[ News | Newsletters | Blogs | Lists | Media | Jobs ] HoneyDB
DarkReading
GitHub 'OpenClaw Deployer' Repo Delivers Trojan Instead
How a Large Bank Uses AI Digital Twins for Threat Hunting
Microsoft Proposes Better Identity, Guardrails for AI Agents
AI in the SOC: What Could Go Wrong?
Trivy Supply Chain Attack Targets CI/CD Secrets
Ransomware's New Era: Moving at AI Speed
CISOs Debate Human Role in AI-Powered Security
Attackers Hide Infostealer in Copyright Infringement Notices
AI Dominates RSAC Innovation Sandbox
Patch Now: Oracle's Fusion Middleware Has Critical RCE Flaw
Ars Technica
Self-propagating malware poisons open source software and wipes Iran-based machines
Widely used Trivy scanner compromised in ongoing supply-chain attack
Cloud service providers ask EU regulator to reinstate VMware partner program
Federal cyber experts called Microsoft's cloud a "pile of shit," approved it anyway
Researchers disclose vulnerabilities in IP KVMs from four manufacturers
Supply-chain attack using invisible code hits GitHub and other repositories
The who, what, and why of the attack that has shut down Stryker's Windows network
14,000 routers are infected by malware that's highly resistant to takedowns
Feds take notice of iOS vulnerabilities exploited under mysterious circumstances
Amazon appears to be down, with over 20,000 reported problems
CyberScoop
Treasury asks whether terrorism risk insurance program should bolster cyber coverage
Russian access broker sentenced to over 6 years in prison for ransomware schemes
Experts insist Trump administration’s cyber strategy is already paying off
State officials, election experts question California sheriff’s seizure of ballots
FBI: Iranian hackers targeting opponents with Telegram malware
An AI-powered phishing campaign has compromised hundreds of organizations
The phone call is the new phishing email
FBI, CISA issue PSA on Russian intelligence campaign to target messaging apps
Trio sentenced for facilitating North Korean IT worker scheme from their homes
Ubiquiti defect poses account takeover risk for UniFi Networking Application users
InfoSecurity Magazine
Silver Fox Cyber Campaigns Show Shift Toward Dual Espionage
Citrix Urges Immediate Patching for Critical NetScaler Vulnerabilities
New Npm 'Ghost Campaign' Uses Fake Install Logs to Hide Malware
Former Ukrainian Foreign Minister Dmytro Kuleba to Address the New Cyber Frontline at Infosecurity Europe
Enterprise Cybersecurity Software Fails 20% of the Time, Warns Absolute Security
Russian Initial Access Broker Handed 81-Month Sentence
Handala Group Tied to Iranian Hack‑and‑Leak Operations, FBI Reveals
Most Cybersecurity Staff Don’t Know How Fast They Could Stop a Cyber-Attack on AI Systems
Tycoon2FA Phishing Service Resumes Activity Post-Takedown
High-Tech Sector Overtakes Finance as Top Target for Cyber-Attacks, Mandiant Reports
SecurityWeek
Extortion Group Claims It Hacked AstraZeneca
Chrome 146 Update Patches High-Severity Vulnerabilities
Webinar Today: Putting CIS Controls and Benchmarks into Practice
3.1 Million Impacted by QualDerm Data Breach
Iran Built a Vast Camera Network to Control Dissent. Israel Turned It Into a Targeting Tool
Critical Citrix NetScaler Vulnerability Poised for Exploitation, Security Firms Warn
Mazda Says Employee, Partner Information Stolen in Cyberattack
Stryker Says Malicious File Found During Probe Into Iran-Linked Attack
RSAC 2026 Conference Announcements Summary (Pre-Event)
M-Trends 2026: Initial Access Handoff Shrinks From Hours to 22 Seconds
ZDNet
Motorola's Razr Ultra is $500 off ahead of Amazon's Spring Sale
I cracked open cheap charging gadgets from Temu - and it was worse than I expected
Amazon Spring Sale live blog 2026: Real-time updates on the best deals
I finally see why Opera GX for Linux is more than just a browser for gamers
Buying a router? A new US ban just shrank your choices - here's why
Amazon is discounting these popular DeWalt power tools by up to $200 off
My favorite outdoor projector just dropped to its lowest price ever
Amazon's Big Spring Sale is back: Dates, details, and deals to know now
Best early Amazon Spring Sale 2026 smartwatch and smart ring deals
Best early Amazon Spring Sale Apple deals 2026
The Hacker News
Ghost Campaign Uses 7 npm Packages to Steal Crypto Wallets and Credentials
5 Learnings from the First-Ever Gartner Market Guide for Guardian Agents
TeamPCP Hacks Checkmarx GitHub Actions Using Stolen CI Credentials
The Hidden Cost of Cybersecurity Specialization: Losing Foundational Skills
U.S. Sentences Russian Hacker to 6.75 Years for Role in $9M Ransomware Damage
Citrix Urges Patching Critical NetScaler Flaw Allowing Unauthenticated Data Leaks
North Korean Hackers Abuse VS Code Auto-Run Tasks to Deploy StoatWaffle Malware
⚡ Weekly Recap: CI/CD Backdoor, FBI Buys Location Data, WhatsApp Ditches Numbers & More
We Found Eight Attack Vectors Inside AWS Bedrock. Here's What Attackers Can Do with Them
Microsoft Warns IRS Phishing Hits 29,000 Users, Deploys RMM Malware
BleepingComputer
Microsoft fixes bug causing Classic Outlook sync issues with Gmail
Zero Trust: Bridging the Gap Between Authentication and Trust
HackerOne discloses employee data breach after Navia hack
Infinite Campus warns of breach after ShinyHunters claims data theft
Yanluowang ransomware access broker gets 81 months in prison
Dutch Ministry of Finance discloses breach affecting employees
OpenAI rolls out ChatGPT Library to store your personal files
Mazda discloses security breach exposing employee and partner data
Tycoon2FA phishing platform returns after recent police disruption
TeamPCP deploys Iran-targeted wiper in Kubernetes attacks
gbhackers
SQL Server Ransomware Attacks: How They Work and How to Harden Your Database
DarkSword Exploit Chain Leaked Online, Posing Risk to Millions of iPhones
Tycoon2FA Operators Resume Cloud Account Phishing Following Infrastructure
TeamPCP Unleashes Iran-Targeted CanisterWorm Kubernetes Wiper
Dell Wyse Management Flaws Could Lead to Full System Compromise
Multiple Vulnerabilities in TP-Link Devices Enable Arbitrary Command Execution
Threat Actors Target MS-SQL Servers to Deploy ICE Cloud Scanner Malware
Gcore Radar report reveals 150% surge in DDoS attacks year-on-year
Russian Access Broker Jailed for Facilitating Ransomware Attacks Targeting U.S. Companies
Google Forms Job Scam Spreads PureHVNC Malware
Cybersecurity Dive
Cybercrime groups speed up initial access handoff through planning, coordination
FCC bans import of consumer-grade routers amid national security concerns
ISACs confront AI’s promise and peril for threat intelligence-sharing
AI poised to most help low-skilled hackers in the near term
Lockheed Martin targeted in alleged breach by pro-Iran hacktivist
Stryker confirms cyberattack is contained and restoration underway
Network edge devices still widely used after reaching end-of-life status
Companies know AI is essential for cyber defense but aren’t yet seeing returns
US, allies move to dismantle four high-volume IoT botnets
DOJ confirms seizure of domains linked to Iran-backed threat actor
Threatpost
Student Loan Breach Exposes 2.5M Records
Watering Hole Attacks Push ScanBox Keylogger
Tentacles of ‘0ktapus’ Threat Group Victimize 130 Firms
Ransomware Attacks are on the Rise
Cybercriminals Are Selling Access to Chinese Surveillance Cameras
Twitter Whistleblower Complaint: The TL;DR Version
Firewall Bug Under Active Attack Triggers CISA Warning
Fake Reservation Links Prey on Weary Travelers
iPhone Users Urged to Update to Patch 2 Zero-Days
Google Patches Chrome’s Fifth Zero-Day of the Year
The Register
HackerOne slams supplier for delayed breach notice after staff data exposed
Country that put backdoors into Cisco routers to spy on world bans foreign routers
Russian initial access broker who fed ransomware crews gets 81 months in US prison
Claude attacks were 'Rorschach test' for infosec community, scaring former NSA boss
Public-private partnerships vital in disrupting China's Typhoons, says RSA panel with no government speakers
Lightning-fast exploits make it essential to patch fast, ask questions later
Google unleashes Gemini AI agents on the dark web
Smooth criminals talking their way into cloud environments, Google says
US chip testing firm shrugged off ransomware hit as minor – then came the data leak
RSAC 2026: Uncle Sam backs out, and AI agents are everywhere
VentureBeat
Meta's rogue AI agent passed every identity check — four gaps in enterprise IAM explain why
The authorization problem that could break enterprise AI
Nvidia's agentic AI stack is the first major platform to ship with security at launch, but governance gaps remain
OpenClaw can bypass your EDR, DLP and IAM without triggering a single alert
Anthropic and OpenAI just exposed SAST's structural blind spot with free tools
Enterprise identity was built for humans — not AI agents
Microsoft says ungoverned AI agents could become corporate 'double agents.' Its fix costs $99 a month.
TechCrunch
FCC bans import of new consumer routers made overseas, citing security risks
Insight Partners scrubs investment post about Delve amid ‘fake compliance’ allegations
Someone has publicly leaked an exploit kit that can hack millions of iPhones
Russian authorities block paywall removal site Archive.today
FBI says Iranian hackers are using Telegram to steal data in malware attacks
Federal immigration agents filmed making airport arrests as Trump calls in ICE to ease security line delays
Delve accused of misleading customers with ‘fake compliance’
A French Navy officer accidentally leaked the location of an aircraft carrier by logging his run on Strava
US accuses Iran’s government of operating hacktivist group that hacked Stryker
Cyberattack on vehicle breathalyzer company leaves drivers stranded across the US
Network World Security
Forescout brings identity-driven segmentation to multi-vendor networks
2026 network outage report and internet health check
FCC bans foreign routers, putting enterprise network risk in focus
Cisco: Latest news and insights
Palo Alto updates security platform to discover AI agents
Nvidia: Latest news and insights
Cisco goes all in on agentic AI security
Cisco Talos 2025 year in review and lessons learned
Nvidia overhauls the data center for OpenClaw era
Nile adds microsegmentation and native NAC to its secure NaaS platform
Help Net Security
Uncle Sam closes the door on all new foreign-made routers
The AI safety conversation is focused on the wrong layer
Critical NetScaler ADC, Gateway flaw may soon be exploited (CVE-2026-3055)
Mimecast expands Incydr with runtime data security for AI and human risk
Russian initial access broker helped ransomware gangs extort millions, sentenced to 81 months
Darktrace expands MSSP offering with AI-driven managed email security
Novee introduces autonomous AI red teaming to hunt LLM vulnerabilities
Detectify uncovers hidden assets and risks across entire IP ranges
32% of top-exploited vulnerabilities are over a decade old
Microsoft details AI prompt abuse techniques targeting AI assistants
SC Magazine
US blocks sale of new imported routers
Ransomware Inc. and the startup approach to cybercrime
RSAC 2026: AI reshapes cyber defense and threat landscape
Time to redesign the company’s data privacy environment for the AI era
Why Proactive Security Is Far Better Than Patching - Erik Nost - ASW #375
RSAC 2026 Day 1: First Impressions and Early Themes - RSAC26 #1
Cloning Attacker Tradecraft: Why AI Pentesting is Becoming Essential - Ido Geffen - RSAC26 #1
AI-related job cuts mostly hit entry-level roles, as AI skills become essential
Downtime: The New Economic Threat - Christy Wyatt - RSAC26 #1
Privileged by Design: AI Agents and the New Identity Risk to Production Systems - Shashwat Sehgal - RSAC26 #1
© 2026 RiskDiscovery | Sponsored by: Deception Logic