[
News
|
Newsletters
|
Blogs
|
Lists
|
Media
|
Jobs
]
HoneyDB
DarkReading
'BusySnake' Infostealer Slithers into Critical Infrastructure Networks
CitrixBleed-ing Again? NetScaler Vulnerability Under Attack
JadePuffer: The First Complete LLM-Driven Ransomware Attack
Chinese LLMs Broaden the Gap Between Attackers & Defenders
Aussies Face Reduced Cybercrime Risk, as Pressure Shifts to SMBs
Apple Reverses Age-Old Patch Policy to Keep Up With AI
FortiBleed Actors Collaborating With Inc, Lynx Ransomware Gangs
Ransomware Thugs Masquerade as Interpol to Entice Small Biz
Anthropic's AI Finds Bugs. IBM Bets $5B It Can Fix Them.
Crafty Phishing Campaigns Auto-Adapt to Victim's Device, OS
Ars Technica
Newly discovered PamStealer isn't your typical macOS malware
T-Mobile moving tens of thousands of virtual machines off VMware amid lawsuit
New attack provides one more reason why AI browsers are a bad idea
US offers $10 million for info on group behind Signal and WhatsApp hacking spree
Notion killing Skiff-influenced email app since most users use AI agents instead
One-two punch delivered in global operation disrupts cybercrime "assembly line"
White House drastically shortens deadline for dropping quantum-vulnerable crypto
Oracle’s 21,000 layoffs help drive its debt-fueled AI investments
Following user outcry, AMD reinstates memory encryption in consumer CPUs
Microsoft discovers new lightweight backdoor that steals cryptocurrency
CyberScoop
US Army websites defaced with pro-Kurdish sentiments, insults to Trump
Sysdig clocks first documented case of agentic ransomware
Finding vulnerabilities was never the hard part
Someone infected a spyware probe overseer with spyware
Alleged longstanding member of Scattered Spider extradited to US
Researchers spot exploitation of another critical Oracle defect
US lifting export control restrictions on Anthropic’s Mythos, Fable
This phishing kit looks more like BEC-as-a-service
Citrix patches a new NetScaler flaw with echoes of CitrixBleed
Trump budget boss Russell Vought open to re-staffing CISA
InfoSecurity Magazine
New Iran-Nexus Hacking Group Targets Israel Government and IT Sectors
Indirect Prompt Injection in Web Content Targets AI Agents
Opera GX Flaw Let Sites Auto-Install Mods to Steal Data
NCA Issues Warning to Parents As Shared Child Photos Exploited by AI Tools
Researchers Claim First Fully Agentic Ransomware: JadePuffer
Qilin Dominates Ransomware Market Amid Growing Cybercrime Consolidation
Warning Over “Industrialized” Cyber-Attacks After Ransomware Gang Partners With TeamPCP
FBI, Google Take Down NetNut Proxy Network Used by Cyber Threat Actors
Researcher Behind 'Exploitarium' Explains Release of Undisclosed Zero-Day Exploits
Cybercriminals Pose as Interpol in Phishing Emails to Infect Victims With Ransomware
SecurityWeek
Blogspot-Hosted Payloads Delivered in ‘Veil#Drop’ Attacks
The Shift Toward Business-Aligned Risk Management
Armored Likho APT Targeting Government, Electric Power Entities
North Korean Hackers Target Open Source Developers in Supply Chain Attacks
Proof-of-Concept Exploit Released for Linux ‘Bad Epoll’ Root Access Vulnerability
Prompt Injection Attacks Trick AI Agents Into Making Crypto Payments
In Other News: Canadian Hacker Jailed, Open Source Zero-Days, Two Sentenced for ATM Jackpotting
Agentic AI Used to Conduct Ransomware Attack via Langflow
Medtronic Data Breach Impacts 3.8 Million People
Alleged Scattered Spider Hacker Extradited to US
ZDNet
How I deleted hundreds of old photos on my Android in seconds with the Sponge app - for free
How to make Zorin OS look like Windows 11 - for free
5 tiny Linux tools I can't live or work without
I compared Apple AirTags to competing Bluetooth trackers - including this $2 one
How I turned an old Android phone into my home internet backup solution - 3 methods
I sideloaded 3 apps into my Android Auto, and they've made my drives so much easier
I tested the new Claude Desktop on Linux - here's how it compares to rival apps
I'm recommending this 14-inch HP laptop to almost everyone in 2026 - even with the RAM crisis
Want to convince a Windows user to try Linux? Here's how I do it
Installing plug-in solar at home? Watch for these 6 expert-backed safety concerns
The Hacker News
BeyondTrust Patches Critical Auth Bypass Flaws in Remote Support and PRA
Iran-Linked Hackers Use New Cavern C2 Framework to Target Israeli Organizations
16-Year-Old Linux KVM Flaw Lets Guest VMs Escape to Host on Intel and AMD x86 Systems
Threat Actors Probe Gitea Docker Flaw CVE-2026-20896 13 Days After Disclosure
⚡ Weekly Recap: Proxy Botnets, Browser Ransomware, AI Agent Tricks, Fake PoC Malware and More
How to Evaluate an AI SOC Platform in 2026: 6 Capabilities That Separate Leaders from Bolt-On AI solutions
Suspected China-Nexus Hackers Use Fake Indian Tax Filing Utility to Deploy DcRAT
New TrojPix Attack Leaks Data From Air-Gapped Systems via Video Cable Emissions
New Java-Based QuimaRAT MaaS Built to Run on Windows, Linux, and macOS
Opera GX Flaw Let Malicious Sites Auto-Install Mods to Steal Data From Visited Pages
BleepingComputer
Phishing poses as big-brand job interview to steal Google accounts
Fake IT support calls on Microsoft Teams push EtherRAT malware
Vietnam arrests suspects behind HiAnime anime piracy service
Software Is Now Written at the Speed of Thought. Security Isn't.
Max severity Adobe ColdFusion flaw now exploited in attacks
Flipper Zero firmware development continues with community help
JadePuffer ransomware used AI agent to automate entire attack
NetNut proxy network disrupted, 2 million infected devices cut off
ARToken PhaaS exposes EvilTokens' Microsoft 365 phishing toolkit
Claude Fable 5 isn’t permanently leaving subscriptions, Anthropic says
gbhackers
Windows Device ID Helped Authorities Track Scattered Spider Hacking Group Member
Hackers Abuse Cross-Tenant Teams Chat to Deliver EtherRAT Through Malicious MSI Loader
Critical BeyondTrust Authentication Flaws Expose Remote Support Appliances to Attacks
Google Gemini Live API Flaw Allows RCE via Unconstrained Ephemeral Tokens
Cavern Manticore Malware Uses Low-Detection .NET Modules for Reconnaissance and Lateral Movement
Microsoft Edge High-Severity Vulnerability Allows Remote Code Execution
Insignary Closes SBOM Accuracy Gap With Binary-Level Clarity for Regulatory Risk
Hackers Use Trusted Microsoft Domain and One-Time Codes to Hijack Corporate Accounts
Veeam Backup BinaryFormatter Flaw Enables Remote Code Execution
Go-Based Gentlemen Ransomware Uses PsExec, WMIC, and PowerShell Remoting for Network Propagation
Cybersecurity Dive
Alleged member of Scattered Spider extradited to US
Why schools are easy prey for hackers — and why they struggle to fight back
The security leaders defining the next decade aren’t in CISO seats yet
FortiBleed campaign traced to INC and Lynx ransomware operations
Most cybersecurity workers have been told to conceal a breach, report finds
Critical flaw in Oracle E-Business Suite is under immediate threat
Anthropic reactivates Fable, Mythos after securing government approval
Critical flaw in SimpleHelp exploited in attacks targeting sensitive credentials
DHS proposes new system for public-private infrastructure security collaboration
Insurance body confirms hackers posted Oracle PeopleSoft breach data
Threatpost
Student Loan Breach Exposes 2.5M Records
Watering Hole Attacks Push ScanBox Keylogger
Tentacles of ‘0ktapus’ Threat Group Victimize 130 Firms
Ransomware Attacks are on the Rise
Cybercriminals Are Selling Access to Chinese Surveillance Cameras
Twitter Whistleblower Complaint: The TL;DR Version
Firewall Bug Under Active Attack Triggers CISA Warning
Fake Reservation Links Prey on Weary Travelers
iPhone Users Urged to Update to Patch 2 Zero-Days
Google Patches Chrome’s Fifth Zero-Day of the Year
The Register
EU urged to act after Pegasus infects phone of spyware inquiry MEP
Brit supermarket giant triples down on facial recog to nab shoplifters
Moody Bible Institute breach leaves 2.3M accounts needing salvation, says cyber expert
Secure Unix ancestor KSOS did type safety before Rust made it cool
MFA-optional banks leave safe doors (and accounts) wide open for thieves to pillage
Confidential computing's core trust mechanism is broken. The fix may not exist
AdaptHealth says attackers sweet-talked their way into cloud systems and stole patient data
NetNut cracked as Google and FBI target 2 million-device botnet
User swore hacker called General Failure had invaded his PC
Dev says Google warned him about account hijack – then charged him $11,000 anyway
VentureBeat
Digital resilience compounds when AI and human expertise scale together
The attack that hijacked Claude Code came through Sentry. Datadog, PagerDuty, and Jira have the same exposure.
Prompt injection is exploiting enterprise AI's biggest design flaws by targeting agents, RAG pipelines and model routers
Autonomous security agents need complete data. Here's how to check if yours is ready.
Frontier AI is rewriting the economics of software supply chain security
Visa will offer an inside look at Project Glasswing and how the most powerful agentic models are changing enterprise security at VB Transform 2026
7,000 Langflow servers are under attack. LangGraph and LangChain have the same holes
TechCrunch
The ‘first’ AI-run ransomware attack still needed a human
Canadian spy agency says it hacked drug traffickers, extremists, and a ransomware gang last year
Alibaba reportedly bans employees from using Claude Code
Politician who investigated spyware abuses had his phone hacked with Pegasus spyware
US government says it got hacked — again
In major privacy win, Supreme Court rules geofence warrants are protected by privacy rights
Russian hackers were behind $2.5B hack of Jaguar Land Rover: Report
Polymarket says hackers stole users’ funds
Hacked Klue says criminals are deleting stolen customer data, but now other hackers are making threats
Cellebrite said it cut off Russia, but Russia used its tools anyway
Network World Security
Network evolution for the Agentic AI era
Meta reuses old RAM in new servers with custom bridge chip
Cloud sovereignty: First four providers sign up to CISPE certification program
Cheap Chinese chips could offer way out of RAM price crisis, Apple suggests
Cisco details Live Protect’s real-time threat mitigation capabilities
What Meta, Oracle moves say about data center economics
Network jobs watch: Hiring, skills and certification trends
Kyndryl: AI success hinges on workforce readiness
Netgear brings AI-driven network management to SMEs and MSPs
2026 network outage report and internet health check
Help Net Security
Researchers make the case for a cybersecurity AI scientist
Review: Building Machine Learning Systems with a Feature Store
Your company already adopted AI and nobody is governing access
Apple Container: Open-source tool for Linux containers on the Mac
Microsoft wants to keep your AI agents from going rogue
Power shortages could slow AI data center expansion
Cybersecurity jobs available right now: July 7, 2026
Criminal IP integrates threat intelligence with OpenCTI for automated indicator enrichment
LTM’s BlueVerse RightLogic combines AI risk assessment with cyber remediation planning
OpenSSH 10.4 arrives with security fixes and a post-quantum signature option
SC Magazine
'Bad Epoll' vulnerability allows root access on Linux and Android
U.S. Army websites defaced in apparent 404 hijacking campaign
Iranian hackers use new modular C2 framework against Israeli organizations
NatWest CEO targeted in AI deepfake scam
Sainsbury's expands facial recognition use to combat shoplifting
7 arrested in Vietnam for operating large anime piracy site HiAnime
Microsoft Teams allows users to turn off AI features
Canada's spy agency conducted state-authorized cyberattacks against drug traffickers and ransomware gangs
Moody Bible Institute data breach exposes 2.3 million individuals
Washington state CISO Ralph Johnson to step down in September
© 2026 RiskDiscovery | Sponsored by:
Deception Logic