[ News | Newsletters | Blogs | Lists | Media | Jobs ] HoneyDB
DarkReading
Name That Toon Contest
Attackers Use AI to Automate EDR Evasion Testing
Tropical Blend: Cyber & Politics Ramp Up Across Latin America
Cyber Insurance Rates Are Dropping, but Exclusions Widen
Coding Gaffe Exposes Microsoft 365 Accounts to Widespread Takeover
Malicious Notifications Could Trick Google Gemini Users
Global Stock Exchange Hit by Monthslong Email Campaign
Zoom CISO: AI as a Security Enabler, Not Role-Replacer
FBI-Flagged Phishing Kit Kali365 Expands Its Reach
DriveSurge Hijacks Thousands of Sites for ClickFix, FakeUpdate Attacks
Ars Technica
Dashlane issues opaque advisory warning 20 encrypted vaults were stolen
Dozens of Red Hat packages backdoored through its official NPM channel
Botnet of more than 17 million devices dismantled
Fed up with vibe coders, dev sneaks data-nuking prompt injection into their code
Websites have a new way to spy on visitors: Analyzing their SSD activity
Millions of AI agents imperiled by critical vulnerability in open source package
US's big bet on quantum computing may not be entirely legal
Texas AG sues Meta over claims that WhatsApp doesn't provide end-to-end encryption
A hacker group is poisoning open source code at an unprecedented scale
US government takes $2 billion equity stake in nine quantum computing firms
CyberScoop
European authorities crack down on illegal streaming networks
DHS Secretary Markwayne Mullin pinpoints optimal CISA staffing levels
DOD wants to integrate cyber in all operations, and integrate security into AI
Trump administration releases scaled-back AI executive order
Anthropic expanding access to Project Glasswing
Attackers are exploiting Palo Alto Networks defect that initially flew under the radar
Tina Peters, convicted in election-security breach, emerges defiant and vows legal fight
USPS moving forward with mail-in ballot changes as courts weigh Trump’s election order 
Election threats are focused on campaign systems, not voting machines
Tennessee man linked to 764 accused of series of crimes against children dating back to 2022
InfoSecurity Magazine
Infosecurity Europe: Vulnerability Management Innovator Konvu Wins Cyber Startup Award
Trump Signs Order Inviting Voluntary Review of Frontier AI Models
Infosecurity Europe: How to Get Boards to Prioritize Cyber Risk Quantification
Anthropic Expands Mythos Access to 150 More Organizations
Infosecurity Europe: Patch Responsibility Remains Up for Grabs as AI Unearths Decades of Flaws
Infosecurity Europe: Execs Must Treat Cyber Threats as Statecraft, ISACA Expert Say
Infosecurity Europe: AI-Powered Cybercrime Tools Surge on Dark Web
Infosecurity Europe: NCSC Urges Immediate Action to Boost Resilience as Uncertainty Persists
Infosecurity Europe: Cybersecurity Teams Which Don’t Leverage AI are "Doomed to Fail"
Infosecurity Europe: Bayer Reinvents Security Awareness Training to Counter AI Threats
SecurityWeek
Coralogix Raises $200M at $1.6B Valuation to Scale AI Observability Platform
Kirki, Burst Statistics WordPress Plugin Flaws in Attackers’ Crosshairs
Security of 100 AI Agents Tested and Ranked – What You Need to Know
Hackers Target Global Stock Exchange in Espionage Operation
IMA Diligence Services Data Breach Impacts 525,000 People
Organizations Warned of Exploited Linux Kernel Vulnerability
‘HTTP/2 Bomb’ Exploit Knocks Web Servers Offline in Seconds
Microsoft Tries to Calm Legal Threat Fears After Zero-Day Disclosure Backlash
Trump Signs Executive Order That Invites Vetting of Top AI Models for National Security Risks
Two New Reports Offer Competing Explanations for Cybersecurity’s Growing Crisis
ZDNet
This 8TB SanDisk SSD just got another price cut at Best Buy - here's why I'd recommend it
On a budget? These are the best deals under $25 ahead of Amazon Prime Day
AI is causing cognitive fatigue. Here's how to work with more haste and less speed
How to try out over 85 Linux distros, no installation required - with DistroSea
I tested Microsoft Copilot Health with my real medical records - here's my verdict
I asked Bluetooth reps why our devices don't always connect properly - and learned the hard truth
Red Hat hit by npm supply‑chain attack - here's how to stay safe
Your car collects a lot of data about you - 5 expert tips to restore your driving privacy
I paid Microsoft's premium Copilot agents to do my work - they were confidently bad at it
I set up DNS records to prevent important emails from being flagged as spam - here's how
The Hacker News
WhatsApp, Slack Notifications Could Hijack Google Gemini on Android
Google DoubleClick Abused in New Malspam Campaign to Deliver DesckVB RAT
Beyond the Zero-Day: See Your Network Like an Attacker | Webinar with HD Moore
Microsoft 365 Android Apps Let Any App Steal Account Tokens via Leftover Debug Flag
Autonomous AI Tool Finds 2-Year-Old RCE Flaw in Redis (CVE-2026-23479)
One-Click GitHub Dev Attack Lets Attackers Steal Full GitHub OAuth Tokens
Shrinking the IAM Attack Surface through Identity Visibility and Intelligence Platforms (IVIP)
Unpatched Windows Search URI Vulnerability Lets Attackers Steal NTLMv2 Hashes
New HTTP/2 Bomb Vulnerability Allows Remote DoS on NGINX, Apache, IIS, Envoy & Cloudflare
Weedhack Attacks Minecraft Users, CountLoader Hits 86K, Miners Spread via Pirated Content
BleepingComputer
Chinese hackers use new Atlas RAT malware in European cyberattacks
The U.S. sanctions Nobitex crypto exchange used by ransomware
CISA warns of cyberattacks targeting fuel tank monitoring systems
New 'HTTP/2 Bomb' DoS attack crashes web servers in under a minute
CISA warns of active attacks exploiting Android, Linux bugs
What 345 Days of Untested Exposure Looks Like at a Bank
Acer working to patch max severity zero-days in Wave 7 routers
Police dismantles 9 crime groups in illegal streaming crackdown
Google adds Android protection against AI deepfake scam calls
VS Code zero-day lets hackers steal GitHub tokens in one click
gbhackers
Error 524 Decoy Campaign Uses Brand Impersonation to Phish Mobile Users
Gentlemen Ransomware Exploits Fortinet Flaws, AI, and Custom C2 Tools
WordPress Plugin Flaw Opens Door to Privilege Escalation Attacks Across 500,000+ Sites
Expiring Microsoft Secure Boot Keys May Block DBX Updates on Legacy Devices
Critical Apache ActiveMQ Vulnerability Exposes Systems to Security Header Injection Attacks
38% of GitHub Actions Workflows Exposed to Script Injection Risks
Ivanti ITSM Flaw Could Allow Attackers to Escalate to Admin Access
Hackers Leverage AI-Powered Tools to Streamline Active Directory Compromise
HazyBeacon Campaign Abuses AWS for Stealthy C2 Communications
Windows Search URI Handler Vulnerability Exposes NTLMv2 Hashes to Remote Attackers
Cybersecurity Dive
‘Don’t panic’: AI reality checks dominate major cybersecurity conference
CISA, FBI warn that hackers are targeting systems used to monitor industrial fluids
Trump signs EO seeking early government access to powerful AI models
Dozens of Red Hat npm packages targeted in supply chain attack
Anthropic shares Mythos with 150 more organizations, including critical infrastructure operators
Turning tension into collaboration: How CIOs and CISOs can lead together
Without strong governance, companies put credit ratings at risk in AI era
CISA adds critical Palo Alto Networks firewall flaw to KEV as company, researchers warn of exploitation
How Canva scaled to 260+M users while elevating security and productivity
Top 4 data security best practices for the AI-enabled enterprise
Threatpost
Student Loan Breach Exposes 2.5M Records
Watering Hole Attacks Push ScanBox Keylogger
Tentacles of ‘0ktapus’ Threat Group Victimize 130 Firms
Ransomware Attacks are on the Rise
Cybercriminals Are Selling Access to Chinese Surveillance Cameras
Twitter Whistleblower Complaint: The TL;DR Version
Firewall Bug Under Active Attack Triggers CISA Warning
Fake Reservation Links Prey on Weary Travelers
iPhone Users Urged to Update to Patch 2 Zero-Days
Google Patches Chrome’s Fifth Zero-Day of the Year
The Register
Commvault says it's time to rethink resiliency as AI crooks leave victims in a 'dark, dead' state
Bend the beam like Beckham to defeat anti-jamming tech
Another bug hunter leaks Microsoft exploits in defiance of company’s handling of vulnerability disclosures
UK banks offered access to OpenAI’s GPT-5.5 amid exclusion from Anthropic’s Glasswing expansion
'Dumbass' criminal breaks the 'first rule of ransomware club'
Cisco sings Mythos' praises - but doesn't say how many bugs the model uncovered
Russian spy agency says foreign spies turned officials' smartphones into surveillance devices
Microsoft reaches for olive branch after public dustup with 0-day researcher
Claude celebrates Anthropic's stock market float with blockbuster ... outage
Northern Ireland cops issue PSA after official phone number spoofed by scammers
VentureBeat
Microsoft launches MXC, an OS-level sandbox for AI agents, with OpenAI and Nvidia already on board
Zip’s new AI agents want to stop your finance team from uploading contracts into personal ChatGPT accounts
Anthropic’s browser agent got hijacked 31.5% of the time before safeguards engaged
AI doesn't break security. Complexity does
Claude Mythos exposed a hard truth: Your enterprise patching process is way too slow
DataGrail report finds your vendor may be sending data to AI models you never approved
The attack dominating financial services doesn't steal passwords. It resets MFA and steals the token.
TechCrunch
Ultrahuman says hackers accessed customers’ wellness data via internal tool
Instagram is alerting users who were targeted by hackers during AI chatbot attacks
The worst hacks and breaches of 2026 (so far)
Cyera eyes $12B valuation at 80x ARR multiple despite operating losses
Password manager Dashlane says hackers stole some customers’ password vaults
Anthropic scales Claude Mythos to critical infrastructure in 15+ countries
Hackers hijacked Instagram accounts by tricking Meta AI support chatbot into granting access
Grand Theft Auto V cheat service gets hacked, exposing thousands of gamers
Microsoft under fire for threatening security researcher with criminal investigation
Final 24 hours to save up to $410 on your TechCrunch Disrupt 2026 ticket
Network World Security
Cisco sees quantum networking as the future of networking
Enterprise Spotlight: Rethinking cloud strategy in the age of AI
What is Cisco Cloud Control and why should customers care?
Will Broadcom’s VMware strategy keep paying big dividends?
Netskope introduces AI Command Center to monitor and secure enterprise AI sprawl
Cisco Live: The network is back, and AI rewrote the rules
2026 network outage report and internet health check
Cisco brings agentic ops platform and security overhaul to Cisco Live
Attackers exploit Palo Alto GlobalProtect flaw days after disclosure
FTC broadens Microsoft probe to cloud, AI, and software bundling
Help Net Security
Microsoft responds to security challenges facing code, AI agents, and models
Simplify security management with CIS SecureSuite Platform
Autonomous AI-driven worm can reason its way through corporate networks
Malware campaign targeting Minecraft users infects over 116,000 systems
Only 11% of production agents pass the AI agent security bar
New Android feature promises to spot deepfake scam calls
Microsoft Scout agent opens a new category of always-on Autopilots
Anthropic expands Project Glasswing to 150 organizations in more than 15 countries
Critical Start expands MDR capabilities with multi-agent AI system
MazeBolt brings AI-generated attack simulation to DDoS security testing
SC Magazine
Google rolls out scam call detection for Android
WP Engine adds bot management to Global Edge Security
Russia FSB claims foreign intelligence used malware on officials' phones
Unpatched Windows search URI handler issue leaks NTLMv2 hashes
Acer addresses critical zero-day vulnerabilities in Wave 7 routers
Law enforcement arrests 29 in crackdown on illegal streaming operations
New HTTP/2 Bomb attack can take down web servers in seconds
Cisco Cloud Control AI defense suite aims to counter Mythos-level threats
CISA adds Android and Linux kernel flaws to exploited vulnerabilities catalog
How to Govern AI Agents Using Non-Human Identity Principles
© 2026 RiskDiscovery | Sponsored by: Deception Logic