[ News | Newsletters | Blogs | Reddits | Lists | Media | Jobs ] HoneyDB
DarkReading
Cyberattackers Target LastPass, Top Password Managers
Leaks in Microsoft VS Code Marketplace Put Supply Chain at Risk
China Hackers Test AI-Optimized Attack Chains in Taiwan
LevelBlue Announces Plans to Acquire XDR Provider Cybereason
'Mysterious Elephant' Moves Beyond Recycled Malware
F5 BIG-IP Environment Breached by Nation-State Actor
Harvard University Breached in Oracle Zero-Day Attack
Africa Remains Top Global Target, Even as Attacks Decline
Microsoft Drops Terrifyingly Large October Patch Update
China's Flax Typhoon Turns Geo-Mapping Server into a Backdoor
Ars Technica
Ars Live recap: Is the AI bubble about to pop? Ed Zitron weighs in.
Thousands of customers imperiled after nation-state ransacks F5’s network
Anthropic’s Claude Haiku 4.5 matches May’s frontier model at fraction of cost
ChatGPT erotica coming soon with age verification, CEO says
Feds seize $15 billion from alleged forced labor scam built on “human suffering”
Nvidia sells tiny new computer that puts big AI on your desktop
OpenAI wants to stop ChatGPT from validating users’ political views
Hackers can steal 2FA codes and private messages from Android phones
Why Signal’s post-quantum makeover is an amazing engineering achievement
Microsoft warns of new “Payroll Pirate” scam stealing employees’ direct deposits
CyberScoop
Why the web-hosting industry needs a trust seal
PowerSchool hacker sentenced to 4 years in prison
CISA warns of imminent risk posed by thousands of F5 products in federal agencies
F5 discloses breach tied to nation-state threat actor
Swalwell seeks answers from CISA on workforce cuts
Researchers find a startlingly cheap way to steal your secrets from space 
Microsoft’s Patch Tuesday fixes 175 vulnerabilities, including two actively exploited zero-days
Officials crack down on Southeast Asia cybercrime networks, seize $15B
LevelBlue to acquire Cybereason in latest cybersecurity industry consolidation
Flax Typhoon can turn your own software against you
HITBSecNews
Found on VirusTotal: The world’s first UEFI bootkit for Linux
OpenAI is at war with its own Sora video testers following brief public leak
North Korean hackers posing as IT workers steal over $1B in cyberattack
WhatsApp: NSO Group Operates Pegasus Spyware for Customers
Korea extradites Russian, Vietnamese suspects linked to $16M ransomware scheme
CISA Director Jen Easterly, in Place Since 2021, to Step Down
Man sick of crashes sues Intel for allegedly hiding CPU defects
North Korean hackers target cryptocurrency with malware
Law enforcement operation takes down 22,000 malicious IP addresses worldwide
Youth of today say passwords are old news, passkeys are the future
ZDNet
Best Buy will sell you a Google Pixel Watch for $210 off right now - how to redeem it ASAP
Is a $300 Windows laptop worth buying? This Acer model gave me a resounding yes
On Android 16? Your phone has 2 critical security upgrades - enable them ASAP
Your car's USB port has 5 underrated superpowers you need to try
More than half of new content is AI-generated now, report finds
I've tested every Garmin smartwatch so far in 2025 - here's the one I keep on my wrist
Claude now integrates directly with Microsoft 365
I finally found a thermal camera that works for both iPhone and Android (for only $129)
New deadline: Claim up to $7,500 from AT&T's $177M data breach payouts - here's how
Microsoft said my PC can't run Windows 11, but I upgraded in 5 minutes anyway - here's how
The Hacker News
North Korean Hackers Use EtherHiding to Hide Malware Inside Blockchain Smart Contracts
Hackers Abuse Blockchain Smart Contracts to Spread Malware via Infected WordPress Sites
LinkPro Linux Rootkit Uses eBPF to Hide and Activates via Magic TCP Packets
Architectures, Risks, and Adoption: How to Assess and Choose the Right AI-SOC Platform
Hackers Deploy Linux Rootkits via Cisco SNMP Flaw in "Zero Disco' Attacks
Beware the Hidden Costs of Pen Testing
ThreatsDay Bulletin: $15B Crypto Bust, Satellite Spying, Billion-Dollar Smishing, Android RATs & More
CISA Flags Adobe AEM Flaw with Perfect 10.0 Score — Already Under Active Attack
Chinese Threat Group 'Jewelbug' Quietly Infiltrated Russian IT Network for Months
F5 Breach Exposes BIG-IP Source Code — Nation-State Hackers Behind Massive Intrusion
BleepingComputer
Auction giant Sotheby’s says data breach exposed customer information
Have I Been Pwned: Prosper data breach impacts 17.6 million accounts
Hackers exploit Cisco SNMP flaw to deploy rootkit on switches
Microsoft disrupts ransomware attacks targeting Teams users
Microsoft: Office 2016 and Office 2019 have reach end of support
Gladinet fixes actively exploited zero-day in file-sharing software
CISA: Maximum-severity Adobe flaw now exploited in attacks
Unified Exposure Management Platforms: The Future of Preemptive Cyber Defense
North Korean hackers use EtherHiding to hide malware on the blockchain
Microsoft debuts Copilot Actions for agentic AI-driven Windows tasks
Cybersecurity Dive
Many IT leaders click phishing links, and some don’t report them
Auto sector faces historic cyber threats to business continuity
Nation-state hackers breached sensitive F5 systems, stole customer data
CISA’s latest cuts reignite concerns among Democratic lawmakers
Fortune 100 firms accelerate disclosures linked to AI, cybersecurity risk
Layoffs, reassignments further deplete CISA
SonicWall SSLVPN devices compromised using valid credentials
SonicWall investigation shows hackers gained wide access to customer backup files
Oracle E-Business Suite exploitation traced back as early as July
Risk mitigation budgets swell as enterprise AI adoption grows
Threatpost
Student Loan Breach Exposes 2.5M Records
Watering Hole Attacks Push ScanBox Keylogger
Tentacles of ‘0ktapus’ Threat Group Victimize 130 Firms
Ransomware Attacks are on the Rise
Cybercriminals Are Selling Access to Chinese Surveillance Cameras
Twitter Whistleblower Complaint: The TL;DR Version
Firewall Bug Under Active Attack Triggers CISA Warning
Fake Reservation Links Prey on Weary Travelers
iPhone Users Urged to Update to Patch 2 Zero-Days
Google Patches Chrome’s Fifth Zero-Day of the Year
The Register
Vulnerability scores, huh, what are they good for? Almost nothing
Chinese cyberspies snoop on Russian IT biz in rare east-on-east attack
Locked out of your Gmail account? Google says phone a friend
Microsoft kills 9.9-rated ASP.NET Core bug – 'our highest ever' score
Senator presses Cisco over firewall flaws that burned US agency
Auction house Sotheby's finds its data on the block after cyberattack
Tech industry grad hiring crashes 46% as bots do junior work
Machine learning meets malware: how AI-powered ransomware could destroy your business
Devs are writing VS Code extensions that blab secrets by the bucketload
Capita fined £14M after 58-hour delay exposed 6.6M records
VentureBeat
Microsoft launches 'Hey Copilot' voice assistant and autonomous agents for all Windows 11 PCs
Visa just launched a protocol to secure the AI shopping boom — here’s what it means for merchants
Weaponized AI can dismantle patches in 72 hours — but Ivanti's kernel defense can help
MCP stacks have a 92% exploit probability: How 10 plugins became enterprise security's biggest blind spot
Stopping breaches at machine speed demands agents, not alerts
SOC teams face 51-second breach reality—Manual response times are officially dead
Why identity-first security is the first defense against sophisticated AI-powered social engineering
AI sharpens threat detection — but could it dull human analyst skills?
Legacy UI is dead: Shadow AI is how real work gets done now
CrowdStrike bets on agentic workforces to outpace AI-driven adversaries
TechCrunch
Amazon’s Ring to partner with Flock, a network of AI cameras used by ICE, feds, and police
Cyber giant F5 Networks says government hackers had ‘long-term’ access to its systems, stole code and customer data
Satellites found exposing unencrypted data, including phone calls and some military comms
Homeland Security reassigns ‘hundreds’ of CISA cyber staffers to support Trump’s deportation crackdown
Spyware maker NSO Group confirms acquisition by US investors
Discord data breach affects at least 70,000 users
Italian businessman’s phone reportedly targeted with Paragon spyware
‘Dozens’ of organizations had data stolen in Oracle-linked hacks
Here’s the tech powering ICE’s deportation crackdown 
ICE bought vehicles equipped with fake cell towers to spy on phones 
Network World Security
Nvidia, Infineon partner for AI data center power overhaul
BlackRock’s $40B data center deal opens a new infrastructure battle for CIOs
Meta details cutting-edge networking technologies for AI infrastructure
Arm joins Open Compute Project to build next-generation AI data center silicon
The business case for microsegmentation: Lower insurance costs, 33% faster ransomware response
Oracle’s big bet for AI: Zettascale10
Three options for wireless power in the enterprise
IBM unveils advanced quantum computer in Spain
Q&A: IBM’s Mikel Díez on hybridizing quantum and classical computing
Nvidia’s DGX Spark desktop supercomputer is on sale now, but hard to find
Help Net Security
“Perfect” Adobe Experience Manager vulnerability is being exploited (CVE-2025-54253)
Veeam launches Data Cloud for MSPs to simplify Microsoft 365 and Entra ID protection
Cayosoft Guardian Protector safeguards Microsoft 365 and hybrid identity systems
When trusted AI connections turn hostile
Identifying risky candidates: Practical steps for security leaders
Everyone wants AI, but few are ready to defend it
Humanoid robot found vulnerable to Bluetooth hack, data leaks to China
The password problem we keep pretending to fix
ImmuniWeb expands discovery with ASM and Dark web packages
F5 data breach: “Nation-state attackers” stole BIG-IP source code, vulnerability info
InfoSecurity Magazine
New Rootkit Campaign Exploits Cisco SNMP Flaw to Gain Persistence
AI Attacks Surge as Microsoft Process 100 Trillion Signals Daily
LastPass Warns Customers It Has Not Been Hacked Amid Phishing Email Scam
Over 23 Million Victims Hit by Data Breaches in Q3
F5 Reveals Nation State Breach and Urges Immediate Patching
Flaw in Slider Revolution Plugin Exposed 4m WordPress Sites
Whisper 2FA Behind One Million Phishing Attempts Since July
Last Windows 10 Patch Tuesday Features Six Zero-Days
Capita Fined £14m After 2023 Breach that Hit 6.6 Million People
UK, US Sanction Southeast Asia-Based Online Scam Network
© 2025 RiskDiscovery | Sponsored by: Deception Logic