[ News | Newsletters | Blogs | Lists | Media | Jobs ] HoneyDB
DarkReading
Is the FCC's Router Ban the Wrong Fix?
Automotive Cybersecurity Threats Grow in Era of Connected, Autonomous Vehicles
Critical Flaw in Langflow AI Platform Under Attack
How Organizations Can Use Blunders to Level Up Their Security Programs
AI-Powered Dependency Decisions Introduce, Ignore Security Bugs
Intermediaries Driving Global Spyware Market Expansion
At RSAC, the EU Leads While US Officials Are Sidelined
Blame Game: Why Public Cyber Attribution Carries Risks
Phishers Pose as Palo Alto Networks' Recruiters for Months in Job Scam
AI Dominates RSAC Innovation Sandbox
Ars Technica
Google bumps up Q Day deadline to 2029, far sooner than previously thought
Self-propagating malware poisons open source software and wipes Iran-based machines
Widely used Trivy scanner compromised in ongoing supply-chain attack
Cloud service providers ask EU regulator to reinstate VMware partner program
Federal cyber experts called Microsoft's cloud a "pile of shit," approved it anyway
Researchers disclose vulnerabilities in IP KVMs from four manufacturers
Supply-chain attack using invisible code hits GitHub and other repositories
The who, what, and why of the attack that has shut down Stryker's Windows network
14,000 routers are infected by malware that's highly resistant to takedowns
Feds take notice of iOS vulnerabilities exploited under mysterious circumstances
CyberScoop
ODNI tackles AI, threat hunting, app cybersecurity in year-one tech review
FCC pushes new rules to crack down on robocallers, foreign call centers
Former NSA chiefs worry American offensive edge in cybersecurity is slipping
Alleged RedLine infostealer conspirator extradited to US
Google moves post-quantum encryption timeline up to 2029
DarkSword’s GitHub leak threatens to turn elite iPhone hacking into a tool for the masses
Experts warn of a ‘loud and aggressive’ extortion wave following Trivy hack
Critics call FCC router rule a ‘big swing’ that could create more supply chain uncertainty
Treasury asks whether terrorism risk insurance program should bolster cyber coverage
Russian access broker sentenced to over 6 years in prison for ransomware schemes
InfoSecurity Magazine
Security Researchers Sound the Alarm on Vulnerabilities in AI-Generated Code
Attackers Rapidly Weaponize Critical Oracle WebLogic RCE, Honeypot Study Finds
EtherRAT Techniques Bypass Security Via Ethereum Smart Contracts
AI Becomes the Top Cybersecurity Priority for Defenders as Criminals Exploit It, PwC Warns
OpenAI Expands Bug Bounty to Cover AI Abuse and 'Safety' Concerns
Iran-Linked Pay2Key Ransomware Group Re-Emerges
Invoice Fraud Costs UK Construction Sector Millions, NCA Warns
Cloud Phones Linked to Rising Financial Fraud Threat
Hackers Exploit Compromised Enterprise Identities at Industrial Scale, Warns SentinelOne
US: FCC Bans Foreign-Made Routers Over National Security Concerns
SecurityWeek
CISA Flags Critical PTC Vulnerability That Had German Police Mobilized
Hightower Holding Data Breach Impacts 130,000
BIND Updates Patch High-Severity Vulnerabilities
Chinese Hackers Caught Deep Within Telecom Backbone Infrastructure
Cisco Patches Multiple Vulnerabilities in IOS Software
Alleged RedLine Malware Administrator Extradited to US
Dell and HP Roll Out Quantum-Resistant Device Security
Onit Security Raises $11 Million for Exposure Management Platform
Russian Cybercriminal Gets 2-Year Prison Sentence in US 
AI Speeds Attacks, But Identity Remains Cybersecurity’s Weakest Link
ZDNet
These WD Black SSDs are over 60% off during Amazon's Spring Sale
The fundamental reason why YouTube with ads isn't worth it - even if it's free
I was skeptical of this inflatable solar-powered lantern, but it's become a staple
This quirky little device solved my biggest gripe with my Apple Watch
Amazon Spring Sale live blog 2026: Tracking the biggest price drops all week
This robot mower took care of my lawn for months - and it's currently $300 off
I love Sony's latest headphones. But its older ones are nearly as good (and cheaper)
I've tested hundreds of gadgets over the years - these 10 I always keep handy
The best wireless chargers are so much better than cords - and they're on sale
One of our favorite TCL Mini-LED TVs just dropped under $1,000 at Amazon
The Hacker News
LangChain, LangGraph Flaws Expose Files, Secrets, Databases in Widely Used AI Frameworks
China-Linked Red Menshen Uses Stealthy BPFDoor Implants to Spy via Telecom Networks
[Webinar] Stop Guessing. Learn to Validate Your Defenses Against Real Attacks
Claude Extension Flaw Enabled Zero-Click XSS Prompt Injection via Any Website
Masters of Imitation: How Hackers and Art Forgers Perfect the Art of Deception
ThreatsDay Bulletin: PQC Push, AI Vuln Hunting, Pirated Traps, Phishing Kits & 20 More Stories
Coruna iOS Kit Reuses 2023 Triangulation Exploit Code in Recent Mass Attacks
WebRTC Skimmer Bypasses CSP to Steal Payment Data from E-Commerce Sites
LeakBase Admin Arrested in Russia Over Massive Stolen Credential Marketplace
GlassWorm Malware Uses Solana Dead Drops to Deliver RAT and Steal Browser, Crypto Data
BleepingComputer
Windows 11 KB5079391 update rolls out Smart App Control improvements
Dutch Police discloses security breach after phishing attack
Ajax football club hack exposed fan data, enabled ticket hijack
CISA: New Langflow flaw actively exploited to hijack AI workflows
UK sanctions Xinbi marketplace linked to Asian scam centers
TikTok for Business accounts targeted in new phishing campaign
WhatsApp rolls out more AI features, iOS multi-account support
Inside a Modern Fraud Attack: From Bot Signups to Account Takeovers
Coruna iOS exploit framework linked to Triangulation attacks
Russia arrests suspected owner of LeakBase cybercrime forum
gbhackers
CISA Adds Critical Aquasecurity Trivy Scanner Vulnerability to KEV Catalog
Silver Fox Cyberattack Targets Japanese Businesses with Tax-Themed Phishing Scams
TeamPCP Hackers Focus on AI Developers, Planting Malicious Code to Disrupt Projects
Hackers Target South Asian Financial Firm with BRUSHWORM and BRUSHLOGGER Attacks
Red Hat Warns of Malware Embedded in Popular Linux Tool, Opening Doors for Unauthorized Access
Hackers Deploy USB Malware, RATs, and Stealers in Southeast Asian Government Attacks
Windows Error Reporting Vulnerability Exposes Systems to Privilege Escalation, Allowing SYSTEM Access
Phishing ZIP Files Used to Deploy PXA Stealer Targeting Financial Firms
Hackers Implant Stealthy BPFdoor Backdoors in Telecom Networks for Persistent Access
Fake Cloudflare CAPTCHA Pages Deliver Infiniti Stealer Malware on macOS
Cybersecurity Dive
Critical flaw in Citrix NetScaler raises fears of new exploitation wave
‘Do not shift budgets to AI’: How businesses should and shouldn’t respond to evolving threats
Iran-linked ransomware operation targeted US healthcare provider
Congress wants details from White House on cyber strategy, Iran resilience measures
The CVE Program, a bedrock of global cyber defense, is teetering on the brink
Companies face difficult choices in blaming hackers for an attack
Cybercrime groups speed up initial access handoff through planning, coordination
FCC bans import of consumer-grade routers amid national security concerns
ISACs confront AI’s promise and peril for threat intelligence-sharing
AI poised to help low-skilled hackers in the near term
Threatpost
Student Loan Breach Exposes 2.5M Records
Watering Hole Attacks Push ScanBox Keylogger
Tentacles of ‘0ktapus’ Threat Group Victimize 130 Firms
Ransomware Attacks are on the Rise
Cybercriminals Are Selling Access to Chinese Surveillance Cameras
Twitter Whistleblower Complaint: The TL;DR Version
Firewall Bug Under Active Attack Triggers CISA Warning
Fake Reservation Links Prey on Weary Travelers
iPhone Users Urged to Update to Patch 2 Zero-Days
Google Patches Chrome’s Fifth Zero-Day of the Year
The Register
Security boffins scoured the web and found hundreds of valid API keys
Brit lawmaker targeted by AI deepfake fails to get answers from US Big Tech
UK wants to know if banning under-16s from social media does anything useful
Indian government probes CCTV espionage operation linked to Pakistan
AI supply chain attacks don’t even require malware…just post poisoned documentation
Scammers have virtual smartphones on speed dial for fraud
Jen Easterly, cybersecurity's 'relentless optimist,' hopes feds come back to RSAC next year
Only Trump can decide when cyberwar turns into real war
Enterprise PCs are unreliable, unpatched, and unloved compared to Macs
EFF has a new boss to lead the fight against privacy-sucking forces of doom
VentureBeat
Meta's rogue AI agent passed every identity check — four gaps in enterprise IAM explain why
The authorization problem that could break enterprise AI
Nvidia's agentic AI stack is the first major platform to ship with security at launch, but governance gaps remain
OpenClaw can bypass your EDR, DLP and IAM without triggering a single alert
Anthropic and OpenAI just exposed SAST's structural blind spot with free tools
Enterprise identity was built for humans — not AI agents
Microsoft says ungoverned AI agents could become corporate 'double agents.' Its fix costs $99 a month.
TechCrunch
Apple made strides with iOS 26 security, but leaked hacking tools still leave millions exposed to spyware attacks
Silicon Valley’s two biggest dramas have intersected: LiteLLM and Delve
A major hacking tool has leaked online, putting millions of iPhones at risk. Here’s what you need to know.
Conntour raises $7M from General Catalyst, YC to build an AI search engine for security video systems
Convicted spyware chief hints that Greece’s government was behind dozens of phone hacks
Russia arrests alleged owner of cybercrime forum LeakBase, report says
Crunchyroll confirms data breach after hacker claims unauthorized access
FCC bans import of new consumer routers made overseas, citing security risks
Insight Partners scrubs investment post about Delve amid ‘fake compliance’ allegations
Someone has publicly leaked an exploit kit that can hack millions of iPhones
Network World Security
Intel: Latest news and insights
Network jobs watch: Hiring, skills and certification trends
Data center poaching adds to staffing crisis
Arm shifts course, moves into silicon business
AI’s need for speed, optical connectivity in focus at OFC 2026
The optical imperative and Nokia’s vision to close the AI gap
Panasonic says data center batteries are selling out and AI is to blame
Cisco: Latest news and insights
Meshery 1.0 debuts, offering new layer of control for cloud-native infrastructure
Chained vulnerabilities in Cisco Catalyst switches could induce denial-of-service
Help Net Security
AI frenzy feeds credential chaos, secrets leak through code, tools, and infrastructure
Make OpenAI’s models misbehave and earn a reward
Top product launches at RSAC 2026
Tails 7.6 ships automatic Tor bridge retrieval and a new password manager
Second RedLine infostealer operator ends up in US custody
Researchers release tool to detect stealthy BPFDoor implants in critical infrastructure networks
GitHub jumps on the bandwagon and will use your data to train AI
Mission to smuggle $170 million worth of AI tech to China collapsed for three men
Reddit declares war on bad bot activity
Google races to secure encryption before quantum threats arrive
SC Magazine
DropZone AI's Edward Wu on autonomous AI analysts at machine speed
Filigran's Samuel Hassine on a framework for high-impact cyber threat intelligence
RSAC 2026: We're entering the age of 'integrous' systems
RSAC 2026 Recap: Agentic AI Hype, Cybersecurity Trends & Startup Reality Check - RSAC26 #4
ThreatLocker's Rob Allen on the future of zero trust security
Beyond the Hype: Measuring Cyber Readiness in the Age of AI - Gibb Witham - RSAC26 #4
OWASP Gen AI Security Project RSAC 2026 - Scott Clinton - RSAC26 #6
ArmorCode: AI Exposure Management and Governing Shadow AI - Mark Lambert - RSAC26 #4
Scanning The Internet with Linux Tools - PSW #919
Browser in the AI Era: Apply Controls Where the Work Happens - Arunesh Chandra - RSAC26 #4
© 2026 RiskDiscovery | Sponsored by: Deception Logic