[ News | Newsletters | Blogs | Lists | Media | Jobs ] HoneyDB
DarkReading
Dark Reading Celebrates 20 Years as a Leading Authority on Cybersecurity, Highlighting the People, Events, Ideas, and Technologies Shaping the Modern Risk Landscape
China's 'FamousSparrow' APT Nests in South Caucasus Energy Firm
LatAm Vibe Hackers Generate Custom Hacking Tools on the Fly
It's Patch Tuesday for Microsoft & Not a Zero-Day In Sight
Hugging Face Packages Weaponized With a Single File Tweak
20 Leaders Who Built the CISO Era: 2 Decades of Change
Worm Redux: Fresh Mini Shai-Hulud Infections Bite Supply Chain
FCC Softens Ban on Foreign-Made Routers
Tech Can't Stop These Threats — Your People Can
'Dirty Frag' Exploit Poised to Blow Up on Enterprise Linux Distros
Ars Technica
Linux bitten by second severe vulnerability in as many weeks
Chaos erupts as cyberattack disrupts learning platform Canvas amid finals
Mozilla says 271 vulnerabilities found by Mythos have "almost no false positives"
Ars Asks: Share your shell and show us your tricked-out terminals!
Widely used Daemon Tools disk app backdoored in monthlong supply-chain attack
Why Reddit blocked my daily visit to its mobile website
GameStop offers $56 billion for eBay, struggles to explain how it'll pay for it
Ubuntu infrastructure has been down for more than a day
The most severe Linux threat to surface in years catches the world flat-footed
Why a recent supply-chain attack singled out security firms Checkmarx and Bitwarden
CyberScoop
Weaponized AI: The new frontier of fraud and identity spoofing
Daybreak is OpenAI’s answer to the AI arms race in cybersecurity
‘Mini Shai-Hulud’ malware compromises hundreds of open-source packages in sprawling supply-chain attack
Major world economies spell out key elements of AI ‘ingredients list’
Microsoft addresses 137 vulnerabilities in May’s Patch Tuesday, including 13 rated critical
Google and Amnesty International teamed up to make it harder for spyware vendors to hide
AI is separating the companies built to scale from the ones built to sell
Instructure claims hackers returned stolen Canvas data after an extortion standoff
Google spotted an AI-developed zero-day before attackers could use it
The missing cybersecurity leader in small business
InfoSecurity Magazine
Canvas Owner Reaches Agreement With Cybercriminals After Ransomware Attack
Avada Builder Flaws Expose One Million WordPress Sites
Ransomware: Over Half of CISOs Would Consider Paying Ransom to Hackers
Global Cyber Agencies Issue New SBOMs for AI Guidance to Tackle AI Supply Chain Risks
UK Cybersecurity Market Expands to £14.7bn with Strong Growth in AI Security Firms
Microsoft Fixes 17 Critical Flaws in May Patch Tuesday
OpenAI Launches 'Daybreak' to Help Build Secure By Design Software
Mini Shai-Hulud Hits TanStack npm Packages
End‑to‑End Encrypted RCS Messaging Arrives Across iPhone and Android
Attackers Combine ClickFix With PySoxy Proxying to Maintain Persistence
SecurityWeek
Foxconn Confirms North American Factories Hit by Cyberattack
Microsoft, Palo Alto Networks Find Many Vulnerabilities by Using AI on Their Own Code
Sweet Security Launches Agentic AI Red Teaming to Counter ‘Mythos Moment’
Webinar Today: ROI for Cyber-Physical Security Programs
Government to Scrutinize Instructure Over Canvas Disruption, Data Breach
716,000 Impacted by OpenLoop Health Data Breach
Microsoft Patches Critical Zero-Click Outlook Vulnerability Threatening Enterprises
Fortinet, Ivanti Patch Critical Vulnerabilities
Chipmaker Patch Tuesday: Intel and AMD Patch 70 Vulnerabilities
Hundreds of Malicious Packages Force RubyGems to Suspend Registrations
ZDNet
Best Buy is selling last year's LG OLED TV for 50% off - and I can vouch for it
Googlebook looks promising, but one big laptop brand is conspicuously absent
Best Buy just slashed the price on this 8TB SanDisk SSD - and I'd recommend it
T-Mobile will give you $400 just for switching - here's how to qualify
Get Audible for 30 days totally free - here's how
Your TV's RS-232 port is a powerful automation tool - how to unlock it (and what it can do)
CachyOS vs. MX Linux: Are you seeking speed or stability in your distro?
What is digital transformation? Everything you need to know about how technology is changing business
Red Hat Desktop vs. Fedora Hummingbird: Which AI development Linux path is right for you?
How to learn Claude Code for free with Anthropic's AI courses - one took me just 20 minutes
The Hacker News
Microsoft's MDASH AI System Finds 16 Windows Flaws Fixed in Patch Tuesday
Azerbaijani Energy Firm Hit by Repeated Microsoft Exchange Exploitation
[Webinar] How Modern Attack Paths Cross Code, Pipelines, and Cloud
Most Remediation Programs Never Confirm the Fix Actually Worked
Microsoft Patches 138 Vulnerabilities, Including DNS and Netlogon RCE Flaws
GemStuffer Abuses 150+ RubyGems to Exfiltrate Scraped U.K. Council Portal Data
Android Adds Intrusion Logging for Sophisticated Spyware Forensics
New Exim BDAT Vulnerability Exposes GnuTLS Builds to Potential Code Execution
RubyGems Suspends New Signups After Hundreds of Malicious Packages Are Uploaded
New TrickMo Variant Uses TON C2 and SOCKS5 to Create Android Network Pivots
BleepingComputer
Windows BitLocker zero-day gives access to protected drives, PoC released
Webinar tomorrow: Why security alone won't stop modern attacks
Microsoft fixes BitLocker recovery issue only for Windows 11 users
Microsoft fixes Windows Autopatch bug installing restricted drivers
Foxconn confirms cyberattack claimed by Nitrogen ransomware gang
73 Seconds to Breach, 24 Hours to Patch: The Case for Autonomous Validation
Microsoft says some users can't install Office on Windows 365 devices
US govt seeks Instructure testimony on massive Canvas cyberattack
UK fines water supplier $1.3M for exposing data of 664k customers
Webinar: Fixing the gaps in network incident response
gbhackers
Microsoft Teams Vulnerability Allows Hackers to Perform Spoofing Attacks
Google Enhances Android Mobile Security with New AI-powered Protections
Microsoft Releases Cumulative Update for Windows 11, Version 25H2 and 24H2
ClickFix Evolves Using Decade-Old Open-Source Python SOCKS5 Proxy
Ransomware Gangs Use BYOVD and EDR Killers to Disable Security Tools
Infostealer Malware Fuels Corporate Breaches From Personal Devices
Q1 2026 Ransomware Attacks Hits 2,122 Orgs Amid Fewer, More Impactful Groups
Fake FinalShell and Xshell Sites Push Kong RAT Malware
Zoom Rooms and Workplace Flaws Expose Users to Elevated Access Attacks
Threat Actors Abuse Vercel AI Tools to Mass-Produce Realistic Phishing Sites
Cybersecurity Dive
Foxconn confirms cyberattack affecting some North American facilities
OpenAI launches Daybreak to combat cyber threats
Canvas owner reaches ‘agreement’ with threat actors after data breach
Guardrail Technologies launches Traffic Light for Code & AI™; first security technology to verify & secure AI code and the people creating it
Identity takes center stage as a leading factor in enterprise cyberattacks
AI and an absent government: Takeaways from RSAC 2026
Second Canvas data breach causes major disruptions for schools, colleges
AI used to develop working zero-day exploit, researchers warn
New cybersecurity industry coalition aims to lead US critical infrastructure protection
Identity is the new perimeter as rapid NHI proliferation threatens visibility and control
Threatpost
Student Loan Breach Exposes 2.5M Records
Watering Hole Attacks Push ScanBox Keylogger
Tentacles of ‘0ktapus’ Threat Group Victimize 130 Firms
Ransomware Attacks are on the Rise
Cybercriminals Are Selling Access to Chinese Surveillance Cameras
Twitter Whistleblower Complaint: The TL;DR Version
Firewall Bug Under Active Attack Triggers CISA Warning
Fake Reservation Links Prey on Weary Travelers
iPhone Users Urged to Update to Patch 2 Zero-Days
Google Patches Chrome’s Fifth Zero-Day of the Year
The Register
Mystery Microsoft bug leaker keeps the zero-days coming
Malware crew TeamPCP open-sources its Shai-Hulud worm on GitHub
Vietnam to develop domestic cloud so it can ditch risky overseas operators for government workloads
Doozy of a Patch Tuesday includes 30 critical Microsoft CVEs
Foxconn confirms cyberattack after ransomware crew claims it stole confidential Apple, Nvidia files
US bank reports itself after slinging customer data at 'unauthorized AI app'
Cache-poisoning caper turns TanStack npm packages toxic
Apple, Google drag cross-platform texting into the encrypted age
Japan’s PM orders cybersecurity review to stop Mythos going full CyberZilla
Double Canvas breach acknowledged as ShinyHunters sets new pay-or-leak deadline
VentureBeat
Protect your enterprise now from the Shai-Hulud worm and npm vulnerability in 6 actionable steps
Running Claude Code or Claude in Chrome? Here's the audit matrix for every blind spot your security stack misses
AI agents are running hospital records and factory inspections. Enterprise IAM was never built for them.
AI tool poisoning exposes a major flaw in enterprise agent security
5,000 vibe-coded apps just proved shadow AI is the new S3 bucket crisis
An AI agent rewrote a Fortune 50 security policy. Here's how to govern AI agents before one does the same.
Anthropic Skill scanners passed every check. The malicious code rode in on a test file.
TechCrunch
This is what some the world’s largest banks of malware look like stacked as hard drives
Ransomware hackers claim breach at Foxconn, a major electronics manufacturer for Apple, Google, and Nvidia
US lawmakers demand answers from Instructure after Canvas data breaches
Google launches new Android security feature to help uncover spyware attacks
US bank discloses security lapse after sharing customer data with AI app
Exaforce raises $125M Series B to build AI for catching and stopping cyberattacks as they happen
Instructure strikes deal with hackers who breached it twice
Poland says hackers breached water treatment plants, and the US is facing the same threat
US defense contractor who sold hacking tools to Russian broker ordered to pay $10M to former employers
Hackers deface school login pages after claiming another Instructure hack
Network World Security
Startup SPAN teams with Nvidia to put data center nodes in your backyard
Hard drive shortage affecting enterprise storage needs
Wi-Fi 8 is closer than you think. Here’s what you need to know
Cisco open-sources agentic AI security spec
HPE revamps private cloud stack for enterprises rethinking VMware
Versa takes aim at fragmented enterprise security with CSPM, orchestration update, and AI agent controls
Red Hat opens Ansible to AI agents, within limits
2026 network outage report and internet health check
Network jobs watch: Hiring, skills and certification trends
Red Hat offers endless Linux support — for a fee
Help Net Security
WhatsApp adds Incognito Chat for private Meta AI conversations
Signal responds to phishing attacks with new in-app security warnings
Tuskira’s Kairo exposes hidden AI-driven breach paths
Apricorn hardens ASK3 encrypted USB drive for extreme conditions
KDE gets over €1 million investment to strengthen security and core infrastructure
Microsoft’s agentic security system found four critical Windows RCE flaws
Versa CSPM brings continuous visibility to cloud risk and compliance exposure
NetSPI AI-powered Continuous Pentesting identifies high-impact vulnerabilities
Sandyaa: Open-source autonomous security bug hunter
The hidden risk of non-human identities in AI adoption
SC Magazine
Trusted by default: The npm attack pattern security teams miss
What zero-trust looks like for AI agents
Signal enhances security with new features to combat phishing attacks
Manifold Security expands supply chain intelligence to cover AI agent servers
AI cybersecurity startup Exaforce raises $125 million
Huntress and Acrisure launch simplified cyber insurance program
West Pharmaceutical Services hit by ransomware attack
Instructure reaches agreement with hackers after Canvas data breach
Škoda Auto discloses data breach after online shop hack
Community Bank customer data exposed via unauthorized AI software
© 2026 RiskDiscovery | Sponsored by: Deception Logic