[ News | Newsletters | Blogs | Reddits | Lists | Media | Jobs ] HoneyDB
DarkReading
ClickFix Campaign Targets Hotels, Spurs Secondary Customer Attacks
'Landfall' Malware Targets Samsung Galaxy Users
'Ransomvibing' Infests Visual Studio Extension Market
Microsoft Backs Massive AI Push in UAE, Raising Security Concerns
AI Agents Are Going Rogue: Here's How to Rein Them In
AI Security Agents Get Persona Makeovers
Ollama, Nvidia Flaws Put AI Infrastructure at Risk
Sora 2 Makes Videos So Believable, Reality Checks Are Required
SonicWall Firewall Backups Stolen by Nation-State Actor
Multiple ChatGPT Security Bugs Allow Rampant Data Theft
Ars Technica
Researchers surprised that with AI, toxicity is harder to fake than intelligence
Wipers from Russia’s most cut-throat hackers rain destruction on Ukraine
Google says project on famous crab-covered island is about cables, not combat
5 AI-developed malware families analyzed by Google fail to work and are easily detected
OpenAI signs massive AI compute deal with Amazon
Two Windows vulnerabilities, one a 0-day, are under active exploitation
ChatGPT maker reportedly eyes $1 trillion IPO despite major quarterly losses
After teen death lawsuits, Character.AI will restrict chats for under-18 users
NPM flooded with malicious packages downloaded more than 86,000 times
Nvidia hits record $5 trillion mark as CEO dismisses AI bubble concerns
CyberScoop
Cyber information sharing law would get extension under shutdown deal bill
CISA’s expiration leaves a dangerous void in US cyber collaboration
Russian national pleads guilty to breaking into networks for Yanluowang ransomware attacks
Report: Government data mining has gone too far – and AI will make it worse
New Landfall spyware apparently targeting Samsung phones in Middle East
The quiet revolution: How regulation is forcing cybersecurity accountability
Agency that provides budget data to Congress hit with security incident
SonicWall pins attack on customer portal to undisclosed nation-state
Court reimposes original sentence for Capital One hacker 
With each cloud outage, calls for government action grow louder 
HITBSecNews
Found on VirusTotal: The world’s first UEFI bootkit for Linux
OpenAI is at war with its own Sora video testers following brief public leak
North Korean hackers posing as IT workers steal over $1B in cyberattack
WhatsApp: NSO Group Operates Pegasus Spyware for Customers
Korea extradites Russian, Vietnamese suspects linked to $16M ransomware scheme
CISA Director Jen Easterly, in Place Since 2021, to Step Down
Man sick of crashes sues Intel for allegedly hiding CPU defects
North Korean hackers target cryptocurrency with malware
Law enforcement operation takes down 22,000 malicious IP addresses worldwide
Youth of today say passwords are old news, passkeys are the future
ZDNet
T-Mobile will give you 4 free iPhone 17s right now - here's how it works
iPhone full of unknown texts? 4 ways to filter them out in iOS 26
Shop the 20+ best early Best Buy deals for Black Friday 2025
I fixed my desk's messy cable situation with this 12-in-1 dock - how it works
Why I replaced my Kindle with an iPad Mini for reading ebooks - and can't go back
My favorite E Ink tablet has a worthy successor - with upgrades in creative ways
M4 MacBook Air vs. M5 MacBook Pro: I compared both, and here's my buying advice
12 ways to find viruses on your PC for free (and how to remove them)
How to replace your deadbolt with a smart lock - and the one Apple users should buy
How to link your Android phone with a Windows PC to call, text, and share photos - instantly
The Hacker News
⚡ Weekly Recap: Hyper-V Malware, Malicious AI Bots, RDP Exploits, WhatsApp Lockdown and More
New Browser Security Report Reveals Emerging Threats for Enterprises
Large-Scale ClickFix Phishing Attacks Target Hotel Systems with PureRAT Malware
GlassWorm Malware Discovered in Three VS Code Extensions with Thousands of Installs
Microsoft Uncovers 'Whisper Leak' Attack That Identifies AI Chat Topics in Encrypted Traffic
Samsung Mobile Flaw Exploited as Zero-Day to Deploy LANDFALL Android Spyware
From Log4j to IIS, China’s Hackers Turn Legacy Bugs into Global Espionage Tools
Hidden Logic Bombs in Malware-Laced NuGet Packages Set to Detonate Years After Installation
Enterprise Credentials at Risk – Same Old, Same Old?
Google Launches New Maps Feature to Help Businesses Report Review-Based Extortion Attempts
BleepingComputer
5 reasons why attackers are phishing over LinkedIn
How to use the new Windows 11 Start menu, now rolling out
NAKIVO Introduces v11.1 with Upgraded Disaster Recovery and MSP Features
Lost iPhone? Don’t fall for phishing texts saying it was found
Dangerous runC flaws could allow hackers to escape Docker containers
OpenAI plans to release GPT-5.1, GPT-5.1 Reasoning, and GPT-5.1 Pro
GlassWorm malware returns on OpenVSX with 3 new VSCode extensions
Still on Windows 10? Enroll in free ESU before next week’s Patch Tuesday
Malicious NuGet packages drop disruptive 'time bombs'
Microsoft testing faster Quick Machine Recovery in Windows 11
Cybersecurity Dive
AI agents worsen IT’s capacity crunch: S&P Global
Cisco detects new attack variant targeting vulnerable firewalls
Conduent warns of further financial fallout from cyberattack
Nevada ransomware attack traced back to malware download by employee
Cyberattacks surge against IoT, mobile devices in critical infrastructure
In financial sector, vendors lag behind customers on cybersecurity
SonicWall says state-linked actor behind attacks against cloud backup service
Your AI-driven threat hunting is only as good as your data platform and pipeline
AI-based malware makes attacks stealthier and more adaptive
Hackers targeting Cisco IOS XE devices with BadCandy implant
Threatpost
Student Loan Breach Exposes 2.5M Records
Watering Hole Attacks Push ScanBox Keylogger
Tentacles of ‘0ktapus’ Threat Group Victimize 130 Firms
Ransomware Attacks are on the Rise
Cybercriminals Are Selling Access to Chinese Surveillance Cameras
Twitter Whistleblower Complaint: The TL;DR Version
Firewall Bug Under Active Attack Triggers CISA Warning
Fake Reservation Links Prey on Weary Travelers
iPhone Users Urged to Update to Patch 2 Zero-Days
Google Patches Chrome’s Fifth Zero-Day of the Year
The Register
Russian broker pleads guilty to profiting from Yanluowang ransomware attacks
Allianz UK joins growing list of Clop’s Oracle E-Business Suite victims
As AI enables bad actors, how are 3,000+ teams responding?
Cisco creating new security model using 30 years of data describing cyber-dramas and saves
Microsoft teases agents that become ‘independent users within the workforce’
Data breach at Chinese infosec firm reveals cyber-weapons and target list
Louvre's pathetic passwords belong in a museum, just not that one
Who's watching the watchers? This Mozilla fellow, and her Surveillance Watch map
Previously unknown Landfall spyware used in 0-day attacks on Samsung phones
Cybercrims plant destructive time bomb malware in industrial .NET extensions
VentureBeat
How Anthropic's Claude cuts SOC investigation time from 5 hours to 7 minutes
CrowdStrike & NVIDIA’s open source AI gives enterprises the edge against machine-speed attacks
Meet Aardvark, OpenAI’s security agent for code analysis and patching
Security's AI dilemma: Moving faster while risking more
Fortanix and NVIDIA partner on AI security platform for highly regulated industries
Your IT stack is the enemy: How 84% of attacks evade detection by turning trusted tools against you
When your AI browser becomes your enemy: The Comet security disaster
TechCrunch
Why a lot of people are getting hacked with government spyware
Washington Post confirms data breach linked to Oracle hacks
Congressional Budget Office confirms it was hacked
‘Landfall’ spyware abused zero-day to hack Samsung Galaxy phones
Italian political consultant says he was targeted with Paragon spyware
University of Pennsylvania confirms hacker stole data during cyberattack
Google gets the US government’s green light to acquire Wiz for $32B
Armis raises $435M pre-IPO round at $6.1B valuation after refusing M&A offers
Phone location data of top EU officials for sale, report finds
Lawmakers say stolen police logins are exposing Flock surveillance cameras to hackers
Network World Security
AWS launches ‘Capabilities by Region’ to simplify planning for cloud deployments
Google Cloud aims for more cost-effective Arm computing with Axion N4A
Google’s cheaper, faster TPUs are here, while users of other AI processors face a supply crunch
Top network and data center events 2025 & 2026
Network jobs watch: Hiring, skills and certification trends
Cisco launches AI infrastructure, AI practitioner certifications
Perplexity’s open-source tool to run trillion-parameter models without costly upgrades
Space: The final frontier for data processing
ZincFive targets AI data centers with new energy system
Arista shares Q3 financials, touts ‘golden era in networking’
Help Net Security
Download: Strengthening Identity Security whitepaper
Wi-Fi signals may hold the key to touchless access control
Adopting a counterintelligence mindset in luxury logistics
sqlmap: Open-source SQL injection and database takeover tool
How to adopt AI security tools without losing control
AI is rewriting how software is built and secured
Week in review: Cisco fixes critical UCCX flaws, November 2025 Patch Tuesday forecast
Attackers upgrade ClickFix with tricks used by online stores
Tufin Orchestration Suite R25-2 strengthens network, cloud, and SASE policy automation
November 2025 Patch Tuesday forecast: Windows Exchange Server EOL?
InfoSecurity Magazine
65% of Leading AI Companies Found With Verified Secrets Leaks
China-Aligned UTA0388 Uses AI Tools in Global Phishing Campaigns
New NCA Campaign Warns Men Off Crypto Investment Scams
NCSC Set to Retire Web Check and Mail Check Tools
Russian Hacking Group Sandworm Deploys New Wiper Malware in Ukraine
“I Paid Twice” Phishing Campaign Targets Booking.com
Multi-Turn Attacks Expose Weaknesses in Open-Weight LLM Models
Hacktivist-Driven DDoS Dominates Attacks on Public Sector
AI-Enabled Malware Now Actively Deployed, Says Google
Google Forecasts Rise of Cyber-Physical Attacks Targeting Europe in 2026
© 2025 RiskDiscovery | Sponsored by: Deception Logic