[ News | Newsletters | Blogs | Reddits | Lists | Media | Jobs ] HoneyDB
DarkReading
[Dark Reading Virtual Event] Cybersecurity Outlook 2026
Fortinet Woes Continue With Another WAF Zero-Day Flaw
Do National Data Laws Carry Cyber-Risks for Large Orgs?
The AI Attack Surface: How Agents Raise the Cyber Stakes
Cloudflare Blames Outage on Internal Configuration Error
Critical Railway Braking Systems Open to Tampering
US Creates 'Strike Force' to Take Out SE Asian Scam Centers
Cloud Break: IoT Devices Open to Silent Takeover Via Firewalls
Can a Global, Decentralized System Save CVE Data?
Iran-Nexus Threat Actor UNC1549 Takes Aim at Aerospace
Ars Technica
Massive Cloudflare outage was triggered by file that suddenly doubled in size
Critics scoff after Microsoft warns AI feature can infect machines and pilfer data
Tech giants pour billions into Anthropic as circular AI investments roll on
Bonkers Bitcoin heist: 5-star hotels, cash-filled envelopes, vanishing funds
Google CEO: If an AI bubble pops, no one is getting out clean
5 plead guilty to laptop farm and ID theft scheme to land North Koreans US IT jobs
Oracle hit hard in Wall Street’s tech sell-off over its huge AI bet
Forget AGI—Sam Altman celebrates ChatGPT finally following em dash formatting rules
Researchers question Anthropic claim that AI-assisted attack was 90% autonomous
OpenAI walks a tricky tightrope with GPT-5.1’s eight new personalities
CyberScoop
Palo Alto Networks to acquire observability firm Chronosphere for $3.35 billion
Five Eyes just made life harder for bulletproof hosting providers
Amazon warns of global rise in specialized cyber-enabled kinetic targeting
Information sharing law’s expiration could squander government vulnerability hunting efforts, senator says
Hackers turn open-source AI framework into global cryptojacking operation
Completed draft of cyber strategy emphasizes imposing costs, industry partnership
The realities of CISO burnout and exhaustion
Fortinet’s delayed alert on actively exploited defect put defenders at a disadvantage
Dozens of groups call for governments to protect encryption 
DOJ lauds series of gains against North Korean IT worker scheme, crypto thefts
HITBSecNews
Found on VirusTotal: The world’s first UEFI bootkit for Linux
OpenAI is at war with its own Sora video testers following brief public leak
North Korean hackers posing as IT workers steal over $1B in cyberattack
WhatsApp: NSO Group Operates Pegasus Spyware for Customers
Korea extradites Russian, Vietnamese suspects linked to $16M ransomware scheme
CISA Director Jen Easterly, in Place Since 2021, to Step Down
Man sick of crashes sues Intel for allegedly hiding CPU defects
North Korean hackers target cryptocurrency with malware
Law enforcement operation takes down 22,000 malicious IP addresses worldwide
Youth of today say passwords are old news, passkeys are the future
ZDNet
This free Windows app turns your laptop screen into a ring light - how to try it
12 reasons not to root your Android phone - and the only time I would
Own a Samsung watch? My 30-second routine keeps the system running like new
Own a Roku TV? I changed 6 settings to give the system a noticeable speed boost
What an orange USB port actually means - and the truth behind all the colors
QLED vs. OLED: Testing this overlooked Samsung TV model made the answer clear to me
This Greenworks 24V cordless drill and impact driver kit is perfect for my new house, and it's $60 off
Forget Dyson: This stick vacuum surpassed a skeptic's wildest expectations - and it's $250 off
I refused to believe this coin-sized gadget was a storage drive, until I tried it for myself
Yes, there exists $200 Android tablets that are actually worth the money - this one proves it
The Hacker News
TamperedChef Malware Spreads via Fake Software Installers in Ongoing Global Campaign
Hackers Actively Exploiting 7-Zip Symbolic Link–Based RCE Vulnerability (CVE-2025-11001)
Python-Based WhatsApp Worm Spreads Eternidade Stealer Across Brazilian Devices
WrtHug Exploits Six ASUS WRT Flaws to Hijack Tens of Thousands of EoL Routers Worldwide
Application Containment: How to Use Ringfencing to Prevent the Weaponization of Trusted Software
EdgeStepper Implant Reroutes DNS Queries to Deploy Malware via Hijacked Software Updates
ServiceNow AI Agents Can Be Tricked Into Acting Against Each Other via Second-Order Prompts
Fortinet Warns of New FortiWeb CVE-2025-58034 Vulnerability Exploited in the Wild
Sneaky 2FA Phishing Kit Adds BitB Pop-ups Designed to Mimic the Browser Address Bar
Meta Expands WhatsApp Security Research with New Proxy Tool and $4M in Bounties This Year
BleepingComputer
Sneaky2FA PhaaS kit now uses redteamers' Browser-in-the-Browser attack
Google's Gemini 3 is living up to the hype and creating games in one shot
Google Search is now using AI to create interactive UI to answer your questions
W3 Total Cache WordPress plugin vulnerable to PHP command injection
Russian bulletproof hosting provider sanctioned over ransomware ties
New WrtHug campaign hijacks thousands of end-of-life ASUS routers
The hidden risks in your DevOps stack data—and how to address them
CISA gives govt agencies 7 days to patch new Fortinet flaw
Meet ShinySp1d3r: New Ransomware-as-a-Service created by ShinyHunters
California man admits to laundering crypto stolen in $230M heist
Cybersecurity Dive
FCC plan to scrap telecom cyber rules draws congressional backlash
US, allies sanction Russian bulletproof hosting firm
Record-breaking DDoS attack against Microsoft Azure mitigated
Trump’s cyber strategy will emphasize adversary deterrence, industry partnerships
Hackers increasingly target operational technology, with manufacturing sector bearing the brunt
Jaguar Land Rover reports major earnings impact from cyberattack
CISA, eyeing China, plans hiring spree to rebuild its depleted ranks
US chips away at North Korean IT worker fraud
Critical vulnerability in Fortinet FortiWeb is under exploitation
CISO pay is on the rise, even as security budgets tighten
Threatpost
Student Loan Breach Exposes 2.5M Records
Watering Hole Attacks Push ScanBox Keylogger
Tentacles of ‘0ktapus’ Threat Group Victimize 130 Firms
Ransomware Attacks are on the Rise
Cybercriminals Are Selling Access to Chinese Surveillance Cameras
Twitter Whistleblower Complaint: The TL;DR Version
Firewall Bug Under Active Attack Triggers CISA Warning
Fake Reservation Links Prey on Weary Travelers
iPhone Users Urged to Update to Patch 2 Zero-Days
Google Patches Chrome’s Fifth Zero-Day of the Year
The Register
Palo Alto CEO tips nation-states to weaponize quantum computing by 2029
US, UK, Australia sanction Lockbit gang’s hosting provider
Fortinet 'fesses up to second 0-day within a week
Amazon security boss: Hostile countries use cyber targeting for physical military strikes
Researchers claim 'largest leak ever' after uncovering WhatsApp enumeration flaw
Tens of thousands more ASUS routers pwned by suspected, evolving China operation
Selling technology investments to the board: a strategic guide for CISOs and CIOs
China recruiting spies in the UK with fake headhunters and ‘sites like LinkedIn’
Self-replicating botnet attacks Ray clusters
FCC looks to torch Biden-era cyber rules sparked by Salt Typhoon mess
VentureBeat
For AI to succeed in the SOC, CISOs need to remove legacy walls now
Human-centric IAM is failing: Agentic AI requires a new identity control plane
How Anthropic's AI was jailbroken to become a weapon
Forrester: Gen AI is a chaos agent, models are wrong 60% of the time
How Anthropic's Claude cuts SOC investigation time from 5 hours to 7 minutes
CrowdStrike & Nvidia's open source AI gives enterprises the edge against machine-speed attacks
Meet Aardvark, OpenAI’s security agent for code analysis and patching
TechCrunch
How the classic anime ‘Ghost in the Shell’ predicted the future of cybersecurity 30 years ago
US, UK, and Australia sanction Russian ‘bulletproof’ web host used in ransomware attacks
Security startup Guardio nabs $80M from ION Crossover Partners
DoorDash confirms data breach affecting users’ phone numbers and physical addresses
MCP AI agent security startup Runlayer launches with 8 unicorns, $11M from Khosla’s Keith Rabois and Felicis
Surveillance tech provider Protei was hacked, its data stolen, and its website defaced
Five people plead guilty to helping North Koreans infiltrate US companies as ‘remote IT workers’
Police take down three cybercrime operations in latest round of ‘whack-a-mole’
CISA warns federal agencies to patch flawed Cisco firewalls amid ‘active exploitation’ across the US government
Cybersecurity firm Deepwatch lays off dozens, citing move to ‘accelerate’ AI investment
Network World Security
SAP touts Microsoft disaster recovery plan for Europe; Analysts doubt it will work
Meter ups its NaaS portfolio with new hardware, autonomous operations
AWS boosts its long-distance cloud connections with custom DWDM transponder
How a bot management file push crippled Cloudflare’s global network
Singapore makes the leap to Wi-Fi 7 to boost fan experience
The latest Microsoft AI deal highlights tight links in AI supply chain
Dell targets enterprise AI with switches, servers, reinforced Nvidia partnership
Kentik bolsters network observability platform with autonomous investigation
IBM readies commercially valuable quantum technology
Microsoft bets on agentic AI for cloud ops, but analysts doubt the pitch
Help Net Security
Is your password manager truly GDPR compliant?
Google Play Store’s privacy practices still confuse Android users
BlueCodeAgent helps developers secure AI-generated code
The confidence trap holding security back
When IT fails, OT pays the price
Veeam Data Platform v13 strengthens AI-driven analysis
7-Zip vulnerability is being actively exploited, NHS England warns (CVE-2025-11001)
Immersive unveils Dynamic Threat Range to transform cyber readiness testing
Strata introduces AI Identity Gateway to secure and govern agentic systems
Exam prep hacked: Study tips and tricks that really work
InfoSecurity Magazine
Europol Operation Disrupts $55m in Cryptocurrency For Piracy
Eternidade Stealer Trojan Fuels Aggressive Brazil Cybercrime
PlushDaemon Hackers Unleash New Malware in China-Aligned Spy Campaigns
China-Linked Operation “WrtHug” Hijacks Thousands of ASUS Routers
Half of Ransomware Access Due to Hijacked VPN Credentials
CISA 2015 Receives Extension, Offering Brief Relief for Cyber Information Sharing
New npm Malware Campaign Redirects Victims to Crypto Sites
AI-Enhanced Tuoni Framework Targets Major US Real Estate Firm
DoorDash Confirms Data Breach Exposing Customer Personal Information
GenAI and Deepfakes Drive Digital Forgeries and Biometric Fraud
© 2025 RiskDiscovery | Sponsored by: Deception Logic