[ News | Newsletters | Blogs | Lists | Media | Jobs ] HoneyDB
DarkReading
Black Hat USA
Russia's Forest Blizzard Nabs Rafts of Logins via SOHO Routers
Threat Actors Get Crafty With Emojis to Escape Detection
AI-Led Remediation Crisis Prompts HackerOne to Pause Bug Bounties
Fraud Rockets Higher in Mobile-First Latin America
Full Sail University to Open IBM Cyber Defense Range Powered by AWS and Cloud Range on Campus
Niobium Introduces The Fog
Pluralsight Launches SecureReady to Help Organizations Build Job-Ready Cybersecurity Teams
Iranian Threat Actors Disrupt US Critical Infrastructure via Exposed PLCs
Storm-1175 Deploys Medusa Ransomware at 'High Velocity'
Ars Technica
Iran-linked hackers disrupt operations at US critical infrastructure sites
Thousands of consumer routers hacked by Russia's military
OpenClaw gives users yet another reason to be freaked out about security
New Rowhammer attacks give complete control of machines running Nvidia GPUs
Quantum computers need vastly fewer resources than thought to break vital encryption
Google bumps up Q Day deadline to 2029, far sooner than previously thought
Self-propagating malware poisons open source software and wipes Iran-based machines
Widely used Trivy scanner compromised in ongoing supply-chain attack
Cloud service providers ask EU regulator to reinstate VMware partner program
Federal cyber experts called Microsoft's cloud a "pile of shit," approved it anyway
CyberScoop
Inside the FBI’s router takedown that cut off APT28’s ‘tremendous access’
Don’t just fight fraud, hunt it
Hack-for-hire spyware campaign targets journalists in Middle East, North Africa
Feds quash widespread Russia-backed espionage network spanning 18,000 devices
Tech giants launch AI-powered ‘Project Glasswing’ to identify critical software vulnerabilities
Iranian hackers launching disruptive attacks at U.S. energy, water targets, feds warn
Cybercrime losses jumped 26% to $20.9 billion in 2025
‘GrafanaGhost’ bypasses Grafana’s AI defenses without leaving a trace
Fortinet customers confront actively exploited zero-day, with a full patch still pending
pcTattleTale stalkerware maker sentence includes fine, supervised release
InfoSecurity Magazine
STX RAT Targets Finance Sector With Advanced Stealth Tactics
Bitcoin Depot Reports $3.6m Crypto Theft After System Breach
Atomic Stealer MacOS ClickFix Attack Bypasses Apple Security Warnings
Middle East Hack-for-Hire Operation Traced to South Asian Cyber Espionage Group
Governance Gaps Emerge as AI Agents Drive 76% Increase in NHIs
Google Warns of New Threat Group Targeting BPOs and Helpdesks
Google API Keys Quietly Gain Access to Gemini on Android Devices
Critical Vulnerability in Ninja Forms Exposes WordPress Sites
Anthropic Launches Project Glasswing to Use AI to Find and Fix Critical Software Vulnerabilities
US Thwarts DNS Hijacking Network Controlled by Russian APT28 Hackers
SecurityWeek
Apple Intelligence AI Guardrails Bypassed in New Attack
Can we Trust AI? No – But Eventually We Must
Google API Keys in Android Apps Expose Gemini Endpoints to Unauthorized Access
Palo Alto Networks, SonicWall Patch High-Severity Vulnerabilities
The Hidden ROI of Visibility: Better Decisions, Better Behavior, Better Security
Google Warns of New Campaign Targeting BPOs to Steal Corporate Data
Adobe Reader Zero-Day Exploited for Months: Researcher
300,000 People Impacted by Eurail Data Breach
$3.6 Million Stolen in Bitcoin Depot Hack
Shaky Ceasefire Unlikely to Stop Cyberattacks From Iran-Linked Hackers for Long
ZDNet
How I turned my Android tablet into the ultimate Kindle alternative - for free
Apple's iOS 26.4.1 update enables Stolen Device Protection by default now - grab it today
I use ChatGPT's new Tubi app to find free movies and TV shows to watch - here's how
Why Ubuntu 26.04 will thrill gamers - and it's not just the performance bump
The best Android tablets of 2026: Lab tested, expert recommended
The best dedicated web hosting of 2026: Expert tested and reviewed
How I find free books for my Kindle in 2026 - that I actually want to read
How I cut my power bill with IFTTT automation - in 4 simple steps
Is Modern Standby draining your Windows laptop battery overnight? Shut it down - here's why
How to share your Kindle books with anyone (and the limits to know) - it's easy
The Hacker News
UAT-10362 Targets Taiwanese NGOs with LucidRook Malware in Spear-Phishing Campaigns
ThreatsDay Bulletin: Hybrid P2P Botnet, 13-Year-Old Apache RCE and 18 More Stories
The Hidden Security Risks of Shadow AI in Enterprises
Adobe Reader Zero-Day Exploited via Malicious PDFs Since December 2025
Bitter-Linked Hack-for-Hire Campaign Targets Journalists Across MENA Region
New Chaos Variant Targets Misconfigured Cloud Deployments, Adds SOCKS Proxy
Masjesu Botnet Emerges as DDoS-for-Hire Service Targeting Global IoT Devices
APT28 Deploys PRISMEX Malware in Campaign Targeting Ukraine and NATO Allies
Shrinking the IAM Attack Surface through Identity Visibility and Intelligence Platforms (IVIP)
Anthropic's Claude Mythos Finds Thousands of Zero-Day Flaws Across Major Systems
BleepingComputer
Smart Slider updates hijacked to push malicious WordPress, Joomla versions
When attackers already have the keys, MFA is just another door to open
Webinar: From noise to signal - What threat actors are targeting next
Eurail says December data breach impacts 300,000 individuals
Hackers exploiting Acrobat Reader zero-day flaw since December
Hackers steal $3.6 million from crypto ATM giant Bitcoin Depot
Microsoft suspends dev accounts for high-profile open source projects
Hackers use pixel-large SVG trick to hide credit card stealer
Google: New UNC6783 hackers steal corporate Zendesk support tickets
New macOS stealer campaign uses Script Editor in ClickFix attack
gbhackers
ClickFix, Malicious DMGs Push notnullOSX to macOS Users
Attackers Deploy Hidden Magecart Skimmer on Magento Using SVG onload Abuse
New Phishing Campaign Exploits Google Storage to Deliver Remcos RAT
ClickFix Campaign Abuses macOS Script Editor to Deploy Atomic Stealer
Technical Details Released for Critical Cisco SSM Command Execution Vulnerability
STX RAT Hides Remote Desktop, Steals Data to Dodge Detection
Microsoft Details How Defender Protects High-Value Assets in Real-World Attacks
Fake Security Tool Spreads LucidRook in Taiwan Cyberattacks
China’s Tianjin Supercomputer Center Allegedly Hit in 10-Petabyte Data Theft
CISA Issues Warning on Critical Ivanti EPMM Flaw Exploited in Ongoing Attacks
Cybersecurity Dive
NERC is ‘actively monitoring the grid’ following Iran-linked cyber threat
CISA adds second critical flaw in Ivanti EPMM to exploited vulnerabilities catalog
US operation evicts Russia from hacked SOHO routers used to breach critical infrastructure
Iran-linked hackers target water, energy in US, FBI and CISA warn
CISA’s vulnerability scans, field support on chopping block in Trump budget
React2Shell vulnerability helps hackers steal credentials, AI platform keys and other sensitive data
Olympic Games, FIFA World Cup offer huge platforms, rich cyberattack surface
Threat cluster launches extortion campaign using social engineering
Hims & Hers says limited data stolen in social engineering attack
Critical flaw in FortiClient EMS under exploitation
Threatpost
Student Loan Breach Exposes 2.5M Records
Watering Hole Attacks Push ScanBox Keylogger
Tentacles of ‘0ktapus’ Threat Group Victimize 130 Firms
Ransomware Attacks are on the Rise
Cybercriminals Are Selling Access to Chinese Surveillance Cameras
Twitter Whistleblower Complaint: The TL;DR Version
Firewall Bug Under Active Attack Triggers CISA Warning
Fake Reservation Links Prey on Weary Travelers
iPhone Users Urged to Update to Patch 2 Zero-Days
Google Patches Chrome’s Fifth Zero-Day of the Year
The Register
'Several dozen' high-value corporations hit by new extortion crew in helpdesk phishing spree
Chevin pulls the handbrake on FleetWave software after security scare
Months-old Adobe Reader zero-day uses PDFs to size up targets
Microsoft locks out VeraCrypt and WireGuard devs, blames verification process
Security researchers tricked Apple Intelligence into cursing at users. It could have been a lot worse
Zephyr Energy loses £700K in cyber hit that rerouted contractor payment
Sticky-note security turned gym into hall of '80s horrors
Cryptographers place $5,000 bet whether quantum will matter
Criminal wannabes even more dangerous than the pros, says ex-FBI cyber chief
Dutch healthcare software vendor goes dark after ransomware attack
VentureBeat
AI agents that automatically prevent, detect and fix software issues are here as NeuBird AI launches Falcon, FalconClaw
Closing the data security maturity gap: Embedding protection into enterprise workflows
OCSF explained: The shared data language security teams have been missing
In the wake of Claude Code's source code leak, 5 actions enterprise security leaders should take now
Hackers slipped a trojan into the code library behind most of the internet. Your team is probably affected
CrowdStrike, Cisco and Palo Alto Networks all shipped agentic SOC tools at RSAC 2026 — the agent behavioral baseline gap survived all three
OpenClaw has 500,000 instances and no enterprise kill switch
TechCrunch
Hacker stole £700,000 from U.K. energy company by redirecting payment
WireGuard VPN developer can’t ship software updates after Microsoft locks account
Hack-for-hire group caught targeting Android devices and iCloud backups
Hackers steal and leak sensitive LAPD police documents
Developer of VeraCrypt encryption software says Windows users may face boot-up issues after Microsoft locked his account
Final 3 days to save up to $500 on your TechCrunch Disrupt 2026 pass
Iranian hackers are targeting American critical infrastructure, US agencies warn
Anthropic debuts preview of powerful new AI model Mythos in new cybersecurity initiative
Russian government hackers broke into thousands of home routers to steal passwords
Trump administration plans to cut cybersecurity agency’s budget by $700 million
Network World Security
Lumen: Upstream network visibility is enterprise security’s new front line
Yael Nardi joins Minimus as Chief Business Officer to head growth strategy
Nvidia Rubin GPUs may be delayed, slowing the next phase of AI infrastructure
What is AI networking? How it adds intelligence to your infrastructure
Aria Networks raises $125M and debuts its approach for AI-optimized networks
Top network and data center events of 2026
Cisco: Latest news and insights
Yael Nardi joins Minimus as Chief Business Officer to drive hyper-growth
Intel bets on Terafab to help it reassert itself in the AI chip race
New v2 UALink specification aims to catch up to NVLink
Help Net Security
Claude Managed Agents bring execution and control to AI agent workflows
113,000 explicit prompts from AI girlfriend platform exposed, many linked to user IDs
Claude helps researcher dig up decade-old Apache ActiveMQ RCE vulnerability (CVE-2026-34197)
Mallory brings contextual threat intelligence to security operations
OPSWAT adds predictive AI engine to MetaDefender for pre-execution threat detection
Acrobat Reader zero-day exploited in the wild for many months
Intruder expands cloud security with agentless container image scanning
Advenica’s File Scanner Kiosk scans USB media for malware
WhatsApp brings long-awaited privacy feature to filter who can reach you
Meta’s Muse Spark takes AI a step closer to personal superintelligence
SC Magazine
5 ways to mitigate the risks of “cracked” software
Sensitive LAPD documents reportedly leaked online by World Leaks
Chaos malware evolves to target cloud misconfigurations
Dutch healthcare software vendor ChipSoft hit by ransomware attack
Masjesu botnet: Stealthy DDoS-for-hire service targets IoT devices
Atomic Stealer malware abuses macOS Script Editor in new ClickFix attack
Claude Mythos Preview identifies 27-year-old bug, finds 'thousands' of zero-days in weeks
Rethinking Linux security operations
Report highlights automation, NHI security risks
Over 21K Wynn Resorts employees affected by breach
© 2026 RiskDiscovery | Sponsored by: Deception Logic