add-Ons Target Major AI Chatbot Users
New SHub Stealer Variant Targets Major Browsers and Crypto Wallets
AI-Powered Worm Leverages Stolen Compute to Target Linux, Windows, and IoT Devices
Zero-Click Agentic AI Attack Bypasses Human Oversight
Cybersecurity Dive
CISA chief says Trump AI executive order implementation will start soon
CrowdStrike, Palo Alto Networks defy estimates as AI fuels cyber demand
‘Don’t panic’: AI reality checks dominate major cybersecurity conference
CISA, FBI warn that hackers are targeting systems used to monitor industrial fluids
Trump signs EO seeking early government access to powerful AI models
Dozens of Red Hat npm packages targeted in supply chain attack
Anthropic shares Mythos with 150 more organizations, including critical infrastructure operators
Turning tension into collaboration: How CIOs and CISOs can lead together
Without strong governance, companies put credit ratings at risk in AI era
CISA adds critical Palo Alto Networks firewall flaw to KEV as company, researchers warn of exploitation
Threatpost
Student Loan Breach Exposes 2.5M Records
Watering Hole Attacks Push ScanBox Keylogger
Tentacles of ‘0ktapus’ Threat Group Victimize 130 Firms
Ransomware Attacks are on the Rise
Cybercriminals Are Selling Access to Chinese Surveillance Cameras
Twitter Whistleblower Complaint: The TL;DR Version
Firewall Bug Under Active Attack Triggers CISA Warning
Fake Reservation Links Prey on Weary Travelers
iPhone Users Urged to Update to Patch 2 Zero-Days
Google Patches Chrome’s Fifth Zero-Day of the Year
The Register
World Food Programme breach exposes data of 600k vulnerable Gazan families
Council in UK's City of York outs hundreds of disabled residents with a single email blunder
Pink is the latest goon squad to use fake helpdesk calls to steal creds
OpenAI's agent chained decade-old DoS attacks to crash web servers in seconds
Five Eyes: Watch out for odd LinkedIn connection requests, China's back on the hunt for state secrets
Duo who sold car crash victims' data must repay £118k
Nobody needs Mythos or 0-days to build a chaos-causing computer worm – free open source models work just fine
All the passwords were stored in Active Directory description fields
Commvault says it's time to rethink resiliency as AI crooks leave victims in a 'dark, dead' state
Bend the beam like Beckham to defeat anti-jamming tech
VentureBeat
Microsoft launches MXC, an OS-level sandbox for AI agents, with OpenAI and Nvidia already on board
Zip’s new AI agents want to stop your finance team from uploading contracts into personal ChatGPT accounts
Anthropic’s browser agent got hijacked 31.5% of the time before safeguards engaged
AI doesn't break security. Complexity does
Claude Mythos exposed a hard truth: Your enterprise patching process is way too slow
DataGrail report finds your vendor may be sending data to AI models you never approved
The attack dominating financial services doesn't steal passwords. It resets MFA and steals the token.
TechCrunch
Filtr is a new privacy tool that blocks ads in almost every iPhone and Mac app
Defense tech, AI, and fundraising take center stage at StrictlyVC Los Angeles on June 18
Chinese spies are using LinkedIn to lure Westerners into sharing sensitive information
Ultrahuman says hackers accessed customers’ wellness data via internal tool
Instagram is alerting users who were targeted by hackers during AI chatbot attacks
The worst hacks and breaches of 2026 (so far)
Cyera eyes $12B valuation at 80x ARR multiple despite operating losses
Password manager Dashlane says hackers stole some customers’ password vaults
Anthropic scales Claude Mythos to critical infrastructure in 15+ countries
Hackers hijacked Instagram accounts by tricking Meta AI support chatbot into granting access
Network World Security
How Cisco IT cut observability costs by 86% and eliminated major network outages
Microsoft makes Linux developers feel more at home in Windows with Coreutils release
AMD ships second-gen Versal Prime accelerators
CompTIA debuts AutoOps+ certification
Cisco sees quantum networking as the future of networking
Enterprise Spotlight: Rethinking cloud strategy in the age of AI
What is Cisco Cloud Control and why should customers care?
Will Broadcom’s VMware strategy keep paying big dividends?
Netskope introduces AI Command Center to monitor and secure enterprise AI sprawl
Cisco Live: The network is back, and AI rewrote the rules
Help Net Security
Attackers obtained encrypted password vaults from some Dashlane user accounts
Let’s Encrypt works toward post-quantum certificates at web scale
Cisco SD-WAN 0-day exploited, no patch available (CVE-2026-20245)
AI is helping low-skill hackers pull off advanced cyberattacks
Photos: Infosecurity Europe 2026
June 2026 Patch Tuesday forecast: Where are the CVEs?
AgentGG: Open-source agentic SAST scanner
Thieves can pull off keyless car theft in under a minute and here’s how to stop them
AI agent governance gets harder when agents outnumber your people
Most pros have seen AI hallucinations in IT operations
SC Magazine
Malicious podcast, PDF apps spread FlutterShell macOS backdoor malware
China-linked actors using job sites to target government workers, Five Eyes warns
Android Gemini prompt injection flaw patched by Google
iFood confirms data breach affecting 1.2 million users
Underground forum tutorial simplifies vulnerability exploitation for novice hackers
Critical Redis vulnerability CVE-2026-23479 allows remote code execution
Offroad launches with $7 million to use AI agents for identity security
AI tools pose insider threat risks as integration accelerates
Critical vulnerability in Hugging Face Transformers library allowed arbitrary code execution
Fake document marketplace aiding migrant smuggling dismantled in Spain
© 2026 RiskDiscovery | Sponsored by: Deception Logic