[ News | Newsletters | Blogs | Reddits | Lists | Media | Jobs ] HoneyDB
DarkReading
Patch Now: Microsoft Flags Zero-Day & Critical Zero-Click Bugs
Grandparents to C-Suite: Elder Fraud Reveals Gaps in Human-Centered Cybersecurity
Bridging the Skills Gap: How Military Veterans Are Strengthening Cybersecurity
Kimsuky APT Takes Over South Korean Androids, Abuses KakaoTalk
OWASP Highlights Supply Chain Risks in New Top 10 List
GlassWorm Returns, Slices Back into VS Code Extensions
ClickFix Campaign Targets Hotels, Spurs Secondary Customer Attacks
'Landfall' Malware Targets Samsung Galaxy Users
'Ransomvibing' Infests Visual Studio Extension Market
Microsoft Backs Massive AI Push in UAE, Raising Security Concerns
Ars Technica
ClickFix may be the biggest security threat your family has never heard of
Researchers isolate memorization from problem-solving in AI neural networks
Researchers surprised that with AI, toxicity is harder to fake than intelligence
Wipers from Russia’s most cut-throat hackers rain destruction on Ukraine
Google says project on famous crab-covered island is about cables, not combat
5 AI-developed malware families analyzed by Google fail to work and are easily detected
OpenAI signs massive AI compute deal with Amazon
Two Windows vulnerabilities, one a 0-day, are under active exploitation
ChatGPT maker reportedly eyes $1 trillion IPO despite major quarterly losses
After teen death lawsuits, Character.AI will restrict chats for under-18 users
CyberScoop
Microsoft Patch Tuesday addresses 63 defects, including one actively exploited zero-day
Amazon rolls out AI bug bounty program 
Hitachi subsidiary GlobalLogic impacted by Clop’s attack spree on Oracle customers
BigBear.ai to buy Ask Sage, strengthening security-centric AI for federal agencies
What’s left to worry (and not worry) about in the F5 breach aftermath
Cyber information sharing law would get extension under shutdown deal bill
CISA’s expiration leaves a dangerous void in US cyber collaboration
Russian national pleads guilty to breaking into networks for Yanluowang ransomware attacks
Report: Government data mining has gone too far – and AI will make it worse
New Landfall spyware apparently targeting Samsung phones in Middle East
HITBSecNews
Found on VirusTotal: The world’s first UEFI bootkit for Linux
OpenAI is at war with its own Sora video testers following brief public leak
North Korean hackers posing as IT workers steal over $1B in cyberattack
WhatsApp: NSO Group Operates Pegasus Spyware for Customers
Korea extradites Russian, Vietnamese suspects linked to $16M ransomware scheme
CISA Director Jen Easterly, in Place Since 2021, to Step Down
Man sick of crashes sues Intel for allegedly hiding CPU defects
North Korean hackers target cryptocurrency with malware
Law enforcement operation takes down 22,000 malicious IP addresses worldwide
Youth of today say passwords are old news, passkeys are the future
ZDNet
Best early Black Friday gaming PC deals 2025: My favorite sales out early
The $50 wearable that effectively soothes my migraines and headaches is discounted on Amazon
Your home Wi-Fi isn't as private as you think - 6 free ways to tighten its security
A KDE Plasma feature 20 years in the making is finally here - here's how it works
Best early Black Friday PlayStation deals 2025: 20+ sales out now
Want to try Linux but prefer the Windows UI? This distro is for you
One week with Samsung's S95F OLED completely changed how I watch TV - now it's $1,000 off
Samsung's new TV remote lets you talk with AI about almost anything
I changed 6 settings on my Samsung TV to give it an instant performance boost
Best early Black Friday TV deals 2025: Save on Samsung, TCL, and more
The Hacker News
WhatsApp Malware 'Maverick' Hijacks Browser Sessions to Target Brazil's Biggest Banks
GootLoader Is Back, Using a New Font Trick to Hide Malware on WordPress Sites
CISO's Expert Guide To AI Supply Chain Attacks
Researchers Detect Malicious npm Package Targeting GitHub-Owned Repositories
Android Trojan 'Fantasy Hub' Malware Service Turns Telegram Into a Hub for Hackers
Hackers Exploiting Triofox Flaw to Install Remote Access Tools via Antivirus Feature
Konni Hackers Turn Google’s Find Hub into a Remote Data-Wiping Weapon
⚡ Weekly Recap: Hyper-V Malware, Malicious AI Bots, RDP Exploits, WhatsApp Lockdown and More
New Browser Security Report Reveals Emerging Threats for Enterprises
Large-Scale ClickFix Phishing Attacks Target Hotel Systems with PureRAT Malware
BleepingComputer
Hackers abuse Triofox antivirus feature to deploy remote access tools
Microsoft: Windows 11 23H2 Home and Pro reach end of support
Microsoft releases KB5068781 — The first Windows 10 extended security update
Microsoft November 2025 Patch Tuesday fixes 1 zero-day, 63 flaws
Windows 11 KB5068861 & KB5068865 cumulative updates released
Microsoft: Emergency Windows 10 update fixes ESU enrollment bug
“Bitcoin Queen” gets 11 years in prison for $7.3 billion Bitcoin scam
SAP fixes hardcoded credentials flaw in SQL Anywhere Monitor
GlobalLogic warns 10,000 employees of data theft after Oracle breach
How a CPU spike led to uncovering a RansomHub ransomware attack
Cybersecurity Dive
AI agents worsen IT’s capacity crunch: S&P Global
Cisco detects new attack variant targeting vulnerable firewalls
Conduent warns of further financial fallout from cyberattack
Nevada ransomware attack traced back to malware download by employee
Cyberattacks surge against IoT, mobile devices in critical infrastructure
In financial sector, vendors lag behind customers on cybersecurity
SonicWall says state-linked actor behind attacks against cloud backup service
Your AI-driven threat hunting is only as good as your data platform and pipeline
AI-based malware makes attacks stealthier and more adaptive
Hackers targeting Cisco IOS XE devices with BadCandy implant
Threatpost
Student Loan Breach Exposes 2.5M Records
Watering Hole Attacks Push ScanBox Keylogger
Tentacles of ‘0ktapus’ Threat Group Victimize 130 Firms
Ransomware Attacks are on the Rise
Cybercriminals Are Selling Access to Chinese Surveillance Cameras
Twitter Whistleblower Complaint: The TL;DR Version
Firewall Bug Under Active Attack Triggers CISA Warning
Fake Reservation Links Prey on Weary Travelers
iPhone Users Urged to Update to Patch 2 Zero-Days
Google Patches Chrome’s Fifth Zero-Day of the Year
The Register
North Korean spies turn Google's Find Hub into remote-wipe weapon
EU's reforms of GDPR, AI slated by privacy activists for 'playing into Big Tech’s hands'
OWASP Top 10: Broken access control still tops app security list
Hitachi-owned GlobalLogic admits data stolen on 10k current and former staff
UK asks cyberspies to probe whether Chinese buses can be switched off remotely
Cyber insurers paid out over twice as much for UK ransomware attacks last year
UK's Ajax fighting vehicle arrives – years late and still sending crew to hospital
LLM side-channel attack could allow snoops to guess what you're talking about
Critical federal cybersecurity funding set to resume as government shutdown draws to a close - for now
Phishers try to lure 5K Facebook advertisers with fake business pages
VentureBeat
How Anthropic's Claude cuts SOC investigation time from 5 hours to 7 minutes
CrowdStrike & NVIDIA’s open source AI gives enterprises the edge against machine-speed attacks
Meet Aardvark, OpenAI’s security agent for code analysis and patching
Security's AI dilemma: Moving faster while risking more
Fortanix and NVIDIA partner on AI security platform for highly regulated industries
Your IT stack is the enemy: How 84% of attacks evade detection by turning trusted tools against you
When your AI browser becomes your enemy: The Comet security disaster
TechCrunch
Why a lot of people are getting hacked with government spyware
Washington Post confirms data breach linked to Oracle hacks
Congressional Budget Office confirms it was hacked
‘Landfall’ spyware abused zero-day to hack Samsung Galaxy phones
Italian political consultant says he was targeted with Paragon spyware
University of Pennsylvania confirms hacker stole data during cyberattack
Google gets the US government’s green light to acquire Wiz for $32B
Armis raises $435M pre-IPO round at $6.1B valuation after refusing M&A offers
Phone location data of top EU officials for sale, report finds
Lawmakers say stolen police logins are exposing Flock surveillance cameras to hackers
Network World Security
2025 global network outage report and internet health check
Buyer’s guide to AI networking technology
AWS launches ‘Capabilities by Region’ to simplify planning for cloud deployments
Google Cloud aims for more cost-effective Arm computing with Axion N4A
Google’s cheaper, faster TPUs are here, while users of other AI processors face a supply crunch
Top network and data center events 2025 & 2026
Network jobs watch: Hiring, skills and certification trends
Cisco launches AI infrastructure, AI practitioner certifications
Perplexity’s open-source tool to run trillion-parameter models without costly upgrades
Space: The final frontier for data processing
Help Net Security
CISA: Patch Samsung flaw exploited to deliver spyware (CVE-2025-21042)
Action1 addresses Intune gaps with patching and risk-based vulnerability prioritization
Red Hat OpenShift 4.20 unifies enterprise IT, from virtual machines to AI workloads
Germany takes first step toward quantum-secure national ID cards
GNU Coreutils 9.9 brings fixes and updates across essential tools
Attackers exploited another Gladinet Triofox zero-day (CVE-2025-12480)
Firewalla unveils MSP 2.9 to simplify multi-device network management
To get funding, CISOs are mastering the language of money
How far can police push privacy before it breaks
CISOs are cracking under pressure
InfoSecurity Magazine
Android Devices Targeted By KONNI APT in Find Hub Exploitation
Qilin Ransomware Activity Surges as Attacks Target Small Businesses
Hackers Exploit Critical Flaw in Gladinet's Triofox File Sharing Product
CISA Adds Zero-Day Bug Used in Spyware Attacks to KEV
Quantum Route Redirect Phishing Kit Democratizes Cyber-Attacks
65% of Leading AI Companies Found With Verified Secrets Leaks
China-Aligned UTA0388 Uses AI Tools in Global Phishing Campaigns
New NCA Campaign Warns Men Off Crypto Investment Scams
NCSC Set to Retire Web Check and Mail Check Tools
Russian Hacking Group Sandworm Deploys New Wiper Malware in Ukraine
© 2025 RiskDiscovery | Sponsored by: Deception Logic