[ News | Newsletters | Blogs | Reddits | Lists | Media | Jobs ] HoneyDB
DarkReading
'K2 Think' AI Model Jailbroken Mere Hours After Release
Russian APT Attacks Kazakhstan's Largest Oil Company
Students Pose Inside Threat to Education Sector
Chinese Hackers Allegedly Pose as US Lawmaker
The Quiet Revolution in Kubernetes Security
Dormant macOS Backdoor ChillyHell Resurfaces
Southeast Asian Scam Centers Face More Financial Sanctions
EoP Flaws Again Lead Microsoft Patch Tuesday
Is the Browser Becoming the New Endpoint?
Qantas Reduces Executive Pay Following Cyberattack
Ars Technica
Senator blasts Microsoft for making default Windows vulnerable to “Kerberoasting”
Developers joke about “coding like cavemen” as AI service suffers major outage
Microsoft ends OpenAI exclusivity in Office, adds rival Anthropic
Claude’s new AI file-creation feature ships with security risks built in
SAP warns of high-severity vulnerabilities in multiple products
Why accessibility might be AI’s biggest breakthrough
Software packages with more than 2 billion weekly downloads hit in supply-chain attack
Former WhatsApp security boss in lawsuit likens Meta’s culture to a “cult”
AI will consume all of IT by 2030—but not all IT jobs, Gartner says
ChatGPT’s new branching feature is a good reminder that AI chatbots aren’t people
CyberScoop
Wyden calls on FTC to investigate Microsoft for ‘gross cybersecurity negligence’ in protecting critical infrastructure
China’s ‘Typhoons’ changing the way FBI hunts sophisticated threats
Three states team up in investigative sweep of companies flouting data opt-out laws
The npm incident frightened everyone, but ended up being nothing to fret about
Acting federal cyber chief outlines his three priorities for the next year
Apple’s new Memory Integrity Enforcement system deals a huge blow to spyware developers
Critical infrastructure security tech needs to be as good as our smartphones, top NSC cyber official says
Microsoft Patch Tuesday addresses 81 vulnerabilities, none actively exploited
U.S. indicts Ukrainian national for hundreds of ransomware attacks using multiple variants
Former WhatsApp security manager sues company for privacy violations, professional retaliation
HITBSecNews
Found on VirusTotal: The world’s first UEFI bootkit for Linux
OpenAI is at war with its own Sora video testers following brief public leak
North Korean hackers posing as IT workers steal over $1B in cyberattack
WhatsApp: NSO Group Operates Pegasus Spyware for Customers
Korea extradites Russian, Vietnamese suspects linked to $16M ransomware scheme
CISA Director Jen Easterly, in Place Since 2021, to Step Down
Man sick of crashes sues Intel for allegedly hiding CPU defects
North Korean hackers target cryptocurrency with malware
Law enforcement operation takes down 22,000 malicious IP addresses worldwide
Youth of today say passwords are old news, passkeys are the future
ZDNet
OpenAI's fix for hallucinations is simpler than you think
4 ways machines will automate your business - and it's no hype, says Gartner
My new favorite note-taking app for MacOS and Linux checks this crucial box - and it's free
Your Android phone just got 3 useful features for free - including an audio upgrade
Researchers built a wireless heart rate monitor with a Raspberry Pi and Wi-Fi - here's how
I bought this $15 cordless screwdriver just for fun - then it totally impressed me
The most durable USB-C cable I've ever tested survived my 50-pound weight test
iPhone 17 vs. iPhone Air, 17 Pro, and 17 Pro Max: I compared every model, and here's my buying advice
iPhone 17 Pro Max vs. Google Pixel 10 Pro XL: I compared both phones, and it's a close one
T-Mobile will give you a free iPhone 17 Pro right now - how the preorder deal works
The Hacker News
SonicWall SSL VPN Flaw and Misconfigurations Actively Exploited by Akira Ransomware Hackers
Cracking the Boardroom Code: Helping CISOs Speak the Language of Business
Fake Madgicx Plus and SocialMetrics Extensions Are Hijacking Meta Business Accounts
AsyncRAT Exploits ConnectWise ScreenConnect to Steal Credentials and Crypto
Chinese APT Deploys EggStreme Fileless Malware to Breach Philippine Military Systems
CHILLYHELL macOS Backdoor and ZynorRAT RAT Threaten macOS, Windows, and Linux Systems
Microsoft Fixes 80 Flaws — Including SMB PrivEsc and Azure CVSS 10.0 Bugs
Apple iPhone Air and iPhone 17 Feature A19 Chips With Spyware-Resistant Memory Safety
The Time-Saving Guide for Service Providers: Automating vCISO and Compliance Services
Watch Out for Salty2FA: New Phishing Kit Targeting US and EU Enterprises
BleepingComputer
New VMScape attack breaks guest-host isolation on AMD, Intel CPUs
The Buyer’s Guide to Browser Extension Management
DDoS defender targeted in 1.5 Bpps denial-of-service attack
Microsoft waives fees for Windows devs publishing to Microsoft Store
Hackers left empty-handed after massive NPM supply-chain attack
Pixel 10 fights AI fakes with new Android photo verification tech
Cursor AI editor lets repos “autorun” malicious code on devices
Jaguar Land Rover confirms data theft after recent cyberattack
Can I have a new password, please? The $400M question.
Microsoft fixes streaming issues triggered by Windows updates
Cybersecurity Dive
UK cyber leader calls for shift in focus toward continuity of critical services
How the retail sector teams up to defend against cybercrime
Senior NSC official said US needs to embrace offensive cyber
Ransomware insurance losses spike despite fewer claims: Resilience
National cyber director says US must shift risk burden toward adversaries
Mitsubishi Electric agrees to buy Nozomi Networks in deal valued at about $1B
How AI and politics hampered the secure open-source software movement
Bridgestone Americas continues probe as it looks to restore operations
Salesloft platform integration restored after probe reveals monthslong GitHub account compromise
Data security gaps stymy enterprise AI plans
Threatpost
Student Loan Breach Exposes 2.5M Records
Watering Hole Attacks Push ScanBox Keylogger
Tentacles of ‘0ktapus’ Threat Group Victimize 130 Firms
Ransomware Attacks are on the Rise
Cybercriminals Are Selling Access to Chinese Surveillance Cameras
Twitter Whistleblower Complaint: The TL;DR Version
Firewall Bug Under Active Attack Triggers CISA Warning
Fake Reservation Links Prey on Weary Travelers
iPhone Users Urged to Update to Patch 2 Zero-Days
Google Patches Chrome’s Fifth Zero-Day of the Year
The Register
Spectre haunts CPUs again: VMSCAPE vulnerability leaks cloud secrets
Senator blasts Microsoft for 'dangerous, insecure software' that helped pwn US hospitals
Brussels faces privacy crossroads over encryption backdoors
Attacker steals customer data from Brit rail operator LNER during break-in at supplier
Experts scrutinized Ofcom's Online Safety Act governance. They're concerned
BAE Systems surfaces autonomous submarine for military use
NASA bars Chinese citizens from its facilities, networks, even Zoom calls
Beijing went to 'EggStreme' lengths to attack Philippines military, researchers say
Akira ransomware crims abusing trifecta of SonicWall security holes for extortion attacks
Apple slips up on ChillyHell macOS malware, lets it past security . . . for 4 years
VentureBeat
TechCrunch
France says Apple notified victims of new spyware attacks
Kids in the UK are hacking their own schools for dares and notoriety
Vibe coding? Meet vibe security
Jaguar Land Rover says data stolen in disruptive cyberattack
Google’s former security leads raise $13M to fight email threats before they reach you
Plex urges users to change passwords after data breach
Netskope follows Rubrik as a rare cybersecurity IPO, both backed by Lightspeed
VC giant Insight Partners notifies staff and limited partners after data breach
Signal introduces free and paid backup plans for your chats
Salesloft says Drift customer data thefts linked to March GitHub account hack
Network World Security
HomeLM: A foundation model for ambient AI
Google enlists new ‘free’ data transfer service as the EU Data Act deadline approaches
Microsoft finds possible solution to Azure capacity issues
Nvidia: Latest news and insights
Cisco’s Splunk embeds agentic AI into security and observability products
New life for the mainframe: AI cost savings materialize, modernization efforts pay off
Cadence adds Nvidia to digital twin tool for data center design
Nvidia rolls out new GPUs for AI inferencing, large workloads
VMware by Broadcom: Product, service and support news
Network jobs watch: Hiring, skills and certification trends
Help Net Security
Akira ransomware affiliates continue breaching organizations via SonicWall firewalls
F5 moves to secure generative AI with CalypsoAI acquisition
N-able’s Cat-MIP standardizes terminology for AI automation
Box Shield Pro monitors AI workflows and sensitive data
Default Cursor setting can be exploited to run malicious code on developers’ machines
Cynomi simplifies vendor risk management
Hush Security emerges from stealth to replace legacy vaults with secretless access
When typing becomes tracking: Study reveals widespread silent keystroke interception
How attackers weaponize communications networks
AI is everywhere, but scaling it is another story
InfoSecurity Magazine
Fileless Malware Deploys Advanced RAT via Legitimate Tools
Wyden Urges FTC Investigation Over Ascension Ransomware Hack
Chinese APT Actor Compromises Military Firm with Novel Fileless Malware Toolset
France: Three Regional Healthcare Agencies Targeted by Cyber-Attacks
Ukrainian Ransomware Fugitive Added to Europe’s Most Wanted
LNER Reveals Supply Chain Attack Compromised Customer Information
KillSec Ransomware Hits Brazilian Healthcare IT Vendor
Cursor Autorun Flaw Lets Repositories Execute Code Without Consent
Adobe Releases Emergency Patch for Critical Flaw in Commerce and Magento
Ransomware Payments Plummet in Education Amid Enhanced Resiliency
© 2025 RiskDiscovery | Sponsored by: Deception Logic