[ News | Newsletters | Blogs | Lists | Media | Jobs ] HoneyDB
DarkReading
Stressors, AI Forcing Changes to Cybersecurity Teams
Novo Nordisk Breach Exposes Software Development Pipeline Risk
Operation Escaneo Signals Shift in LatAm Threat Landscape
FIFA Bug Exposes World Cup Streams to Remote Takeover
Salesforce Data Thefts Continue via Klue App Compromise
Get Out of Security Debt by Tackling the Exposure Problem
EU Gets a Head Start in Developing 6G Network Security
INC Ransomware Thrives by Mastering the Basics
Sweeping Credential-Harvesting Heist Compromises 30K+ Fortinet Devices
UK Social Media Ban for Minors Has Privacy Experts Worried
Ars Technica
Microsoft discovers new lightweight backdoor that steals cryptocurrency
Apple patches high-severity eavesdropping vulnerability in Beats Studio Buds
Before SpaceX IPO, investors in China secretly acquired stakes
Massive breach spills credentials for thousands of sensitive networks
Tesco moving 40,000 server workloads off VMware amid Broadcom's “abusive conduct”
"Dangerous" AI models are coming no matter what
Windows and Linux users: The deadline to update Secure Boot keys is near
Year of free HPE software a “step in the correct direction” in VMware rivalry
Critical Copilot vulnerability allowed hackers to steal 2FA code from users
Users cry foul after AMD stripped memory crypto from its consumer CPUs
CyberScoop
Authorities disrupt Evil Corp’s SocGholish botnet
Congress tees up No FAKES Act, aiming at AI-generated deepfakes
How software development’s speed obsession enabled TeamPCP’s chaos crusade
Accenture shells out $4.18B on three companies in big industrial cybersecurity push
Attackers hit pair of critical Fortinet vulnerabilities the vendor disclosed in April
Lawmakers leery about Trump administration’s Anthropic order
AI’s constant patching treadmill can be a security problem
A case for how to shape ‘ingredient lists’ for AI models
Google exposes China espionage group that’s been lurking in networks undetected since 2023
Cybersecurity experts don’t think Anthropic’s Fable 5 presents a unique threat 
InfoSecurity Magazine
AWS Unveils 'Continuum,' an AI-Powered Vulnerability Management Platform
Operation Endgame Disrupts Malware Network Linked to Major Ransomware Gang
Confidence Lacks in Threat Detection Across Non-Email Channels like Slack and Teams
Fake GitHub Stars and AI Videos Mask a Crypto Clipper
ICO Cautions Healthcare Worker After Princess of Wales Incident
Cybercriminals Are Worried About AI Taking Their Jobs Too
LATAM Infrastructure Hit by Fortinet and Ivanti Exploits
Hostile States Behind 75% of Cyber-Attacks on UK Critical Infrastructure, NCSC Warns
Cybercrime Surges in APAC as Digitalization Takes Hold
North Korean Hiring Fraud Runs on AI and US Laptop Farms
SecurityWeek
In Other News: Apple Patches Beats Eavesdropping Flaw, DOT Closes Delta CrowdStrike Probe, AWS Continuum
CryptoBandits Malware Doubles as a Backdoor, Abuses Tor
FortiBleed: 86,000 Fortinet Device Credentials Compromised
Cybersecurity Firms Impacted by Klue Supply Chain Attack
Cisco to Acquire WideField Security to Boost Splunk’s Agentic SOC
15,000 WordPress Websites Cleaned Up in SocGholish Botnet Takedown 
Splunk Enterprise Vulnerability Exploited in Attacks Days After Disclosure
Majority of Internet-Accessible REDCap Servers Outdated
Accenture to Acquire Majority Stake in Dragos, All of runZero, NetRise in $4.1 Billion OT Cybersecurity Push
No Exploits Required
ZDNet
The Ninja Creami just dropped to an all time low price for Prime Day - and I recommend one
I flew 2,700 miles with Apple, Sony, and Sennheiser headphones - this pair had the best audio
The weirdest Bluetooth tracker I've tested also has one big advantage over the AirTag
5 reasons I'm using Android Auto instead of my car's own infotainment system - and can't go back
You can get Amazon Prime totally free for 6 months if you're age 18-24 - what to know
Google Home Speaker vs. Amazon Echo Dot Max: I compared the $99 smart hubs by the specs
I'm a smart home reviewer, and these are the only deals I'm shopping this Prime Day
I recommend these Garmin smartwatches for almost every situation (and price range)
I've lived with solar power at home for years - 12 myths you can safely ignore in 2026
I tested a $15 smart switch and uncovered a $1,500-a-year energy waste in the kitchen
The Hacker News
Operation Endgame Disrupts SocGholish Servers, Cleans 14,971 WordPress Sites
CISA Warns Fortinet Customers as FortiBleed Hits 86,644 FortiGate Devices
From Assistive to Agentic: The AI Shift That's Redefining Threat Management
Forget Data Leakage: Shadow AI's Real Threat Is Access Control
Salesforce Disables Klue App Integration After OAuth Token Abuse Exposes Customer Data
Apple Patches Beats Studio Buds Flaw Letting Nearby Attackers Spy via Microphone
F5 Patches Two Critical NGINX Open Source Flaws Enabling Remote Code Execution
Orphaned AI Agents: How to Find Hidden Access Risks Inside Your Network
ThreatsDay Bulletin: Claude Chat Abuse, NastyC2 npm Packages, Device-Code Phishing + 25 More Stories
Microsoft Details Windows Clipper Malware Campaign Using USB LNK Worm and Tor-Based C2
BleepingComputer
Texas govt data breach exposes over 3 million driver’s licenses
Every AI Agent Is an Identity. Most Organizations Don't Treat Them That Way
Webinar: How attackers bypass MFA and how defenders can respond
Microsoft: June 2026 Windows updates break Recycle Bin prompts
CISA: Splunk Enterprise flaw actively exploited, patch by Sunday
NY man charged after harassing college student with AI-generated nudes
CISA warns Fortinet users to secure devices after FortiBleed leak
Gentlemen ransomware uses multiple EDR killers to disable defenses
Nintendo confirms data stolen in WebMD subsidiary cyberattack
USB worm spreads crypto-stealing malware via Windows shortcut files
gbhackers
Gcore Helps Ucom Safeguard Public Live Broadcast Infrastructure During Armenia’s Parliamentary Elections
eFAQ Publishes Investigation Into Alleged Scam Activity and Coordinated Reputation Attacks
Critical Chrome Extension Vulnerabilities Let Attackers Easily Compromise Browsers
Critical WordPress Plugin Bug Could Allow File Deletion Attacks on 1 Million Sites
UEFI DBX Update Guidance Targets Vulnerable Vendor-Signed Boot Applications
SmartApeSG Hackers Abuse Okendo Reviews Widget in E-Commerce Supply Chain Attack
HazyBeacon Abuses AWS Lambda Function URLs for Stealthy Command-and-Control Operations
CISA Issues Alert on Critical Splunk Enterprise Bug Under Active Exploitation
Node.js Releases Security Updates for 12 Vulnerabilities, Two Rated High Severity
INC Ransomware Uses Double Extortion and Printer Ransom Notes to Pressure Victims
Cybersecurity Dive
Nation-state rivals linked to majority of consequential attacks targeting critical UK sites
Major critical infrastructure disruptions are inevitable, acting CISA chief says
California water utility probes breach claim by Iran-linked actor
AI isn’t solving cybersecurity workforce woes
AI adoption correlates with incident frequency, underscoring need for governance
Critical vulnerabilities in Fortinet FortiSandbox are under exploitation
China-nexus group linked to multiyear campaign targeting US, Canadian medical research
Cybersecurity experts blast US government for restricting Anthropic’s AI models
MS-ISAC enters uncertain new era after losing federal funding and thousands of members
Agentic AI surges in financial sector even as many firms fail to manage security risks
Threatpost
Student Loan Breach Exposes 2.5M Records
Watering Hole Attacks Push ScanBox Keylogger
Tentacles of ‘0ktapus’ Threat Group Victimize 130 Firms
Ransomware Attacks are on the Rise
Cybercriminals Are Selling Access to Chinese Surveillance Cameras
Twitter Whistleblower Complaint: The TL;DR Version
Firewall Bug Under Active Attack Triggers CISA Warning
Fake Reservation Links Prey on Weary Travelers
iPhone Users Urged to Update to Patch 2 Zero-Days
Google Patches Chrome’s Fifth Zero-Day of the Year
The Register
Researchers drop checkm8-style BootROM exploit for A12 and A13 iPhones
Everything's bigger and better in Texas – even data breaches
Britain's privacy watchdog quits after 'poor judgment' admission
Rights groups brand Home Office's AI age guesser for asylum-seekers as biased and inaccurate
Google told researcher 'Nice catch!' Then denied bug bounty for flaw it still hasn't fixed
Major US carrier stored credit card info in the clear, employee learned on first day
Cyber offenses now account for around a third of all crime across Asia and South Pacific
Massive password-stealing attack hits 75k Fortinet firewalls
Digital sovereignty needs an operating model
Cisco adds another SD-WAN box to max-severity bug advisory
VentureBeat
Copilot searched your mailbox. LiteLLM handed out admin keys. Run this 5-check audit before your stack is next
85% of IT teams claim every AI agent is under control. Only 42% actually know who owns them.
Attackers scale deception with AI. Defenders need truth at machine speed.
NanoClaw and JFrog launch 'immune system' to block AI agents from downloading malicious code
Meta's AI support agent bound recovery emails for anyone who asked. Your SOC never saw an alert.
Microsoft launches MXC, an OS-level sandbox for AI agents, with OpenAI and Nvidia already on board
Zip’s new AI agents want to stop your finance team from uploading contracts into personal ChatGPT accounts
TechCrunch
Texas government data breach allowed hackers to steal 3 million driver’s licenses and passports
Cybercriminals allegedly hacked tens of thousands of Fortinet firewalls used by major companies all over the world
Apple plans to change its Hide My Email privacy feature that could make it less effective
Bug in FIFA World Cup internal system gave anyone ability to modify TV stream
India orders temporary ban on Telegram over exam fraud concerns
The US government’s Anthropic models ban was never about an AI jailbreak
Cybersecurity vets protest ‘dangerous’ US government ban on Anthropic’s most powerful models
As AI agents become employees, NewCore emerges with $66M to give them identities
Amazon CEO reportedly raised Anthropic model concerns before government crackdown
The FBI built its own replica small town to simulate real-world cyberattacks
Network World Security
FortiBleed campaign exposes 75,000 Fortinet firewalls worldwide
Cisco: AI growth is exposing campus network limits
HPE CTO Russo drills into data, orchestration, and observability for the agentic enterprise
Edge networks a particular challenge for summer power, IT staffing needs
Turn enterprise AI into real business value with a secure, scalable factory
Tether is shipping TurboQuant KV-cache quantization with Vulkan support into its QVAC SDK
AMD acquires MEXT to add predictive memory optimization to its AI stack
HPE Discover: Neri outlines an AI architecture built for agents
HPE product barrage targets AI networks, agents, management
2026 network outage report and internet health check
Help Net Security
Klue breach lead to Salesforce data theft, Huntress affected
Cybercriminals abused GitHub, YouTube and VirusTotal to push crypto-stealing malware
Unauthenticated RCE in Splunk Enterprise under active attack (CVE-2026-20253)
Forget traffic lights, Google’s reCAPTCHA may ask for hand gestures
Mastodon 4.6 adds profile Collections and two-factor controls
Google sets timeline for Android developer verification enforcement
Accenture to buy Dragos, runZero, and NetRise in $4.2 billion cybersecurity deal
BlackFog brings shadow AI visibility to macOS endpoints with ADX Vision
Your browser tab could become encrypted storage for someone else’s files
Companies are discarding the logs they need to catch a breach
SC Magazine
Malware campaign uses VirusTotal manipulation, legitimate news sites to gain reputation
Agentjacking attack exploits AI coding tools with fake error reports
Cloudflare blocked 38.5 billion cyberattacks against civil society organizations
Icarus threat actors exploit Klue OAuth breach to steal Salesforce data
Law enforcement disrupts SocGholish botnet and Evil Corp servers
Apple releases security update for Beats Studio Buds vulnerability
Nintendo confirms employee survey data stolen from third-party service
BlackFog launches AI detection for macOS
Texas Parks & Wildlife data breach exposes millions of driver's licenses, passport numbers
Identity is the foundation of trust. That makes it everyone’s problem.
© 2026 RiskDiscovery | Sponsored by: Deception Logic