[ News | Newsletters | Blogs | Lists | Media | Jobs ] HoneyDB
DarkReading
More Attackers Are Logging In, Not Breaking In
Less Lucrative Ransomware Market Makes Attackers Alter Methods
Hackers Target Cybersecurity Firm Outpost24 in 7-Stage Phish
Warlock Ransomware Group Augments Post-Exploitation Activities
China-Nexus Hackers Skulk in Southeast Asian Military Orgs for Years
GlassWorm Malware Evolves to Hide in Dependencies
Inside Olympic Cybersecurity: Lessons From Paris 2024 to Milan Cortina 2026
Attackers Abuse LiveChat to Phish Credit Card, Personal Data
Fake PoCs, Misunderstood Risks Cause Cisco SD-WAN Chaos
The Data Gap: Why Nonprofit Cyber Incidents Go Underreported
Ars Technica
Researchers disclose vulnerabilities in IP KVMs from four manufacturers
Supply-chain attack using invisible code hits GitHub and other repositories
The who, what, and why of the attack that has shut down Stryker's Windows network
14,000 routers are infected by malware that's highly resistant to takedowns
Feds take notice of iOS vulnerabilities exploited under mysterious circumstances
Amazon appears to be down, with over 20,000 reported problems
Trump gets data center companies to pledge to pay for power generation
Downdetector, Speedtest sold to IT service-provider Accenture in $1.2B deal
LLMs can unmask pseudonymous users at scale with surprising accuracy
Google quantum-proofs HTTPS by squeezing 15kB of data into 700-byte space
CyberScoop
CISA official advises agencies not to get too hung up on who takes lead in critical infrastructure sectors
Trump administration isn’t pushing companies to conduct cyber offense, national cyber director says
Appeals court temporarily pauses order blocking Perplexity’s AI shopping agent on Amazon
It’s time to get serious about post-quantum security. Here’s where to start.
Zero lessons learned: Convicted scammer allegedly ran another athlete-focused phishing scam from federal prison
The ransomware economy is shifting toward straight-up data extortion
Attackers are exploiting AI faster than defenders can keep up, new report warns
Washington is right: Cybercrime is organized crime. Now we need to shut down the business model
Stryker attack highlights nebulous nature of Iranian cyber activity amid joint U.S.-Israel conflict
Authorities takedown global proxy network SocksEscort
InfoSecurity Magazine
AI Issues Will Drive Half of Incident Response Efforts by 2028, Says Gartner
Android OS-Level Attack Bypasses Mobile Payment Security
'CursorJack’ Attack Path Exposes Code Execution Risk in AI Development Environment
Surge in Nation State Attacks on UK Firms Amid Cyber Warfare Fears
Average Number of Daily API Attacks Up 113% Annually
UK Cyber Monitoring Centre Sets Its Sights on US Expansion One Year After Launch
Researchers Warn of Global Surge in Fake Shipment Tracking Scams
CrackArmor Flaws Expose Linux Systems to Privilege Escalation
Security Flaw in AWS Bedrock Code Interpreter Raises Alarms
FBI Calls for Help to Track Steam Malware Campaign
SecurityWeek
Tech Giants Invest $12.5 Million in Open Source Security
UK Companies House Exposed Details of Millions of Firms 
Surf AI Raises $57 Million for Agentic Security Operations Platform
Robotic Surgery Giant Intuitive Discloses Cyberattack
174 Vulnerabilities Targeted by RondoDox Botnet
Google, Meta, Microsoft Among Signatories of Pact to Combat Scams
Tracebit Raises $20M for Cloud-Native Deception Technology
CISA Flags Year-Old Wing FTP Vulnerability as Exploited
AI, APIs and DDoS Collide in New Era of Coordinated Cyberattacks
Oracle EBS Hack: Only 4 Corporate Giants Still Silent on Potential Impact
ZDNet
Best early Amazon Spring Sale laptop deals 2026
Best early Amazon Spring Sale deals under $25
The best early Amazon Spring Sale deals: Save on streaming, Apple, Samsung, and more
MacBook Neo just set a new bar for cheap laptops - and rattled the PC market
This glorious smart speaker is the HomePod successor Apple fans have been longing for
MacBook Neo vs. MacBook Air: How I'm deciding between Apple's entry-level laptops
A chief AI officer is no longer enough - why your business needs a 'magician' too
Best early Amazon Spring Sale tablet deals 2026
Best early Amazon Spring Sale 2026 smartwatch and smart ring deals
Samsung Galaxy S26 Ultra review: Frustratingly the best Android phone I've tested
The Hacker News
Ubuntu CVE-2026-3888 Bug Lets Attackers Gain Root via systemd Cleanup Timing Exploit
Apple Fixes WebKit Vulnerability Enabling Same-Origin Policy Bypass on iOS and macOS
Critical Unpatched Telnetd Flaw (CVE-2026-32746) Enables Unauthenticated Root RCE via Port 23
AI Flaws in Amazon Bedrock, LangSmith, and SGLang Enable Data Exfiltration and RCE
LeakNet Ransomware Uses ClickFix via Hacked Sites, Deploys Deno In-Memory Loader
AI is Everywhere, But CISOs are Still Securing It with Yesterday's Skills and Tools, Study Finds
Konni Deploys EndRAT Through Phishing, Uses KakaoTalk to Propagate Malware
CISA Flags Actively Exploited Wing FTP Vulnerability Leaking Server Paths
GlassWorm Attack Uses Stolen GitHub Tokens to Force-Push Malware Into Python Repos
⚡ Weekly Recap: Chrome 0-Days, Router Botnets, AWS Breach, Rogue AI Agents & More
BleepingComputer
Apple pushes first Background Security Improvements update to fix WebKit flaw
GlassWorm malware hits 400+ code repos on GitHub, npm, VSCode, OpenVSX
Europe sanctions Chinese and Iranian firms for cyberattacks
Top 5 Things CISOs Need to Do Today to Secure AI Agents
New font-rendering trick hides malicious commands from AI tools
Microsoft stops force-installing the Microsoft 365 Copilot app
LeakNet ransomware uses ClickFix, Deno runtime in stealthy attacks
Microsoft shares fix for Windows C: drive access issues on Samsung PCs
New Windows 11 hotpatch fixes Bluetooth device visibility issue
Microsoft: Enabling Teams Meeting add-in breaks Outlook Classic
gbhackers
Iran Cyber Ops Merge With PsyOps and EW Amid Escalating Conflict
Ubuntu Desktop Vulnerability Lets Attackers Escalate Privileges to Full Root Access
Microsoft Teams-Based Vishing Attack Tricks Victims Into Quick Assist Takeover
Vidar Stealer 2.0 Spreads via Fake Game Cheats Shared on GitHub and Reddit
Boggy Serpens Hits Diplomats, Critical Infrastructure in Espionage Waves
New Kubernetes NFS CSI Vulnerability Enables Unauthorized Directory Deletion and Changes
Researchers Disclose ‘RegPwn,’ a Windows Registry Weakness Allowing SYSTEM Access
Fake Telegram Download Site Delivers Stealthy In-Memory Malware Loader
FortiClient Hit by Severe SQL Injection Vulnerability Enabling Database Intrusion
AWS Bedrock AgentCore Sandbox Bypass Enables Stealthy C2 and Data Exfiltration
Cybersecurity Dive
National cyber director expands on Trump administration’s vision for AI security, industry collaboration
Security teams might be overlooking wider threat to Cisco SD-WAN
Telus Digital confirms hack as ShinyHunters claims credit for massive data theft
Stryker attack raises concerns about role of device management tool
Robotics firm Intuitive Surgical says cyberattack compromised business, customer data
AI agent security: New governance framework shows progress, but critical gaps remain
Stryker’s manufacturing, shipping disrupted after cyberattack
Even primitive AI-coded malware helps hackers move faster, thwart attribution
5 ways to protect manufacturing companies from cyberattacks
Coalition of information-sharing groups warns of cyber, physical attacks
Threatpost
Student Loan Breach Exposes 2.5M Records
Watering Hole Attacks Push ScanBox Keylogger
Tentacles of ‘0ktapus’ Threat Group Victimize 130 Firms
Ransomware Attacks are on the Rise
Cybercriminals Are Selling Access to Chinese Surveillance Cameras
Twitter Whistleblower Complaint: The TL;DR Version
Firewall Bug Under Active Attack Triggers CISA Warning
Fake Reservation Links Prey on Weary Travelers
iPhone Users Urged to Update to Patch 2 Zero-Days
Google Patches Chrome’s Fifth Zero-Day of the Year
The Register
Iran's cyberattack against med tech firm is 'just the beginning'
Linux Foundation kicks off effort to shield FOSS maintainers from AI slop bug reports
Japan to allow ‘proactive cyber-defense’ from October 1st
WorldCoin's newest pitch: Scan your eyeballs to prove AI agents really represent you
EU sanctions Iranian cyber front over election meddling, Charlie Hebdo breach
Too big to ignore, too small to be served: the midmarket security gap
Switzerland built a secure alternative to BGP. The rest of the world hasn't noticed yet
Gartner suggests Friday afternoon Copilot ban because tired users may be too lazy to check its mistakes
Bank built its own threat hunting agent because vendors can’t keep pace with new threats
Robotics surgical biz Intuitive discloses phishing attack
VentureBeat
The authorization problem that could break enterprise AI
Nvidia's agentic AI stack is the first major platform to ship with security at launch, but governance gaps remain
OpenClaw can bypass your EDR, DLP and IAM without triggering a single alert
Anthropic and OpenAI just exposed SAST's structural blind spot with free tools
Enterprise identity was built for humans — not AI agents
Microsoft says ungoverned AI agents could become corporate 'double agents.' Its fix costs $99 a month.
Pentagon vendor cutoff exposes the AI dependency map most enterprises never built
TechCrunch
Apple rolls out first ‘background security’ update for iPhones, iPads, and Macs to fix Safari bug
Stryker says it’s restoring systems after pro-Iran hackers wiped thousands of employee devices
Wiz investor unpacks Google’s $32B acquisition
The FBI is investigating malware hidden inside games hosted on Steam
Law enforcement shuts down botnet made of tens of thousands of hacked routers
Pro-Iran hacktivist group says it is behind attack on medical tech giant Stryker
Hacker broke into FBI and compromised Epstein files, report says
Google wraps up $32B acquisition of cloud cybersecurity startup Wiz
DOGE employee stole Social Security data and put it on a thumb drive, report says
Mandiant’s founder just raised $190M for his autonomous AI agent security startup
Network World Security
Beyond the fan: Crossing the liquid cooling rubicon
USAT to Distribute Digital Dollars to Thousands During St. Patrick’s Day Celebration in Times Square
Nvidia targets inference as AI’s next battleground with Groq 3 LPX
HPE, Nvidia expand AI partnership
Nvidia: Latest news and insights
2026 network outage report and internet health check
Cato Networks unveils GPU-powered SASE with native AI security controls
Chip wafer shortage will run through 2030 as AI demand overwhelms supply: SK Hynix chief
Why Nvidia’s DGX Rubin NVL8 runs on Intel Xeon 6
Nvidia announces Vera Rubin platform, signaling a shift to full-stack AI infrastructure
Help Net Security
Blumira enhances EDR and ITDR to speed up threat detection and containment
BlackHawk Data introduces CloudSight for continuous security auditing
Abnormal AI Attune 1.0 targets AI-driven attacks with behavioral detection
Big tech companies step in to support the open source security ecosystem
Island Enterprise Platform delivers unified control for workspaces and AI
Theori brings Xint Code to market for large-scale AI code security analysis
1Password Users API for Partners helps automate identity response during incidents
Cayosoft adds AI identity visibility and incident response for hybrid environments
Virtue AI brings continuous stress testing to enterprise AI agents
ManageEngine expands Endpoint Central with EDR and secure access
SC Magazine
Language of the Board as CISO-Board Time Falls Short and CISOs Struggle with Risk - Ben Wilcox - BSW #439
Spin.AI receives investment from K1 for SaaS security
GlassWorm campaign evolves: ForceMemo attack targets Python repos via stolen GitHub tokens
UK businesses risk data breaches due to poor identity security
CISA warns of actively exploited Wing FTP Server vulnerability
Companies House platform suffers security issue exposing director data
AWS Bedrock tool vulnerability allows data exfiltration via DNS leaks
Intuitive suffers data breach after phishing attack
Phishing scams use LiveChat to impersonate brands, steal data
AI Spicy Mode, Steam, Glassworm, Samsung, Stryker, Waymo, Cole Porter, and More - SWN #564
© 2026 RiskDiscovery | Sponsored by: Deception Logic