[ News | Newsletters | Blogs | Lists | Media | Jobs ] HoneyDB
DarkReading
FIFA Bug Exposed World Cup Streams to Remote Takeover
Salesforce Data Thefts Continue via Klue App Compromise
Get Out of Security Debt by Tackling the Exposure Problem
EU Gets a Head Start in Developing 6G Network Security
INC Ransomware Thrives by Mastering the Basics
Sweeping Credential-Harvesting Heist Compromises 30K+ Fortinet Devices
UK Social Media Ban for Minors Has Privacy Experts Worried
Fileless Phantom Stealer Targets Browser Credentials
Security Community Slams US Ban on Exporting Mythos, Fable
SprySOCKS Windows Variant Abuses Kernel Drivers to Evade Detection
Ars Technica
Before SpaceX IPO, investors in China secretly acquired stakes
Massive breach spills credentials for thousands of sensitive networks
Tesco moving 40,000 server workloads off VMware amid Broadcom's “abusive conduct”
"Dangerous" AI models are coming no matter what
Windows and Linux users: The deadline to update Secure Boot keys is near
Year of free HPE software a “step in the correct direction” in VMware rivalry
Critical Copilot vulnerability allowed hackers to steal 2FA code from users
Users cry foul after AMD stripped memory crypto from its consumer CPUs
PeopleSoft 0-day affecting hundreds of organizations steals gigabytes of data
Locked in heated rivalry with researcher, Microsoft fixes 0-day they disclosed
CyberScoop
How software development’s speed obsession enabled TeamPCP’s chaos crusade
Accenture shells out $4.18B on three companies in big industrial cybersecurity push
Attackers hit pair of critical Fortinet vulnerabilities the vendor disclosed in April
Lawmakers leery about Trump administration’s Anthropic order
AI’s constant patching treadmill can be a security problem
A case for how to shape ‘ingredient lists’ for AI models
Google exposes China espionage group that’s been lurking in networks undetected since 2023
Cybersecurity experts don’t think Anthropic’s Fable 5 presents a unique threat 
Anthropic disables new models after government calls them a national security concern
FBI takes down massive China-based cybercrime network that caused $1.9B in losses
InfoSecurity Magazine
Fake GitHub Stars and AI Videos Mask a Crypto Clipper
ICO Cautions Healthcare Worker After Princess of Wales Incident
Cybercriminals Are Worried About AI Taking Their Jobs Too
LATAM Infrastructure Hit by Fortinet and Ivanti Exploits
Hostile States Behind 75% of Cyber-Attacks on UK Critical Infrastructure, NCSC Warns
Cybercrime Surges in APAC as Digitalization Takes Hold
North Korean Hiring Fraud Runs on AI and US Laptop Farms
Serverless Phishing Kit on GitHub Targets Mexican Banks
Sensitive Enterprise Data Uploads to AI Models Double in a Year
AI Threats and Alert Fatigue Challenge Cybersecurity Teams
SecurityWeek
Majority of Internet-Accessible REDCap Servers Outdated
Accenture to Acquire Majority Stake in Dragos, All of runZero, NetRise in $4.1 Billion OT Cybersecurity Push
No Exploits Required
Dream Raises $260 Million at $3 Billion Valuation
Atlassian, Splunk Patch Critical Vulnerabilities
Rokarolla Banking Trojan Targets 200 Applications
Critical Command Execution Vulnerability Patched in Cisco ISE
F5 Patches Critical, High-Severity NGINX Vulnerabilities
SailPoint to Acquire Entro in Reported $200 Million Deal
Kodak Admits Data Breach After ShinyHunters Hack Claims
ZDNet
I tested a $15 smart switch and uncovered a $1,500-a-year energy waste in the kitchen
This $17 solar panel effectively gave my doorbell camera infinite battery life - how I set it up
Get a Walmart Plus membership for 50% off right now
The best early Prime Day robot vacuum deals I'd buy now, after testing dozens of them
The best Sam's Club deals to compete with Prime Day 2026 (including half off membership)
Apple confirms price increases are coming - how much will it cost you?
Finally, a Windows laptop I'd seriously consider as a MacBook Neo competitor
I'm turning my old tech into Amazon gift cards and discounts before Prime Day - here's how
This Bluetooth tracker uses LoRa mesh networks to find things - and I couldn't believe the accuracy
I put Siri AI through the same tests I use for ChatGPT and Gemini on MacOS 27 - here's how it did
The Hacker News
Orphaned AI Agents: How to Find Hidden Access Risks Inside Your Network
ThreatsDay Bulletin: Claude Chat Abuse, NastyC2 npm Packages, Device-Code Phishing + 25 More Stories
Microsoft Details Windows Clipper Malware Campaign Using USB LNK Worm and Tor-Based C2
INC Ransomware Emerges as Major RaaS Threat in 2026 with 830+ Victims Since 2023
The Scripts on Your Checkout Page Are Now a PCI DSS Problem
DragonForce Hackers Abuse Microsoft Teams Relays to Hide Backdoor.Turn C2 Traffic
Crypto Clipper Campaign Abuses Fake Reviews, AI Narrators, and VirusTotal Comments
Microsoft Confirms RoguePlanet Defender Zero-Day, Says Patch is in Development
Junior Hacker Used Tailscale and OpenSSH to Keep Access After His C2 Went Offline
Adversarial Exposure Validation Turns Security Visibility into Confident Prioritization
BleepingComputer
USB worm spreads crypto-stealing malware via Windows shortcut files
Klue OAuth breach linked to 'Icarus' Salesforce data theft attacks
5 reasons Microsoft 365 backup isn’t enough for business data protection
Police cleans nearly 15,000 SocGholish-infected sites tied to Evil Corp
ShapedPlugin update flow hacked to infect WordPress sites
FortiBleed leak exposes Fortinet VPN credentials for 73,000 devices.
Apple fixes Beats Studio Buds flaw that let hackers spy on conversations
Telegram admits it couldn't police exam-leak channels, India tells court
F5 issues out-of-band patches for critical NGINX vulnerabilities
Microsoft fixes Windows Server 2016 security update failures
gbhackers
F5 Patches NGINX Vulnerability Enabling Code Execution and DoS Attacks
Dropping Elephant Hackers Use China-Themed Loader Chain to Deploy In-Memory RAT
AWS Launches Continuum to Detect and Fix Code Vulnerabilities at Machine Speed
Hackers Could Abuse SQL Server 2025 AI Features to Steal Sensitive Data
Windows 11 June Patch Triggers Microsoft Office Startup Issues
Hackers Exploit WordPress SMTP Plugin With 100,000+ Installs to Steal Sensitive Data
Splunk AI Toolkit Vulnerability Allows Arbitrary OS Command Execution
Microsoft Confirms RoguePlanet Zero-Day Exploit Targeting Defender
FortiBleed Exploit Campaign Hits 70,000+ Fortinet Firewalls Worldwide
Modified OpenSSH Binaries Let Velvet Ant Steal Passwords, Log Commands, and Hide Activity
Cybersecurity Dive
Nation-state rivals linked to majority of consequential attacks targeting critical UK sites
Major critical infrastructure disruptions are inevitable, acting CISA chief says
California water utility probes breach claim by Iran-linked actor
AI isn’t solving cybersecurity workforce woes
AI adoption correlates with incident frequency, underscoring need for governance
Critical vulnerabilities in Fortinet FortiSandbox are under exploitation
China-nexus group linked to multiyear campaign targeting US, Canadian medical research
Cybersecurity experts blast US government for restricting Anthropic’s AI models
MS-ISAC enters uncertain new era after losing federal funding and thousands of members
Agentic AI surges in financial sector even as many firms fail to manage security risks
Threatpost
Student Loan Breach Exposes 2.5M Records
Watering Hole Attacks Push ScanBox Keylogger
Tentacles of ‘0ktapus’ Threat Group Victimize 130 Firms
Ransomware Attacks are on the Rise
Cybercriminals Are Selling Access to Chinese Surveillance Cameras
Twitter Whistleblower Complaint: The TL;DR Version
Firewall Bug Under Active Attack Triggers CISA Warning
Fake Reservation Links Prey on Weary Travelers
iPhone Users Urged to Update to Patch 2 Zero-Days
Google Patches Chrome’s Fifth Zero-Day of the Year
The Register
Google told researcher 'Nice catch!' Then denied bug bounty for flaw it still hasn't fixed
Welcome to your new telco job – here's sudo access to a database with full customer info stored in the clear
Cyber offenses now account for around a third of all crime across Asia and South Pacific
Massive password-stealing attack hits 75k Fortinet firewalls
Digital sovereignty needs an operating model
Cisco adds another SD-WAN box to max-severity bug advisory
Homebrew 6.0 released with new security mechanism, Linux sandbox and more
Helpdesk scammers are making house calls to make their lies feel more real
Cyberattack sees crops kept in the ground
Python dev saved from disaster by intuition... and AI
VentureBeat
Copilot searched your mailbox. LiteLLM handed out admin keys. Run this 5-check audit before your stack is next
85% of IT teams claim every AI agent is under control. Only 42% actually know who owns them.
Attackers scale deception with AI. Defenders need truth at machine speed.
NanoClaw and JFrog launch 'immune system' to block AI agents from downloading malicious code
Meta's AI support agent bound recovery emails for anyone who asked. Your SOC never saw an alert.
Microsoft launches MXC, an OS-level sandbox for AI agents, with OpenAI and Nvidia already on board
Zip’s new AI agents want to stop your finance team from uploading contracts into personal ChatGPT accounts
TechCrunch
Texas government data breach allowed hackers to steal 3 million driver’s licenses and passports
Cybercriminals allegedly hacked tens of thousands of Fortinet firewalls used by major companies all over the world
Apple plans to change its Hide My Email privacy feature that could make it less effective
Bug in FIFA World Cup internal system gave anyone ability to modify TV stream
India orders temporary ban on Telegram over exam fraud concerns
The US government’s Anthropic models ban was never about an AI jailbreak
Cybersecurity vets protest ‘dangerous’ US government ban on Anthropic’s most powerful models
As AI agents become employees, NewCore emerges with $66M to give them identities
Amazon CEO reportedly raised Anthropic model concerns before government crackdown
The FBI built its own replica small town to simulate real-world cyberattacks
Network World Security
FortiBleed campaign exposes 75,000 Fortinet firewalls worldwide
Cisco: AI growth is exposing campus network limits
HPE CTO Russo drills into data, orchestration, and observability for the agentic enterprise
Edge networks a particular challenge for summer power, IT staffing needs
Turn enterprise AI into real business value with a secure, scalable factory
Tether is shipping TurboQuant KV-cache quantization with Vulkan support into its QVAC SDK
AMD acquires MEXT to add predictive memory optimization to its AI stack
HPE Discover: Neri outlines an AI architecture built for agents
HPE product barrage targets AI networks, agents, management
2026 network outage report and internet health check
Help Net Security
Law enforcement hits SocGholish: 106 servers down, 15,000 sites cleaned
Malware attacks strip Roblox developers of entire games
eSentire links AI-led penetration testing with MDR through Atlas Preempt
74,000 Fortinet firewall credentials exposed in FortiBleed data leak
GentleKiller targets more than 400 security processes across 48 products
Barracuda introduces AI-powered email security with automated threat response
New 42Crunch plugin helps developers find and fix API vulnerabilities in GitHub Copilot
Blue Planet helps service providers reduce risk with unified network change governance
Securing digital keys when your phone unlocks the car
Google’s open standard for AI agents to discover and verify tools
SC Magazine
F5 releases out-of-band patches for two critical NGINX bugs
AI Code Security: Why AppSec Must Evolve for the Era of AI-Generated Code - WC #1
Attacker establishes persistent access to French business using OpenSSH and Tailscale
Google to use IP addresses for ad measurement and personalization in EEA, UK, and Switzerland
AWS launches Continuum security platform with AI
Fake Boots emails target millions in large phishing campaign
New research reveals physical system vulnerabilities in data centers
As AI enters the SOC, evidence becomes more important than ever
Supplier risk has become a business resilience problem
Identiverse 2026: Blended Identities and the challenge of IAM for AI
© 2026 RiskDiscovery | Sponsored by: Deception Logic