[ News | Newsletters | Blogs | Lists | Media | Jobs ] HoneyDB
DarkReading
Crypto Heist Fueled by Elaborate Fake Reputation-Boosting Campaign
Stressors, AI Forcing Changes to Cybersecurity Teams
Novo Nordisk Breach Highlights Software Development Pipeline Risk
Operation Escaneo Signals Shift in LatAm Threat Landscape
FIFA Bug Exposes World Cup Streams to Remote Takeover
Salesforce Data Thefts Continue via Klue App Compromise
Get Out of Security Debt by Tackling the Exposure Problem
EU Gets a Head Start in Developing 6G Network Security
INC Ransomware Thrives by Mastering the Basics
Sweeping Credential-Harvesting Heist Compromises 30K+ Fortinet Devices
Ars Technica
Following user outcry, AMD reinstates memory encryption in consumer CPUs
Microsoft discovers new lightweight backdoor that steals cryptocurrency
Apple patches high-severity eavesdropping vulnerability in Beats Studio Buds
Before SpaceX IPO, investors in China secretly acquired stakes
Massive breach spills credentials for thousands of sensitive networks
Tesco moving 40,000 server workloads off VMware amid Broadcom's “abusive conduct”
"Dangerous" AI models are coming no matter what
Windows and Linux users: The deadline to update Secure Boot keys is near
Year of free HPE software a “step in the correct direction” in VMware rivalry
Critical Copilot vulnerability allowed hackers to steal 2FA code from users
CyberScoop
Court rules SAVE database illegal, orders it dismantled
Trump executive orders speed up post-quantum migration, boost industry
Intel agencies: Frontier AI models will reshape cybersecurity faster than expected
Authorities disrupt Evil Corp’s SocGholish botnet
Congress tees up No FAKES Act, aiming at AI-generated deepfakes
How software development’s speed obsession enabled TeamPCP’s chaos crusade
Accenture shells out $4.18B on three companies in big industrial cybersecurity push
Attackers hit pair of critical Fortinet vulnerabilities the vendor disclosed in April
Lawmakers leery about Trump administration’s Anthropic order
AI’s constant patching treadmill can be a security problem
InfoSecurity Magazine
GentleKiller Framework Disables Victims' Security Software
Unpatchable BootROM Flaw Impacts Apple A12, A13 Chips
Microsoft Attributes Mastra AI Supply Chain Attack to North Korea
Klue Breach Enables Hackers to Compromise Cybersecurity Firms via OAuth Tokens
UK Information Commissioner Resigns After Workplace Investigation
NCSC Urges Fortinet Customers to Tackle FortiBleed Fallout
AWS Unveils 'Continuum,' an AI-Powered Vulnerability Management Platform
Operation Endgame Disrupts Malware Network Linked to Major Ransomware Gang
Confidence Lacks in Threat Detection Across Non-Email Channels like Slack and Teams
Fake GitHub Stars and AI Videos Mask a Crypto Clipper
SecurityWeek
Decades-Old Squid Proxy Flaw ‘Squidbleed’ Can Expose User Data
Attackers Exploit Gravity SMTP Plugin Flaw to Harvest Valuable WordPress Data
North Korean Hackers Blamed for Mastra NPM Supply Chain Attack
What the Latest ShinyHunters Breaches Reveal About Modern Cyberattacks
New Exploit Bypasses Apple’s Boot Defenses, Affects Millions of iPhones
Fortinet Responds to FortiBleed Campaign
More Cybersecurity Firms Disclose Impact From Klue Hack
Texas Parks & Wildlife Data Breach Affects 3 Million Individuals
French President Urges US to Share Cutting-Edge AI and Democracies to Cooperate on Regulation
In Other News: Apple Patches Beats Eavesdropping Flaw, DOT Closes Delta CrowdStrike Probe, AWS Continuum
ZDNet
June Prime Day live blog 2026: We're tracking Amazon deals on SSDs, TVs, laptops and more
How to troubleshoot your PC problems with Copilot or ChatGPT - effectively
I tested Android 17 on my Pixel 9 Pro - its app bubbles are a multitasker's dream
This 16-inch Acer is the best gaming laptop deal I've found for Prime Day
This 2TB WD Blue SSD is almost $400 off right now at Best Buy - and I highly recommend it
5 cheap gadgets that will seriously upgrade your home (and they're on sale)
The best early Prime Day Samsung deals: Save big on Galaxy phones, tablets, and more
The best Costco deals to compete with Prime Day: TVs, Apple devices, and more
I've been a Roborock vacuum user for 10 years - this is the best time to buy one
Best Buy gaming deals might be better than Amazon's early Prime Day sale
The Hacker News
ShapedPlugin WordPress Pro Plugins Backdoored in Supply Chain Attack
Researchers Detail DifyTap Flaws in Dify That Could Expose AI Chats Across Tenants
29-Year-Old Squid Proxy Bug 'Squidbleed' Can Leak Cleartext HTTP Requests
New OXLOADER Loader Uses Malicious Google Ads to Deliver CastleStealer
Google Sets Sept. 30 Deadline for Android Developer Verification in Four Countries
Stop Your Legacy Infrastructure from Hijacking Your AI Agents
⚡ Weekly Recap: Browser Bugs, EDR Killers, TV Botnet, OpenBSD Flaw, Android Trojan, and More
Canada’s Spy Agency Used First-of-Its-Kind Warrant to Clean Botnet-Infected Devices
AryStinger Malware Infects 4,300 Legacy Routers to Build Reconnaissance Proxy Network
INTERPOL Warns Phishing, Ransomware, and AI Scams Are Rising Across Asia-Pacific
BleepingComputer
WhatsApp phishing attack uses fake business docs to hack PCs
JaredFromSubway MEV bot hacked in $15 million crypto theft
FFmpeg fixes PixelSmash flaw in widely used video decoder
FortiBleed campaign used custom FortiGate sniffer to steal credentials
Microsoft says Windows 11 26H2 is coming soon, details upgrade process
Microsoft fixes AutoGen Studio flaw that enabled code execution
A Glimpse into the “Search Your Target” Market for Stolen Credentials
AryStinger botnet infected thousands of D-Link routers worldwide
New Prinz Eugen ransomware prioritizes recent files for encryption
Microsoft links Mastra AI supply chain attack to North Korean hackers
gbhackers
ClawHub Scope Squatting Lets Plugins Masquerade as Official OpenClaw Integrations
QNAP Fixes 14 Vulnerabilities in QTS, QuTS Hero, QuTS Cloud, and QVP
Microsoft 365 Sensitivity Labels Now Block AI-Powered Content Analysis in Office Apps
Malicious npm Package Masquerades as PostCSS Utility to Deliver PowerShell Downloader
Multi-Stage Steganographic Loader Deploys Remcos RAT and Multiple Infostealers Globally
282 iOS Apps Found Leaking LLM API Credentials in Network Traffic
LACUNA Chain Ghost Frames Technique Bypasses EDR Call-Stack Detection
Attackers Can Poison AI Research Agents Using Reddit and Wikipedia Content
AryStinger Botnet Uses Intranet Scanning and Traffic Tunneling to Hide Attacker Activity
Microsoft Confirms Windows 11 26H2 Upgrade via Enablement Package for Faster Deployment
Cybersecurity Dive
INTERPOL, Europol renew agreement to combat hackers and other criminals
CISA urges device hardening after thousands of Fortinet credentials compromised
Infrastructure downtime has a $50k-per-hour price tag. It’s time to turn hours into minutes.
3 ways AI is transforming security operations - and where it delivers real impact
AI is transforming enterprise data risk. Here’s how security leaders are responding.
Nation-state rivals linked to majority of consequential attacks targeting critical UK sites
Major critical infrastructure disruptions are inevitable, acting CISA chief says
California water utility probes breach claim by Iran-linked actor
AI isn’t solving cybersecurity workforce woes
AI adoption correlates with incident frequency, underscoring need for governance
Threatpost
Student Loan Breach Exposes 2.5M Records
Watering Hole Attacks Push ScanBox Keylogger
Tentacles of ‘0ktapus’ Threat Group Victimize 130 Firms
Ransomware Attacks are on the Rise
Cybercriminals Are Selling Access to Chinese Surveillance Cameras
Twitter Whistleblower Complaint: The TL;DR Version
Firewall Bug Under Active Attack Triggers CISA Warning
Fake Reservation Links Prey on Weary Travelers
iPhone Users Urged to Update to Patch 2 Zero-Days
Google Patches Chrome’s Fifth Zero-Day of the Year
The Register
Cloudflare teams up with big browsers to help websites tell welcome from unwelcome visitors
Security shops among the 'hundreds' of Klue hack victims
Canadian utility fesses up to data breach, but key details remain off-grid
Brazil probes emergency warning system after nationwide rogue alert
Health board apologizes for phishing staff with with bogus vacation day
Gizmodo readers hit with ClickFix malware prompts after account compromise
Why Amazon hates 'human-in-the-loop' AI governance
Researchers drop checkm8-style BootROM exploit for A12 and A13 iPhones
Everything's bigger and better in Texas – even data breaches
Britain's privacy watchdog quits after 'poor judgment' admission
VentureBeat
7,000 Langflow servers are under attack. LangGraph and LangChain have the same holes
Copilot searched your mailbox. LiteLLM handed out admin keys. Run this 5-check audit before your stack is next
85% of IT teams claim every AI agent is under control. Only 42% actually know who owns them.
Attackers scale deception with AI. Defenders need truth at machine speed.
NanoClaw and JFrog launch 'immune system' to block AI agents from downloading malicious code
Meta's AI support agent bound recovery emails for anyone who asked. Your SOC never saw an alert.
Microsoft launches MXC, an OS-level sandbox for AI agents, with OpenAI and Nvidia already on board
TechCrunch
Tata Electronics, a major tech supplier to Apple and Tesla, confirms data breach
A new unpatchable flaw in Apple chips opens the door to an iPhone jailbreak 
Anthropic says Claude may want to see your ID
Klue hack results in data breach at several cybersecurity firms
Signal’s Meredith Whittaker wants you to remember that AI chatbots ‘are not your friends’
From PGP to Mythos: a brief history of export controls that didn’t stop anyone
Texas government data breach allowed hackers to steal 3 million driver’s licenses and passports
Cybercriminals allegedly hacked tens of thousands of Fortinet firewalls used by major companies all over the world
Apple plans to change its Hide My Email privacy feature that could make it less effective
Bug in FIFA World Cup internal system gave anyone ability to modify TV stream
Network World Security
Dell launches AI server based on Nvidia Vera Rubin GPUs
Nvidia unveils Vera Rubin platform targeting AI, HPC infrastructure
What Bundesliga’s Captain tells us about AI-powered CX
FortiBleed campaign exposes 75,000 Fortinet firewalls worldwide
Cisco: AI growth is exposing campus network limits
HPE CTO Russo drills into data, orchestration, and observability for the agentic enterprise
Edge networks a particular challenge for summer power, IT staffing needs
Turn enterprise AI into real business value with a secure, scalable factory
Tether is shipping TurboQuant KV-cache quantization with Vulkan support into its QVAC SDK
AMD acquires MEXT to add predictive memory optimization to its AI stack
Help Net Security
23 ClawHub plugins squatting official scopes expose AI registry security gaps
Who pays when you gate cyber-capable AI models?
Agent Beacon: Open-source telemetry layer for AI agents
Encrypted DNS still tells an eavesdropper where to look
Product showcase: Avira Security for iOS blends security, privacy, and device optimization
Hundreds of AI-powered iOS apps found exposing credentials
The systemd 261 release brings a software TPM, new OS installer
Week in review: 74k Fortinet firewall credentials stolen, Splunk Enterprise RCE under active attack
Klue breach lead to Salesforce data theft, Huntress affected
Cybercriminals abused GitHub, YouTube and VirusTotal to push crypto-stealing malware
SC Magazine
Attackers stopped fighting MFA. They are now targeting the enrollment step nobody monitors.
Veeam's Shiva Pillay: Ensuring data trust and contextualization for AI security
AI fuels faster, more convincing messaging scams, report finds
Signal president warns about AI chatbot privacy risks
New Prinz Eugen ransomware targets recent files, avoids ransom notes
WordPress plugin Gravity SMTP exploited for sensitive information disclosure
Federal data center law set to expire without a replacement
Lessons from Identiverse 2026
Navigating Shadow AI in the Enterprise, Verizon's SECOND 2026 report, and the news - Ankita Gupta - ESW #464
LLMS, Identity, EDR, JiGong, QiLin, Warlock, with Rob Allen from Threatlocker... - Rob Allen - SWN #591
© 2026 RiskDiscovery | Sponsored by: Deception Logic