[ News | Newsletters | Blogs | Lists | Media | Jobs ] HoneyDB
DarkReading
Name That Toon Contest
DriveSurge Hijacks Thousands of Sites for ClickFix, FakeUpdate Attacks
China Uses Dual-Method Cyberattack on Czech Orgs
Securing AI Agents Before They Go Rogue Is Next to Impossible
[An RX Global Event] Infosecurity Europe
Beyond Assume-Breach: How AI-Native Security Will Reshape Enterprise Defense
Anthropic to Open Mythos AI to EU's ENISA
Microsoft's Zero-Day Legal Threats Spark Backlash
Patch Now: Another Palo Alto Auth Bypass Bug Under Active Exploit
Name That Toon: Mark of (Cybersecurity) Progress
Ars Technica
Dozens of Red Hat packages backdoored through its official NPM channel
Botnet of more than 17 million devices dismantled
Fed up with vibe coders, dev sneaks data-nuking prompt injection into their code
Websites have a new way to spy on visitors: Analyzing their SSD activity
Millions of AI agents imperiled by critical vulnerability in open source package
US's big bet on quantum computing may not be entirely legal
Texas AG sues Meta over claims that WhatsApp doesn't provide end-to-end encryption
A hacker group is poisoning open source code at an unprecedented scale
US government takes $2 billion equity stake in nine quantum computing firms
Google publishes exploit code threatening millions of Chromium users
CyberScoop
DOD wants to integrate cyber in all operations, and integrate security into AI
Trump administration releases scaled-back AI executive order
Anthropic expanding access to Project Glasswing
Attackers are exploiting Palo Alto Networks defect that initially flew under the radar
Tina Peters, convicted in election-security breach, emerges defiant and vows legal fight
USPS moving forward with mail-in ballot changes as courts weigh Trump’s election order 
Election threats are focused on campaign systems, not voting machines
Tennessee man linked to 764 accused of series of crimes against children dating back to 2022
Federal audit reveals NIST’s NVD is plagued by poor planning and duplication
House panel poised to hold hearing centered on AI impact on cyber
InfoSecurity Magazine
Infosecurity Europe: NCSC Urges Immediate Action to Boost Resilience as Uncertainty Persists
Infosecurity Europe: Cybersecurity Teams Which Don’t Leverage AI are "Doomed to Fail"
Infosecurity Europe: Bayer Reinvents Security Awareness Training to Counter AI Threats
Threat Actor Uses AI to Build EDR Evasion Tools
Attackers Hijack Red Hat npm Scope to Steal Cloud Secrets
Infosecurity Europe: UK Firms Prioritize AI Threat Preparedness as Cyber Risks Evolve
Infosecurity Europe: Business Leaders Lack Understanding of Threat Intelligence, Study Warns
Critical Flowise Flaw Gives Attackers Full Server Control
Infosecurity Europe: Tabletop Exercise to Test How CISOs Respond to Major Supermarket Cyber-Attack
Infosecurity Europe: AI SOCs Will Still Need SOC Analysts, Security Vendors Say
SecurityWeek
Trump Signs Executive Order That Invites Vetting of Top AI Models for National Security Risks
Two New Reports Offer Competing Explanations for Cybersecurity’s Growing Crisis
Exclusive: How One Line of Code Put Billions of Microsoft Android App Downloads at Risk
Android Update Patches Exploited Zero-Day, 123 Other Vulnerabilities
Anthropic Expanding Mythos Access to 150 New Organizations
The Zero-Knowledge Threat Actor and the End of Responsible Disclosure
Critical Vulnerability in HP VoIP Phones Enables Enterprise Network Breaches
Oracle WebLogic Vulnerability Exploited in the Wild
Meta AI Hands Over High-Profile Instagram Accounts to Hackers
Supply Chain Attack Hits 32 Red Hat NPM Packages
ZDNet
AI Model Release Tracker: Microsoft AI's first reasoning model arrives
Build 2026: Microsoft's MDASH exits preview with 100+ specialized threat-hunting AI agents
I replaced my Garmin with this Amazfit watch for fitness, and it's a worthy alternative
Microsoft's first reasoning model is one of 7 AIs just released at Build - what we know so far
4 Nvidia RTX Spark laptops I'm most excited to try - including Microsoft's new Ultra
Work IQ is Microsoft's big bet on agent-first enterprise IT, and I have questions
I compared the two best Android camera phones in 2026 - and it's surprisingly close
Your car is following you - how to reclaim your data privacy on the open road
I'm a phone reviewer - these are the 5 early Prime Day phone deals I'd recommend
Amazon has discounted this 75-inch Hisense TV by over $500 - and I highly recommend it
The Hacker News
Google June 2026 Android Update Patches 124 Flaws, One Actively Exploited
Gamaredon Exploits WinRAR to Deliver GammaWorm and GammaSteel Against Ukraine
Oracle WebLogic CVE-2024-21182 Added to KEV Catalog After Active Exploitation
AI-Driven Exploitation is Destroying Vulnerability Management. Here’s How to Handle It.
How Leading Organizations Are Turning EDR Into Operational Resilience
Pakistan-Linked SideCopy Targets Afghanistan Finance Ministry with Xeno RAT
Dashlane Discloses Brute-Force Attack, Encrypted Vaults of Fewer Than 20 Users Downloaded
Miasma Supply Chain Attack Compromises Red Hat npm Packages with Credential-Stealing Worm
⚡ Weekly Recap: New Linux Flaw, PAN-OS Exploit, AI-Powered Attacks, OAuth Phishing and More
China-Aligned Groups Ramp Up Attacks: Dragon Weave Hits Czech Republic & Taiwan
BleepingComputer
AI-built ransomware toolkit automates EDR evasion, AD discovery
Microsoft Exchange Online outage causes email delays, failures
Instagram users locked out after Meta AI abused to steal accounts
Why the browser is now the front line for AI security
CISA flags two-year-old Oracle flaw as actively exploited in attacks
Google fixes one actively exploited Android zero-day, 124 flaws
Hackers hijack thousands of sites for ClickFix and FakeUpdate attacks
Red Hat npm packages compromised to steal developer credentials
Spain arrests doxer leaking sensitive data of govt employees
Dashlane password manager users locked out by brute force attacks
gbhackers
Halo Security Honored with 2026 MSP Today Product of the Year Award
Stolen Gemini API Keys Fuel Automated Telegram Influence Campaign
Critical KMW CCTV Flaw Allows Unauthorised Access to Surveillance Feeds
Foreign Spyware Found on Phones of Top Russian Officials
Mustang Panda Uses LNK, PowerShell Chain to Deploy PlugX RAT
Claude Code GitHub Actions Flaw Exposes Repositories to Full Compromise
CISA Warns of Active Exploitation of Palo Alto Networks PAN-OS Vulnerability
CISA Issues Alert on Oracle WebLogic Server Flaw Under Active Exploitation
Android Zero-Day Vulnerability Actively Exploited in Device Takeover Attacks
34 Malicious Packages Steal Cloud Keys, Wallets, and SSH Credentials
Cybersecurity Dive
Trump signs EO seeking early government access to powerful AI models
Dozens of Red Hat npm packages targeted in supply chain attack
Anthropic shares Mythos with 150 more organizations, including critical infrastructure operators
Turning tension into collaboration: How CIOs and CISOs can lead together
Without strong governance, companies put credit ratings at risk in AI era
CISA adds critical Palo Alto Networks firewall flaw to KEV as company, researchers warn of exploitation
How Canva scaled to 260+M users while elevating security and productivity
Top 4 data security best practices for the AI-enabled enterprise
CISA urges security teams to check for software development compromises
How CISOs can manage sovereign-cloud security risks
Threatpost
Student Loan Breach Exposes 2.5M Records
Watering Hole Attacks Push ScanBox Keylogger
Tentacles of ‘0ktapus’ Threat Group Victimize 130 Firms
Ransomware Attacks are on the Rise
Cybercriminals Are Selling Access to Chinese Surveillance Cameras
Twitter Whistleblower Complaint: The TL;DR Version
Firewall Bug Under Active Attack Triggers CISA Warning
Fake Reservation Links Prey on Weary Travelers
iPhone Users Urged to Update to Patch 2 Zero-Days
Google Patches Chrome’s Fifth Zero-Day of the Year
The Register
Cisco sings Mythos' praises - but doesn't say how many bugs the model uncovered
Russian spy agency says foreign spies turned officials' smartphones into surveillance devices
Microsoft reaches for olive branch after public dustup with 0-day researcher
Claude celebrates Anthropic's stock market float with blockbuster ... outage
Northern Ireland cops issue PSA after official phone number spoofed by scammers
Shai-Hulud malware worms Red Hat npm package versions downloaded 80K times a week
Election interlopers register 5K+ domains, hope to catch some voting phish
GTA cheat service Atlas Menu hacked as attacker alleges screenshot spying
Palo Alto VPN bug graduates from advisory to active exploitation
Password manager Dashlane suspends customer accounts amid brute-force attacks
VentureBeat
Microsoft launches MXC, an OS-level sandbox for AI agents, with OpenAI and Nvidia already on board
Zip’s new AI agents want to stop your finance team from uploading contracts into personal ChatGPT accounts
Anthropic’s browser agent got hijacked 31.5% of the time before safeguards engaged
AI doesn't break security. Complexity does
Claude Mythos exposed a hard truth: Your enterprise patching process is way too slow
DataGrail report finds your vendor may be sending data to AI models you never approved
The attack dominating financial services doesn't steal passwords. It resets MFA and steals the token.
TechCrunch
Password manager Dashlane says hackers stole some customers’ password vaults
Anthropic scales Claude Mythos to critical infrastructure in 15+ countries
Hackers hijacked Instagram accounts by tricking Meta AI support chatbot into granting access
Grand Theft Auto V cheat service gets hacked, exposing thousands of gamers
Microsoft under fire for threatening security researcher with criminal investigation
Final 24 hours to save up to $410 on your TechCrunch Disrupt 2026 ticket
Hackers are trying to steal Signal users’ backups in new wave of widespread attacks
A security lapse at prison pay phone service Pay Tel publicly exposed over 300K callers’ driver’s licenses
US says troops were targeted with location data, as senator warns ad industry is a ‘national security threat’
UK Visa Portal exposed thousands of applicants’ passports and selfies — then called the lawyers on us
Network World Security
Netskope introduces AI Command Center to monitor and secure enterprise AI sprawl
Cisco Live: The network is back, and AI rewrote the rules
2026 network outage report and internet health check
Cisco brings agentic ops platform and security overhaul to Cisco Live
Attackers exploit Palo Alto GlobalProtect flaw days after disclosure
FTC broadens Microsoft probe to cloud, AI, and software bundling
Can Chinese memory maker CXMT help relieve the memory shortage?
Broadcom, Samsung team for wireless SoC
Intel focuses on power efficiency and cost with new chip designs
Cisco: Latest news and insights
Help Net Security
Noma brings visibility and access governance to AI agents and MCP servers
Tuskira Quell identifies, mitigates, and validates zero-day risk before breach
Meta adds stricter guardrails for teen feeds
64,000 accounts exposed in breach of GTA V cheat service Atlas Menu
Codex knowledge work expands into research, reports, and spreadsheets
Google fixes actively exploited Android vulnerability (CVE-2025-48595)
Diligent automates cyber risk assessments and reporting
Microsoft Entra pushes passkeys, tightens identity security
Sophos uncovers AI-powered malware lab built for EDR evasion
Red Hat npm packages compromised in new Mini Shai-Hulud malware wave
SC Magazine
Heraclitus, AI LLMs, SSO, TTP, NetLogon, PAN-OS, AI Cost, Aaran Leyland... - SWN #586
Why supply chain attacks work and what detection can actually do about it
Why One-Size-Fits-All Security Fails (And How to Reduce Your Attack Surface) - WC #1
Spanish police arrest individual in connection with data leak from state organizations
Microsoft denies legal action against researchers after slamming BlueHammer publisher
BadHost, Dead CTFs, Exploding NPMs, and the Verizon DBIR - ASW #385
Malware hides in Steam comments to infect WordPress sites
AI-powered threats target 2026 election communications
Fingerprint launches AI assistant detection tools
Ransomware leak posts show weekday peak, October spikes
© 2026 RiskDiscovery | Sponsored by: Deception Logic