[ News | Newsletters | Blogs | Lists | Media | Jobs ] HoneyDB
DarkReading
Operation Red Card 2.0 Leads to 651 Arrests in Africa
Attackers Now Need Just 29 Minutes to Own a Network
Lazarus Group Picks a New Poison: Medusa Ransomware
As Cybersecurity Firms Chase AI, VC Market Skyrockets
Spitting Cash: ATM Jackpotting Attacks Surged in 2025
More Than Dashboards: AI Decisions Must Be Provable
Iran's MuddyWater Targets Orgs With Fresh Malware as Tensions Mount
Enigma Cipher Device Still Holds Secrets for Cyber Pros
600+ FortiGate Devices Hacked by AI-Armed Amateur
Attackers Use New Tool to Scan for React2Shell Exposure
Ars Technica
Password managers' promise that they can't see your vaults isn't always true
Most VMware users still "actively reducing their VMware footprint," survey finds
Retraction: After a routine code rejection, an AI agent published a hit piece on someone by name
OpenAI sidesteps Nvidia with unusually fast coding model on plate-sized chips
Attackers prompted Gemini over 100,000 times while trying to clone it, Google says
Once-hobbled Lumma Stealer is back with lures that are hard to resist
OpenAI researcher quits over ChatGPT ads, warns of "Facebook" path
Sixteen Claude AI agents working together created a new C compiler
Malicious packages for dYdX cryptocurrency exchange empties user wallets
AI companies want you to stop chatting with bots and start managing them
CyberScoop
Ex-L3Harris executive sentenced to 87 months in prison for selling zero-day exploits to Russian broker
CrowdStrike says attackers are moving through networks in under 30 minutes
Anthropic accuses Chinese labs of trying to illicitly take Claude’s capabilities
Anthropic rolls out embedded security scanning for Claude 
Ukrainian sentenced to 5 years in prison for facilitating North Korean remote worker scheme
State Dept. official says post-quantum transition plans will outlive current leadership
FBI: Threats from Salt Typhoon are ‘still very much ongoing’
HHS burrows into identifying risks to health sector from third-party vendors
ONCD official says Trump administration aims to bolster AI use for defense without increasing risk
The Caracas operation suggests cyber was part of the plan – just not the whole operation
InfoSecurity Magazine
Cost of Insider Incidents Surges 20% to Nearly $20m
Multifaceted Phishing Scheme Deceives Bitpanda Customers
North Korean Lazarus Group Expands Ransomware Activity With Medusa
AI Accelerates Attacker Breakout Time to Just Four Minutes
Chinese AI Firms Hit Claude with Distillation Attacks, Anthropic Warns
AI-powered Cyber-Attacks Up Significantly in the Last Year, Warns CrowdStrike
Shai-Hulud-Like Worm Targets Developers via npm and AI Tools
Fraud Investigation Reveals Sophisticated Python Malware
Russian Cyber Threat Actor Uses GenAI to Compromise Fortinet Firewalls
Leading Semiconductor Supplier Advantest Hit by Ransomware Attack
SecurityWeek
‘Arkanix Stealer’ Malware Disappears Shortly After Debut
VMware Aria Operations Vulnerability Could Allow Remote Code Execution
CISO Conversations: Timothy Youngblood; 4x Fortune 500 CISO/CSO
New ‘Sandworm_Mode’ Supply Chain Attack Hits NPM
GitHub Issues Abused in Copilot Attack Leading to Repository Takeover
Taiwan Security Firm Confirms Flaw Flagged by CISA Likely Exploited by Chinese APTs
Anonymous Fénix Members Arrested in Spain
US Healthcare Diagnostic Firm Says 140,000 Affected by Data Breach
Ukrainian Gets 5 Years in US Prison for Aiding North Korean IT Fraud
Autonomous AI Agents Provide New Class of Supply Chain Attack
ZDNet
One of my old favorite Linux distros is back - and it's still a great Windows escape
90% of sales teams use AI agents - but half of them have the same data problem
HDR10+ vs. Dolby Vision: Which popular TV format works better for your home?
12+ iPhone settings you can change to noticeably improve its battery life (iOS 26 and older)
How to get more iPhone storage almost immediately - 8 simple ways (and most are free)
I went hands-on with Snap's new smart glasses - they're no Meta Ray-Bans (yet)
Own a Fire TV? Changing these 10 settings made my system run like new again
Sonos vs. Samsung: I compared sound systems from both brands, and it's pretty darn close
10 useful cables and connectors I use everyday (and they're affordably priced)
Your Chrome browser just got a useful tab split-view mode - along with other upgrades
The Hacker News
CISA Confirms Active Exploitation of FileZen CVE-2026-25108 Vulnerability
RoguePilot Flaw in GitHub Codespaces Enabled Copilot to Leak GITHUB_TOKEN
UAC-0050 Targets European Financial Institution With Spoofed Domain and RMS Malware
Identity Prioritization isn't a Backlog Problem - It's a Risk Math Problem
Lazarus Group Uses Medusa Ransomware in Middle East and U.S. Healthcare Attacks
UnsolicitedBooker Targets Central Asian Telecoms With LuciDoor and MarsSnake Backdoors
Anthropic Says Chinese AI Firms Used 16 Million Claude Queries to Copy Model
APT28 Targeted European Entities Using Webhook-Based Macro Malware
Wormable XMRig Campaign Uses BYOVD Exploit and Time-Based Logic Bomb
⚡ Weekly Recap: Double-Tap Skimmers, PromptSpy AI, 30Tbps DDoS, Docker Malware & More
BleepingComputer
Windows 11 KB5077241 update improves BitLocker, adds Sysmon tool
Phishing campaign targets freight and logistics orgs in the US, Europe
Wynn Resorts confirms employee data breach after extortion threat
1Campaign platform helps malicious Google ads evade detection
CarGurus data breach exposes information of 12.4 million accounts
Microsoft adds Copilot data controls to all storage locations
Identity-First AI Security: Why CISOs Must Add Intent to the Equation
UK fines Reddit $19 million for using children’s data unlawfully
Critical SolarWinds Serv-U flaws offer root access to servers
ShinyHunters extortion gang claims Odido breach affecting millions
gbhackers
Android RAT SURXRAT Grants Hackers Full Device Control and Data Exfiltration
Threat Actors Exploit Apache ActiveMQ Vulnerability to Gain RDP Access, Deploy LockBit Ransomware
OAuth Vulnerabilities in Entra ID Could Exploit ChatGPT to Breach User Email Accounts
Microsoft Alerts Developers of Malicious Next.js Repositories Used in Ongoing Hacker Attacks
US Sanctions Exploit Brokers Behind Theft of Government Cyber Tools
Sendmarc Releases DMARCbis Fireside Chat Featuring Co-Editor Todd Herr
VMware Aria Flaws Enable Attackers to Execute Remote Code
Threat Actors Exploit Weaponized AI to Seize Full Domain Access in Under 30 Minutes
Cybercriminals Exploit Windows Management Instrumentation WMI to Maintain Stealthy Access and Silent Control
Massive Conduent Data Breach Exfiltrates 8 TB Affects Over 25 Million Americans
Cybersecurity Dive
In the AI era, CISOs worry about data leaks and doubt tech will solve skills gaps
Threat groups move at record speeds, as AI helps scale attacks
Hackers target vulnerabilities in Roundcube Webmail
AI helps novice threat actor compromise FortiGate devices in dozens of countries
AI vs. AI: Why cybersecurity’s new front line is behavioral intelligence
BeyondTrust Remote Support exploitation ramps up with backdoors, remote tools
US Treasury Department offers secure AI advice to financial services firms
Palo Alto Networks CEO sees AI as demand driver, not a threat
AI’s ‘connective tissue’ is woefully insecure, Cisco warns
Identity and supply chain need more attention, risk intelligence firm says
Threatpost
Student Loan Breach Exposes 2.5M Records
Watering Hole Attacks Push ScanBox Keylogger
Tentacles of ‘0ktapus’ Threat Group Victimize 130 Firms
Ransomware Attacks are on the Rise
Cybercriminals Are Selling Access to Chinese Surveillance Cameras
Twitter Whistleblower Complaint: The TL;DR Version
Firewall Bug Under Active Attack Triggers CISA Warning
Fake Reservation Links Prey on Weary Travelers
iPhone Users Urged to Update to Patch 2 Zero-Days
Google Patches Chrome’s Fifth Zero-Day of the Year
The Register
Threat intelligence supply chain is full of weak links, researchers find
AI has gotten good at finding bugs, not so good at swatting them
Patch these 4 critical, make-me-root SolarWinds bugs ASAP
North Korea's Lazarus Group targets healthcare orgs with Medusa ransomware
Go library maintainer brands GitHub's Dependabot a 'noise machine'
UK data watchdog fines Reddit £14.47M for letting kids slip past the gate
Korean cops charge teens over bike hire breach that exposed data on 4.62M riders
UK tech hit by double trouble: Fewer foreign techies amid skills squeeze
Euro allies aiming to rapidly build low-cost air defense weapons
Infosec community panics as Anthropic rolls out Claude code security checker
VentureBeat
Anthropic says DeepSeek, Moonshot, and MiniMax used 24,000 fake accounts to rip off Claude
Anthropic's Claude Code Security is available now after finding 500+ vulnerabilities: how security leaders should respond
Microsoft Copilot ignored sensitivity labels twice in eight months — and no DLP stack caught either one
How attackers hit 700 organizations through CX platforms your SOC already approved
Most ransomware playbooks don't address machine credentials. Attackers know it.
How to test OpenClaw without giving an autonomous agent shell access to your corporate laptop
Anthropic published the prompt injection failure rates that enterprise security teams have been asking every vendor for
TechCrunch
Former L3Harris Trenchant boss jailed for selling hacking tools to Russian broker
CarGurus data breach affects 12.5 million accounts
Treasury sanctions Russian zero-day broker accused of buying exploits stolen from US defense contractor
Marquis sues firewall provider SonicWall, alleges security failings with its firewall backup led to ransomware attack
Conduent data breach grows, affecting at least 25M people
Americans are destroying Flock surveillance cameras
VPN flaws allowed Chinese hackers to compromise dozens of Ivanti customers, says report
5 days left to lock in the lowest TechCrunch Disrupt 2026 ticket rates
6 days left to lock in the lowest TechCrunch Disrupt 2026 rates
7 days until ticket prices rise for TechCrunch Disrupt 2026
Network World Security
From packets to prompts: What Cisco’s AITECH certification means for IT pros
HPE’s latest Juniper routers target large‑scale AI fabrics
Nvidia: Latest news and insights
New Relic connects observability platform to business outcomes
2026 network outage report and internet health check
Nvidia lines up partners to boost security for industrial operations
Pure Storage becomes Everpure, acquires 1touch
Favorable Wi-Fi 7 prices won’t be around for long, Dell’Oro Group warns
Raising the temp on liquid cooling
Cisco and AT&T partner for 5G IoT services
Help Net Security
Cyber valuations climb as capital concentrates, AI security expands
Microsoft adds domain libraries and Copilot integration to the quantum development kit
Airline brands become launchpads for phishing, crypto fraud
Edge systems take the brunt of internet-wide exploitation attempts
Forescout VistaroAI replaces prompt engineering with role-based AI automation
Teenagers charged over public bike service breach that exposed 4.62 million records
Druva expands DruAI with autonomous agents for forensics and compliance
Veeam Agent Commander unifies AI risk detection, protection, and recovery
New Relic Agentic Platform brings governance and scale to AI agents
Aikido Infinite introduces continuous, self-remediating AI penetration testing
SC Magazine
Burger King France, Wendy's UK allegedly hacked, data leaked
Cyberattack disclosed by Air Cte d'Ivoire after INC ransomware claims
New York City transit union purportedly targeted by Qilin
About 140K compromised in Vikor Scientific breach
Vishing-related breach reported by Optimizely
Hacked US law firm sites tapped to spread various malware
Novel AI agent-powered crypto scam uncovered
Chinese AI labs accused by Anthropic of mining Claude
Missile strike guidance sought by Russian cyberattacks against Ukrainian power grid
New APT28 campaign hits Europe with macro malware
© 2026 RiskDiscovery | Sponsored by: Deception Logic