[ News | Newsletters | Blogs | Lists | Media | Jobs ] HoneyDB
DarkReading
[Virtual Event] Anatomy of a Data Breach: What to Do if it Happens to You
[An RX Global Event] Infosecurity Europe
Agentic AI Isn't Risky; the Way Orgs Deploy It Is
Focus on Cyber Insurance: How Quantifying Risk Is Reshaping Security
BTMOB RAT Spreads Across Brazil, LatAm via MaaS Model
Nordic CISOs Handle Rising Cyber Threats Remarkably Well
Ransomware Actors Show Up In Person to Steal Law Firm Data
Latin American Cybercriminals Hoover Up Government Data
AI-Assisted Exploit Development Outpaces Scanner Detection
Cybersecurity Evolution: How We Went From Perimeter Defense to AI-Native Security
Ars Technica
Websites have a new way to spy on visitors: Analyzing their SSD activity
Millions of AI agents imperiled by critical vulnerability in open source package
US's big bet on quantum computing may not be entirely legal
Texas AG sues Meta over claims that WhatsApp doesn't provide end-to-end encryption
A hacker group is poisoning open source code at an unprecedented scale
US government takes $2 billion equity stake in nine quantum computing firms
Google publishes exploit code threatening millions of Chromium users
In stunning display of stupid, secret CISA credentials found in public GitHub repo
Zero-day exploit completely defeats default Windows 11 BitLocker protections
Cisco announces record revenue and 4,000 layoffs in the same day
CyberScoop
Zapier fixes bug chain that researchers say risked widespread account takeover
OpenAI heralds cybersecurity, election interference safeguard plans for 2026 midterms
FBI warns US-based law firms to be on the lookout for cybercrime group that steals data in person
UK spy chief labels AI ‘unstoppable force’ with offensive, defensive ramifications for cyberspace
CrowdStrike disrupts Glassworm botnet that preyed on open-source supply chain
Apple open-sources quantum-resistant encryption code
White House charts new course for federal agencies and cybersecurity logging
Anthropic: Mythos finds more than 10,000 software flaws in first month
FBI warns about fast-growing phishing kit targeting Microsoft 365 users
Alleged leader of Kimwolf, a sweeping botnet for cybercriminals, arrested in Canada
InfoSecurity Magazine
Attackers Move Past Typosquatting to Realistic Package Impersonation
Microsoft Condemns "Uncoordinated" Zero Day Disclosures
New Threat Actor Jinx-0164 Targets Crypto Developers on macOS
Infosecurity Europe: Cybersecurity Staff Prefer CISOs With Real Attack Response Experience, Study Reveals
GCHQ Chief Urges Action as AI Reshapes Cyber Threats
CrowdStrike, Google Take Down Glassworm Botnet
Infosecurity Europe: Why Burnout in Cybersecurity Demands Risk-Based Response
All Major LLMs Exposed to Multi-Turn Manipulation, Warn Researchers
Thousands of Fake FIFA Domains Target World Cup Fans
68% of UK Firms Plan to Increase Cyber Spending as AI Risks Rise
SecurityWeek
Geordie Raises $30 Million for AI Security and Governance Platform
Carnival Data Breach Exposed 6 Million People
New BTMOB Android Malware Enables Full Device Takeover
Critical FortiClient EMS Vulnerability Exploited in Fresh Attacks
IBM and Red Hat Commit $5 Billion to Secure Open Source Supply Chains Under “Project Lightwell”
New Edamame Platform Aims to Catch AI Coding Agents Going Off the Rails
Gitea Vulnerability Exposed 30,000 Deployments to Attacks
Raising the Cybersecurity Stakes: Ante up for the Agentic Era
Google Unveils AI Threat Defense Platform to Fight AI-Powered Cyberattacks
UK Cyberspying Chief Calls AI ‘an Unstoppable Force’ and Warns About Russia
ZDNet
Anthropic launches Opus 4.8, with honesty as its killer feature
Best Buy is selling the LG C5 OLED for nearly 50% off right now - and I highly recommend it
How to force Google AI Overviews to prioritize your favorite news sources
8 Zorin OS settings I change on every new install - and why you should, too
This lab-tested robot vacuum picked up more dirt than any other model (and it's on sale)
The solar-powered backup station I trust after years of testing - and why it works so well
When old data brings AI rollouts to a screeching halt - and how to manage it
How to watch the 2026 FIFA World Cup: 9 ways to stream (including free options)
Why I ditched Copilot for Claude in Word, Excel, and PowerPoint - and how you can, too
NordVPN isn't just a VPN anymore, but a full security suite - here's what you get now
The Hacker News
Threat Actors Exploit Critical FortiClient EMS Flaw to Deploy Credential Stealer
Microsoft Slams Public Zero-Day Disclosures Amid GitHub Researcher Account Removal
ThreatsDay Bulletin: Claude Security Plugin, Azure Priv-Esc, Kali365 MFA Bypass, FIFA Scams +15 More
New AI Usage Report: Enterprise AI Risk Is Heavily Concentrated Among a Small Group of AI "Power users"
JINX-0164 Targets Cryptocurrency Firms with Fake Recruiter Lures and macOS Malware
Grandoreiro Malware and BTMOB RAT Campaigns Target Windows and Android Users
Malicious npm Package Stole Files From Claude AI User Directory via GitHub
5 Steps to Managing Shadow AI Tools Without Slowing Down Employees
GlassWorm Malware Takedown Disrupts Developer Supply Chain Attack Infrastructure
3 SOC Steps that Shut Down Incident Risks Early
BleepingComputer
Hackers exploit FortiClient EMS flaw to push infostealer malware
New Gogs zero-day flaw lets hackers get remote code execution
How SIEM helps MSPs reduce noise and stop threats faster
Romanian gets 5 years in prison for hacking Oregon govt network
Webinar: Why network incidents take too long to resolve
Carnival Cruise confirms data breach affecting nearly 6 million people
Sextortionist sentenced to 33 years for targeting 145 children
GPU mining malware spreads via SEO poisoning, AI chatbots
Can you enforce strong Active Directory password rules without frustrating users?
Glassworm botnet disrupted after resilient C2 infrastructure takedown
gbhackers
Hackers Pivot from marimo RCE to Internal Database Using LLM Agent
Malicious Websites Exploit SSD Timing Signals to Monitor Visitor Activity
VaultJacking Attack Exposes Google Password Vaults via Single PIN
Top 10 Best Mobile Application Security Testing (MAST) Tools in 2026
Gitea Container Registry Vulnerability Could Lead to Private Image Exposure
AI-Generated npm Malware Leaks Hacker’s Private GitHub Token
Critical Notepad++ Flaw Could Enable Remote Code Execution Attacks
ClearFake Abuses BSC Testnet Contracts for Resilient C2 Operations
Roundcube Webmail Vulnerability Allows Hackers to Execute Malicious SQL Queries
Hackers Spread VIP Keylogger via Fake Business Emails
Cybersecurity Dive
How CISOs can manage sovereign-cloud security risks
IBM’s new $5B initiative will help enterprises rapidly patch open-source vulnerabilities
Enterprise data is creeping its way into shadow AI tools
Coordinated operation takes down Glassworm botnet
Leading AI models are more vulnerable to malicious prompts than vendors claim
Iranian government, not hacktivist group, breached LA Metro system, security firm says
FBI warns about PhaaS platform used to access Microsoft 365 environments
Iran-linked hackers target key US, allied sectors with sophisticated spear-phishing messages
New York regulator calls for additional cyber mitigation amid heightened threat environment
CISA asks cybersecurity community to alert it to vulnerability exploitation
Threatpost
Student Loan Breach Exposes 2.5M Records
Watering Hole Attacks Push ScanBox Keylogger
Tentacles of ‘0ktapus’ Threat Group Victimize 130 Firms
Ransomware Attacks are on the Rise
Cybercriminals Are Selling Access to Chinese Surveillance Cameras
Twitter Whistleblower Complaint: The TL;DR Version
Firewall Bug Under Active Attack Triggers CISA Warning
Fake Reservation Links Prey on Weary Travelers
iPhone Users Urged to Update to Patch 2 Zero-Days
Google Patches Chrome’s Fifth Zero-Day of the Year
The Register
Microsoft tests the 15-character limit of Windows Server admins' patience
Carnival confirms ShinyHunters cruised off with 6M customer records after April breach
Company CEO flooded file share with smut, called for help after he deleted it
CrowdStrike, Google shatter Glassworm botnet
Bosses blinded by confidence about shadow AI use by workers
Extortion crews are visiting law firms pretending to be tech support, FBI warns
India's cyber agency sets clock at 12 hours to tackle exploited bugs as AI turns up the heat
How to guarantee a speaker gig: Hack the system. Literally
MyPillow must decide whether to be firm or soft as ransomware crims demand pay
Experts pour cold borscht on Farage's Russian hack claim
VentureBeat
DataGrail report finds your vendor may be sending data to AI models you never approved
The attack dominating financial services doesn't steal passwords. It resets MFA and steals the token.
Valid certificates, stolen accounts: how attackers broke npm's last trust signal
Americans can’t spot a deepfake, and that’s a business crisis, not just a consumer problem
MFA verifies who logged in. It has no idea what they do next.
GitHub confirms 3,800 internal repos stolen through poisoned VS Code extension as supply chain worm hits Microsoft’s Python SDK
Four AI supply-chain attacks in 50 days exposed the release pipeline red teams aren't covering
TechCrunch
U.S. says troops were targeted with location data, as senator warns ad industry is a ‘national security threat’
UK Visa Portal exposed thousands of applicants’ passports and selfies — then called the lawyers on us
CrowdStrike and Google take down botnet used by hackers to target open source software developers
TechCrunch Disrupt 2026 Early Bird ticket savings end in 3 days
Dutch government blocks US company from acquisition, citing ‘risk to public interest’
Ghost hackers: the cybersecurity mystery that nobody has solved
Iranian hackers blamed for breach of Los Angeles transit system that took weeks to recover
7-Eleven data breach affects over 185,000 people’s personal data
These special phone and app features can help protect you from spyware
Kash Patel’s clothing brand website shut down after reports it was hacked
Network World Security
Zero trust isn’t broken, but most companies are doing it wrong
As AI datacenter memory becomes hot commodity, SK Hynix makes it cooler
Cisco research finds standard AI safety benchmarks miss the real threat
Cisco redefines ‘job-ready’ for network engineers with its certification overhaul
2026 network outage report and internet health check
IBM plans $2B quantum chip foundry; government will pay half
Cisco: AI traffic is radically reshaping WANs
xAI-Anthropic deal signals the rise of AI compute as a standalone business
Critical vulnerability in Cisco Secure Workload rated at maximum severity
Cisco’s new certs are a wake-up call for AI-era network engineers
Help Net Security
IBM and Red Hat are betting $5 billion that open source needs a security guard
Cybercriminals sail away with data from 6 million Carnival customers
Microsoft’s Copilot trust test: Zero findings, more models, wider oversight
Zapier exploit chain shows how known anti-patterns compose into critical risk
OpenAI prepares ChatGPT for the election misinformation wave
Qumulo NeuralProtect uses AI to detect and stop ransomware before encryption
Digimarc adds provenance, audit, and verification controls for AI agent workflows
Qevlar’s new AI agents correlate CVEs, incident data, and active exploitation signals
Microsoft’s new cloud PCs place AI agents under enterprise controls
A single typo could derail your World Cup plans
SC Magazine
5 ways to mount a strong defense in the AI era
Wireless Attacks on AI Data Centers: The Hidden Threat No One Is Watching - WC #1
Man arrested in Netherlands for hacking Ajax football club
Cisco study finds major frontier models susceptible to multi-turn prompt injection attacks
OWASP launches FinBot to help developers secure AI agents
XM Cyber expands platform to enforce least-privilege access
High-severity Starlette vulnerability 'BadHost' could expose sensitive data
Xage Security enhances zero-trust platform for AI agents
Doppel launches AI email security to disrupt phishing campaigns
FBI warns law firms of in-person data theft by Silent Ransom Group
© 2026 RiskDiscovery | Sponsored by: Deception Logic