[ News | Newsletters | Blogs | Lists | Media | Jobs ] HoneyDB
DarkReading
[Virtual Event] Anatomy of a Data Breach: What to Do if it Happens to You
Infosecurity Europe
Cybersecurity Evolution: How We Went From Perimeter Defense to AI-Native Security
Feeding Frenzy: 'Megalodon' Malware Infects Thousands of GitHub Repos
State Cyber Leaders Beg Congress for More Funding, Support
The Hackers Behind Shai-Hulud: Lucky or Skilled?
For Enterprises, Security Remains Agentic AI's Biggest Challenge
Microsoft Issues Out-of-Band SharePoint Patch
Remembering Tim Wilson, Whose Legacy Lives on at Dark Reading
Akamai Joins Growing Chorus of Vendors Betting Big on Secure Enterprise Browsers
Ars Technica
Millions of AI agents imperiled by critical vulnerability in open source package
US's big bet on quantum computing may not be entirely legal
Texas AG sues Meta over claims that WhatsApp doesn't provide end-to-end encryption
A hacker group is poisoning open source code at an unprecedented scale
US government takes $2 billion equity stake in nine quantum computing firms
Google publishes exploit code threatening millions of Chromium users
In stunning display of stupid, secret CISA credentials found in public GitHub repo
Zero-day exploit completely defeats default Windows 11 BitLocker protections
Cisco announces record revenue and 4,000 layoffs in the same day
Linux bitten by second severe vulnerability in as many weeks
CyberScoop
CrowdStrike disrupts Glassworm botnet that preyed on open-source supply chain
Apple open-sources quantum-resistant encryption code
White House charts new course for federal agencies and cybersecurity logging
Anthropic: Mythos finds more than 10,000 software flaws in first month
FBI warns about fast-growing phishing kit targeting Microsoft 365 users
Alleged leader of Kimwolf, a sweeping botnet for cybercriminals, arrested in Canada
Lawmakers from both parties say CISA cuts have gone too far
Trump postpones executive order focused on AI security 
CISA chief frets about open-source vulnerabilities, delayed security improvements
European authorities take down prolific cybercrime VPN service
InfoSecurity Magazine
Infosecurity Europe: Why Burnout in Cybersecurity Demands Risk-Based Response
All Major LLMs Exposed to Multi-Turn Manipulation, Warn Researchers
Thousands of Fake FIFA Domains Target World Cup Fans
68% of UK Firms Plan to Increase Cyber Spending as AI Risks Rise
PureLogs Variant Steals Data via Purchase Order Lures
Chinese Threat Actors Ditch Static Phishing Pages for Live Credential Interception
BTMOB Android RAT Spreads Through No-Code Builder Tooling
India's CERT-In Sets 12-Hour Patch Deadline for Exposed Flaws
Iran-Linked Hackers Target US Aviation with Phishing and SEO Poisoning Campaign
FBI Warns 'Kali365' Phishing Kit Hijacks Microsoft 365 OAuth Tokens
SecurityWeek
SecurityWeek to Host AI Risk Summit August 11-12 at the Ritz-Carlton, Half Moon Bay
RevEng.AI Raises $15 Million to Hunt for Flaws and Backdoors in Software Binaries
Romanian Hacker Sentenced to Prison in US for Selling Access to State Network
Lastwall Raises $11.5 Million for Quantum-Resilient Identity Platform
The Credential Crisis: How Stolen Credentials Defeat Modern Security
‘SymJack’ Attack Turns AI Coding Agents Into Supply Chain Attack Delivery Systems
GlassWorm Botnet Disrupted
LA Metro Cyberattack Linked to Iranian State-Sponsored Hackers
FBI: Hackers Sending Operatives in Person to Insert USB Drives and Steal Data
CISA Urges Immediate Patching of Exploited LiteSpeed cPanel Plugin Zero-Day
ZDNet
Rust will save Linux from AI, says Greg Kroah-Hartman
When my eye doctor got my glasses prescription wrong, AI helped me fix it
Does Android Auto make your phone overheat? Try these 8 ways to cool it down
These 4 Android Auto settings made my daily commute less distracting - where to find them
I've tried so many Linux email clients - why Aerion just replaced Geary as my top pick
I was intrigued by Google's new video-cloning Omni AI - then I considered the implications
Bash vs. Fish? I've tried both Linux shells, and one makes using the command line much easier
I wore Google's Fitbit Air to track my health for a week, and it's a serious Whoop rival for less money
This 4TB WD Black SSD is nearly $1,200 off at Best Buy - and I'm vouching for it
I found the best Memorial Day phone deals, and it's your last chance to save big on a new device
The Hacker News
GlassWorm Malware Takedown Disrupts Developer Supply Chain Attack Infrastructure
5 Steps to Managing Shadow AI Tools Without Slowing Down Employees
Gitea Vulnerability Exposes Private Container Images without Authentication
AI Chatbot Recommendations Redirect Users to Cryptojacking Malware Sites
MuddyWater Uses DLL Side-Loading in Espionage Campaign Targeting 9 Countries
[THN Webinar] New AI DDoS Attacks Are Smarter. Learn How to Fight Back
Microsoft Patches SharePoint RCE Flaw CVE-2026-45659 Across Server Versions
MFA Prompt Bombing: Why Your Second Factor Isn't Saving You
CERT-In Recommends 12-Hour Patching for Internet-Facing Flaws Amid AI-Assisted Attacks
Iranian Hackers Deploy MiniFast and MiniJunk V2 via Phishing and SEO Poisoning
BleepingComputer
Glassworm botnet disrupted after resilient C2 infrastructure takedown
FBI warns of in-person data theft attacks from extortion gang
CISA gives feds 4 days to patch actively exploited cPanel plugin flaw
Dutch police arrests suspect linked to Ajax football club hack
Windows 11 KB5089573 update released with performance improvements
KnowledgeDeliver flaw exploited as a zero-day to install web shells
Charter confirms data breach after ShinyHunters extortion threat
How Varonis Atlas integrates Claude Compliance API for AI governance
Microsoft Defender can now automatically isolate hacked endpoints
Webinar: Too many tools are slowing network incident response
gbhackers
Link11 is fully committed to Europe and is opening a Customer Excellence Hub in Lisbon
BadHost Vulnerability Exposes Sensitive AI Agent Server Endpoints to Attackers
CISA Warns LiteSpeed cPanel Plugin Vulnerability Is Being Exploited in Attacks
BTMOB Malware Allows Cybercriminals to Remotely Hijack Android Phones
Windows Kernel Vulnerability Lets Attackers Modify Kernel Memory Counters
GitHub Enterprise Server 3.20.3 Addresses Critical Security Flaws
New Zero-Click WhatsApp Account Takeover Attack Targets iOS 16 Users
Hackers Exploit Shared CDN Edge IPs to Evade Protective DNS Filtering
Anthropic Launches Free Claude Code Terminal Plugin to Detect Security Vulnerabilities
Microsoft SharePoint Server Flaw Enables Remote Code Execution Attacks
Cybersecurity Dive
Iranian government, not hacktivist group, breached LA Metro system, security firm says
FBI warns about PhaaS platform used to access Microsoft 365 environments
Iran-linked hackers target key US, allied sectors with sophisticated spear-phishing messages
New York regulator calls for additional cyber mitigation amid heightened threat environment
CISA asks cybersecurity community to alert it to vulnerability exploitation
Grafana Labs links GitHub environment breach to TanStack npm supply chain attack
7-Eleven hit by data breach
Microsoft disrupts cybercrime operation that hid behind legitimate software
Compromised coding tool helped hackers breach thousands of GitHub repositories
Telecom sector launches its own private ISAC
Threatpost
Student Loan Breach Exposes 2.5M Records
Watering Hole Attacks Push ScanBox Keylogger
Tentacles of ‘0ktapus’ Threat Group Victimize 130 Firms
Ransomware Attacks are on the Rise
Cybercriminals Are Selling Access to Chinese Surveillance Cameras
Twitter Whistleblower Complaint: The TL;DR Version
Firewall Bug Under Active Attack Triggers CISA Warning
Fake Reservation Links Prey on Weary Travelers
iPhone Users Urged to Update to Patch 2 Zero-Days
Google Patches Chrome’s Fifth Zero-Day of the Year
The Register
How to guarantee a speaker gig: Hack the system. Literally
MyPillow must decide whether to be firm or soft as ransomware crims demand pay
Experts pour cold borscht on Farage's Russian hack claim
Anthropic to release Mythos-class models to the public
AI eyes scanning for bugs create a worrisome Linux security trend
A Russian speaker and jailbroken Gemini went on a hacking spree and emptied at least one MAGA victim's crypto wallets
Megalodon chums the waters in 5.5K+ GitHub repo poisonings
Techie claims Trump Mobile website was leaking thousands of people's data
Cisco used AI to write security incident reports, with mixed results
Dems slam Trump for making cybersecurity hold out the tin cup while splurging on ballroom and Jan. 6 'slush fund'
VentureBeat
The attack dominating financial services doesn't steal passwords. It resets MFA and steals the token.
Valid certificates, stolen accounts: how attackers broke npm's last trust signal
Americans can’t spot a deepfake, and that’s a business crisis, not just a consumer problem
MFA verifies who logged in. It has no idea what they do next.
GitHub confirms 3,800 internal repos stolen through poisoned VS Code extension as supply chain worm hits Microsoft’s Python SDK
Four AI supply-chain attacks in 50 days exposed the release pipeline red teams aren't covering
Agent authorization is broken — and authentication passing makes it worse
TechCrunch
UK Visa Portal spilled thousands of applicants’ passports and selfies online — and hasn’t fixed the leak
Dutch government blocks US company from acquisition, citing ‘risk to public interest’
Ghost hackers: the cybersecurity mystery that nobody has solved
Iranian hackers blamed for breach of Los Angeles transit system that took weeks to recover
7-Eleven data breach affects over 185,000 people’s personal data
These special phone and app features can help protect you from spyware
Kash Patel’s clothing brand website shut down after reports it was hacked
Trump Mobile confirms it exposed customers’ personal data, including phone numbers and home addresses
Law enforcement shuts down VPN service used by two dozen ransomware gangs
Scammers are abusing an internal Microsoft account to send spam links
Network World Security
Cisco research finds standard AI safety benchmarks miss the real threat
Cisco redefines ‘job-ready’ for network engineers with its certification overhaul
2026 network outage report and internet health check
IBM plans $2B quantum chip foundry; government will pay half
Cisco: AI traffic is radically reshaping WANs
xAI-Anthropic deal signals the rise of AI compute as a standalone business
Critical vulnerability in Cisco Secure Workload rated at maximum severity
Cisco’s new certs are a wake-up call for AI-era network engineers
Microsoft plans significant update to Windows Secure Boot
Forward launches Predict to take the guesswork out of network changes
Help Net Security
Claude now reviews and fixes vulnerabilities as you write code
Cogent targets exploit-to-remediation gap with new AI-powered security capabilities
Ping Identity advances agentic security with AI governance and trusted access
eSentire launches new Atlas AI Operatives for autonomous threat detection and response
Fake ChatGPT and Claude installers on GitHub are dropping Deno RAT malware
Apple makes its quantum-resistant encryption open source
Franklin Access adds three-layer security system to Wi-Fi routers
Jetico expands BestCrypt Data Shelter with zero-trust file access controls
AppOmni’s Marlin AI automates SaaS threat analysis, triage, and remediation at scale
Novee’s Agentic Fix turns validated exploits into fixes through AI coding agents
SC Magazine
Iranian threat group targets US aviation sector with AI-assisted ‘MiniFast’ backdoor
What Security Leaders Should Expect from RSAC - Joseph Blankenship - BSW #449
Novee launches Agentic Fix to automate vulnerability remediation
Formula 1 fans targeted by evolving scams, Bitdefender warns
AppOmni launches Marlin AI for autonomous SaaS security alert investigation
7AI Inc. launches PLAID ELITE, an AI-native security operations service
Fake AI tool websites used to steal developer data
Varonis integrates Claude AI compliance API into Atlas platform
ShinyHunters extorts Charter Communications after data breach
Iranian-backed hackers linked to Los Angeles transit system breach
© 2026 RiskDiscovery | Sponsored by: Deception Logic