[ News | Newsletters | Blogs | Lists | Media | Jobs ] HoneyDB
DarkReading
[Virtual Event] Anatomy of a Data Breach: What to Do if it Happens to You
Infosecurity Europe
Nordic CISOs Handle Rising Cyber Threats Remarkably Well
Ransomware Actors Show Up In Person to Steal Law Firm Data
Latin American Cybercriminals Hoover Up Government Data
AI-Assisted Exploit Development Outpaces Scanner Detection
Cybersecurity Evolution: How We Went From Perimeter Defense to AI-Native Security
Feeding Frenzy: 'Megalodon' Malware Infects Thousands of GitHub Repos
State Cyber Leaders Beg Congress for More Funding, Support
Shai-Hulud Hackers TeamPCP: Lucky or Skilled?
Ars Technica
Websites have a new way to spy on visitors: analyzing their SSD activity
Millions of AI agents imperiled by critical vulnerability in open source package
US's big bet on quantum computing may not be entirely legal
Texas AG sues Meta over claims that WhatsApp doesn't provide end-to-end encryption
A hacker group is poisoning open source code at an unprecedented scale
US government takes $2 billion equity stake in nine quantum computing firms
Google publishes exploit code threatening millions of Chromium users
In stunning display of stupid, secret CISA credentials found in public GitHub repo
Zero-day exploit completely defeats default Windows 11 BitLocker protections
Cisco announces record revenue and 4,000 layoffs in the same day
CyberScoop
OpenAI heralds cybersecurity, election interference safeguard plans for 2026 midterms
FBI warns US-based law firms to be on the lookout for cybercrime group that steals data in person
UK spy chief labels AI ‘unstoppable force’ with offensive, defensive ramifications for cyberspace
CrowdStrike disrupts Glassworm botnet that preyed on open-source supply chain
Apple open-sources quantum-resistant encryption code
White House charts new course for federal agencies and cybersecurity logging
Anthropic: Mythos finds more than 10,000 software flaws in first month
FBI warns about fast-growing phishing kit targeting Microsoft 365 users
Alleged leader of Kimwolf, a sweeping botnet for cybercriminals, arrested in Canada
Lawmakers from both parties say CISA cuts have gone too far
InfoSecurity Magazine
Microsoft Condemns "Uncoordinated" Zero Day Disclosures
New Threat Actor Jinx-0164 Targets Crypto Developers on macOS
Infosecurity Europe: Cybersecurity Staff Prefer CISOs With Real Attack Response Experience, Study Reveals
GCHQ Chief Urges Action as AI Reshapes Cyber Threats
CrowdStrike, Google Take Down Glassworm Botnet
Infosecurity Europe: Why Burnout in Cybersecurity Demands Risk-Based Response
All Major LLMs Exposed to Multi-Turn Manipulation, Warn Researchers
Thousands of Fake FIFA Domains Target World Cup Fans
68% of UK Firms Plan to Increase Cyber Spending as AI Risks Rise
PureLogs Variant Steals Data via Purchase Order Lures
SecurityWeek
IBM and Red Hat Commit $5 Billion to Secure Open Source Supply Chains Under “Project Lightwell”
New Edamame Platform Aims to Catch AI Coding Agents Going Off the Rails
Gitea Vulnerability Exposed 30,000 Deployments to Attacks
Raising the Cybersecurity Stakes: Ante up for the Agentic Era
Google Unveils AI Threat Defense Platform to Fight AI-Powered Cyberattacks
UK Cyberspying Chief Calls AI ‘an Unstoppable Force’ and Warns About Russia
Vulnerability in Popular Conference Software Granted Attackers a 100% Talk Acceptance Rate
SecurityWeek to Host AI Risk Summit August 11-12 at the Ritz-Carlton, Half Moon Bay
RevEng.AI Raises $15 Million to Hunt for Flaws and Backdoors in Software Binaries
Romanian Hacker Sentenced to Prison in US for Selling Access to State Network
ZDNet
NordVPN isn't just a VPN anymore, but a full security suite - here's what you get now
I'm an iPhone user, but Gemini with Android Auto beats Siri in the car any day - here's why
Oura Ring 5 vs. Oura Ring 4: I compared the smart rings for health tracking - and it's very close
I set up a router-based VPN for my TV, and it's the cheap security fix it desperately needed
4 Android Auto apps I highly recommend for your next road trip - beyond Maps and Spotify
Why a Bluetooth upgrade for AirPods excites me more than cameras or AI
My favorite Zorin OS settings and why you'll love them too
This exec offers 4 ways to be a successful innovator in the age of agentic AI
I've tested so many Linux email clients - why I'm recommending Aerion above all else
I demoed Sony's new modular theater system, and the audio quality was next level
The Hacker News
New AI Usage Report: Enterprise AI Risk Is Heavily Concentrated Among a Small Group of AI "Power users"
JINX-0164 Targets Cryptocurrency Firms with Fake Recruiter Lures and macOS Malware
Grandoreiro Malware and BTMOB RAT Campaigns Target Windows and Android Users
Malicious npm Package Stole Files From Claude AI User Directory via GitHub
5 Steps to Managing Shadow AI Tools Without Slowing Down Employees
GlassWorm Malware Takedown Disrupts Developer Supply Chain Attack Infrastructure
3 SOC Steps that Shut Down Incident Risks Early
Gitea Vulnerability Exposes Private Container Images without Authentication
AI Chatbot Recommendations Redirect Users to Cryptojacking Malware Sites
MuddyWater Uses DLL Side-Loading in Espionage Campaign Targeting 9 Countries
BleepingComputer
Romanian gets 5 years in prison for hacking Oregon govt network
Webinar: Why network incidents take too long to resolve
Carnival Cruise confirms data breach affecting nearly 6 million people
Sextortionist sentenced to 33 years for targeting 145 children
GPU mining malware spreads via SEO poisoning, AI chatbots
Can you enforce strong Active Directory password rules without frustrating users?
Glassworm botnet disrupted after resilient C2 infrastructure takedown
FBI warns of in-person data theft attacks from extortion gang
CISA gives feds 4 days to patch actively exploited cPanel plugin flaw
Dutch police arrests suspect linked to Ajax football club hack
gbhackers
Malicious Websites Exploit SSD Timing Signals to Monitor Visitor Activity
VaultJacking Attack Exposes Google Password Vaults via Single PIN
Top 10 Best Mobile Application Security Testing (MAST) Tools in 2026
Gitea Container Registry Vulnerability Could Lead to Private Image Exposure
AI-Generated npm Malware Leaks Hacker’s Private GitHub Token
Critical Notepad++ Flaw Could Enable Remote Code Execution Attacks
ClearFake Abuses BSC Testnet Contracts for Resilient C2 Operations
Roundcube Webmail Vulnerability Allows Hackers to Execute Malicious SQL Queries
Hackers Spread VIP Keylogger via Fake Business Emails
Motorola App Allegedly Hijacks Amazon App Activity to Insert Affiliate Referral Codes
Cybersecurity Dive
Coordinated operation takes down Glassworm botnet
Leading AI models are more vulnerable to malicious prompts than vendors claim
Iranian government, not hacktivist group, breached LA Metro system, security firm says
FBI warns about PhaaS platform used to access Microsoft 365 environments
Iran-linked hackers target key US, allied sectors with sophisticated spear-phishing messages
New York regulator calls for additional cyber mitigation amid heightened threat environment
CISA asks cybersecurity community to alert it to vulnerability exploitation
Grafana Labs links GitHub environment breach to TanStack npm supply chain attack
7-Eleven hit by data breach
Microsoft disrupts cybercrime operation that hid behind legitimate software
Threatpost
Student Loan Breach Exposes 2.5M Records
Watering Hole Attacks Push ScanBox Keylogger
Tentacles of ‘0ktapus’ Threat Group Victimize 130 Firms
Ransomware Attacks are on the Rise
Cybercriminals Are Selling Access to Chinese Surveillance Cameras
Twitter Whistleblower Complaint: The TL;DR Version
Firewall Bug Under Active Attack Triggers CISA Warning
Fake Reservation Links Prey on Weary Travelers
iPhone Users Urged to Update to Patch 2 Zero-Days
Google Patches Chrome’s Fifth Zero-Day of the Year
The Register
Carnival confirms ShinyHunters cruised off with 6M customer records after April breach
Company CEO flooded file share with smut, called for help after he deleted it
CrowdStrike, Google shatter Glassworm botnet
Bosses blinded by confidence about shadow AI use by workers
Extortion crews are visiting law firms pretending to be tech support, FBI warns
India's cyber agency sets clock at 12 hours to tackle exploited bugs as AI turns up the heat
How to guarantee a speaker gig: Hack the system. Literally
MyPillow must decide whether to be firm or soft as ransomware crims demand pay
Experts pour cold borscht on Farage's Russian hack claim
Anthropic to release Mythos-class models to the public
VentureBeat
DataGrail report finds your vendor may be sending data to AI models you never approved
The attack dominating financial services doesn't steal passwords. It resets MFA and steals the token.
Valid certificates, stolen accounts: how attackers broke npm's last trust signal
Americans can’t spot a deepfake, and that’s a business crisis, not just a consumer problem
MFA verifies who logged in. It has no idea what they do next.
GitHub confirms 3,800 internal repos stolen through poisoned VS Code extension as supply chain worm hits Microsoft’s Python SDK
Four AI supply-chain attacks in 50 days exposed the release pipeline red teams aren't covering
TechCrunch
UK Visa Portal exposed thousands of applicants’ passports and selfies — then called the lawyers on us
CrowdStrike and Google take down botnet used by hackers to target open source software developers
TechCrunch Disrupt 2026 Early Bird ticket savings end in 3 days
Dutch government blocks US company from acquisition, citing ‘risk to public interest’
Ghost hackers: the cybersecurity mystery that nobody has solved
Iranian hackers blamed for breach of Los Angeles transit system that took weeks to recover
7-Eleven data breach affects over 185,000 people’s personal data
These special phone and app features can help protect you from spyware
Kash Patel’s clothing brand website shut down after reports it was hacked
Trump Mobile confirms it exposed customers’ personal data, including phone numbers and home addresses
Network World Security
Zero trust isn’t broken, but most companies are doing it wrong
As AI datacenter memory becomes hot commodity, SK Hynix makes it cooler
Cisco research finds standard AI safety benchmarks miss the real threat
Cisco redefines ‘job-ready’ for network engineers with its certification overhaul
2026 network outage report and internet health check
IBM plans $2B quantum chip foundry; government will pay half
Cisco: AI traffic is radically reshaping WANs
xAI-Anthropic deal signals the rise of AI compute as a standalone business
Critical vulnerability in Cisco Secure Workload rated at maximum severity
Cisco’s new certs are a wake-up call for AI-era network engineers
Help Net Security
OpenAI prepares ChatGPT for the election misinformation wave
Qumulo NeuralProtect uses AI to detect and stop ransomware before encryption
Digimarc adds provenance, audit, and verification controls for AI agent workflows
Qevlar’s new AI agents correlate CVEs, incident data, and active exploitation signals
Microsoft’s new cloud PCs place AI agents under enterprise controls
A single typo could derail your World Cup plans
Oil shipments, drone makers, and a poisoned code library targeted in recent APT campaigns
Ketch brings multi-agent AI orchestration to enterprise privacy programs
Checksum introduces Continuous Quality Agent for automated test generation and healing
XM Cyber enhances identity risk visibility with continuous exposure management capabilities
SC Magazine
Cisco study finds major frontier models susceptible to multi-turn prompt injection attacks
OWASP launches FinBot to help developers secure AI agents
XM Cyber expands platform to enforce least-privilege access
High-severity Starlette vulnerability 'BadHost' could expose sensitive data
Xage Security enhances zero-trust platform for AI agents
Doppel launches AI email security to disrupt phishing campaigns
FBI warns law firms of in-person data theft by Silent Ransom Group
CISA adds LiteSpeed cPanel plugin bug to exploited vulnerabilities list
Laying the groundwork: A practical path to identity security for AI agents
A Founder's Journey: Transitioning from Sales Strategy & Operations to Founder & CEO - Ankita Gupta - FS #15
© 2026 RiskDiscovery | Sponsored by: Deception Logic