[
News
|
Newsletters
|
Blogs
|
Lists
|
Media
|
Jobs
]
HoneyDB
DarkReading
Agentic AI Is Untamable: Ask the Right Security Questions
1M+ Emails Use Hidden Text to Dupe AI Security Filters
Police Disrupt a €140M Cyber Fraud Ring in Spain
Forgotten Bootloaders Expose Secure Boot Blind Spot
Identity Attacks Overtake Exploits as Top Ransomware Cause
Guten Tag, Bonjour, Hola to Our European Cyber Defenders!
Is 'Tech-xit' Imminent? UK Steps Up Sovereignty Push Amid AI Strife
Claude Flaw Automatically Sends Malicious Prompts to AI Agents
2-Click Cursor Exploit Enables Dev Environment Takeover
Nigeria Deepens Cybersecurity Efforts as Cybercriminals See More Profits
Ars Technica
HP fined 1.4 billion rupees for “cartelization” of ink cartridges, toner, PCs
Now, even Russia's most elite hackers are using Clickfix to infect devices
Energy IPOs surge as investors hunt for ways to play AI boom
Sheetz is quitting VMware, migrating 11,000 virtual machines
Windows 0-day drops the same day Microsoft releases record number of patches
Microsoft’s Secure Boot has been broken for a decade and no one noticed until now
The US government warns that Russia state hackers are coming after your router
Now, defenders are embracing the prompt injection, too
Patch for Windows Defender 0-day could allow attackers to fill hard disk
Allstate accuses Broadcom of auditing it because it quit VMware, CA
CyberScoop
Program to rotate cyber personnel through federal agencies saw little use
Russian trio indicted for allegedly running bulletproof hosting providers that spurred cybercrime
Security researchers find stalkers abusing Chrome’s sync feature
SonicWall customers under threat as attackers exploit 2 zero-days
Dems press DNI nominee Jay Clayton on election security questions, but leave dismayed
Forget the model. When it comes to cybersecurity, it’s all about the harness
White House details ‘Gold Eagle’ clearinghouse for AI cyber threats
Microsoft discloses ‘the mother of all’ vulnerability loads, tripling June’s previous record
Treasury sanctions First VPN Service, others for abetting ransomware gangs
States are building their own election defense networks as federal support evaporates
InfoSecurity Magazine
CISA Mandates Urgent Patch for Actively Exploited Critical Fortinet Vulnerabilities
The Gentlemen Overtakes Qilin as Most Prolific Ransomware Threat
Phishing Campaign Hides Lua Loader as TrueType Font File
Single Prompt Enables ChatGPT to Execute Full Cyber-Attack Chain, Researchers Claim
Modular macOS Stealer Uses Kill Loops to Force Password Entry
"Selfish Bravado" Behind TfL Cyber-Attack, Judge Says as Pair Jailed
SANS Warns of AI Governance Gap as Use by Security Teams Surges
US Launches Gold Eagle to Coordinate AI-Driven Vulnerability Management
Phishing Campaign Abuses eCards to Deploy RMM Tools
Eleven Vulnerable UEFI Shims Enable Secure Boot Bypass
SecurityWeek
Cyberattack Disrupts Operations of Japanese Frozen Food Giant Nichirei
Risk Ledger Raises $32 Million in Series B Funding
Fresh SharePoint Vulnerability Exploited Soon After Disclosure
Coca-Cola Suspends US Fairlife Production Due to Ransomware Attack
Legacy Systems, Real-World Impacts: The Reality of OT Security
Two Scattered Spider Hackers Sentenced to Jail in UK
AI Data Centers Are Being Built Faster Than They Can Be Secured
‘ClickLock Stealer’ Bypasses macOS Security With Social Engineering, Process Killing
Oak Emerges From Stealth Mode With $60 Million in Funding
Splunk, Zoom Patch Critical Vulnerabilities
ZDNet
Own a Pixel? You can add device protection now for $5/month - but should you?
I tested MSI's latest gaming laptop, and it works just as hard as it plays
4 surprise products we could see at Samsung Galaxy Unpacked (including the Galaxy Glasses)
Amazon dropped this Blink video doorbell and security camera bundle to 43% off - and we recommend it
Amazon just cut $300 off the Google Pixel 10 Pro - and I'd recommend buying one
6 cheap kitchen gadgets that will make your life easier for under $20 (I promise)
Buying a new Apple device? You can get it tax-free in 8 states - but only on these dates
Managers play critical role in a company's AI transformation - and they know it
Anthropic's Claude Corps will pay $85,000 to 1,000 early-career professionals - apply now
I found a stunning Apple Notes alternative for my Mac - and it's (mostly) free
The Hacker News
ACR Stealer Uses ClickFix Lures to Steal Browser Tokens and Microsoft 365 Files
New GoSerpent Malware Targets Southeast Asian Governments and Diplomats for Espionage
CISA Adds Exploited SharePoint RCE Zero-Day CVE-2026-58644 to KEV
Two Scattered Spider Hackers Get 5.5 Years Each for £29 Million TfL Hack
ThreatsDay: Game Cheat Spyware, 24-Hour Ransomware, Chrome Sync Stalking + 12 More Stories
n8n Token Exchange Flaw Could Let Attackers Log In as Users From Another Issuer
New TELEPUZ Malware Spreads via ClickFix to Steal Data and Run Commands
New ClickLock macOS Stealer Kills Apps Every 210ms Until Victims Type Their Password
20+ Hijacked Government Websites Became an Attack Channel
New Agent Data Injection Attack Can Make AI Agents Misclick or Run Attacker Commands
BleepingComputer
Windows Server 2022 reach end of mainstream support in 90 days
US charges two over laundering $43 million from investment fraud
CISA urges immediate action on actively exploited Fortinet flaws
New ClickLock macOS malware traps users into revealing login password
Coca-Cola says Fairlife ransomware attack halts US dairy production
Claude Chrome extension flaw lets malicious extensions trigger AI actions
New OkoBot framework deploys 20 payloads to steal data, crypto
AI Agents Broke the Security Playbook. Here's What Replaces It.
23andMe to pay $18 million in new genetics data breach settlement
Scattered Spider members behind TfL hack get five years in prison
gbhackers
TP-Link Kasa Camera Flaws Let Attackers Steal Admin Credentials and Geolocation Data
CISA Warns of Two Fortinet FortiSandbox Flaws Exploited to Execute Commands
Hackers Use Paste-and-Run Commands to Deploy ClickLock Stealer Against Mac Users
GPT-5.6 Codex Reportedly Wipes Files From Home Directories
GoSerpent Silently Steals Government Files for Weeks Before Sending Them to Hackers
Two Scattered Spider Hackers Jailed in UK’s Largest Cybercrime Prosecution
7-Zip Vulnerability Lets Attackers Trigger Heap Buffer Overflow Using Malicious Files
Linux Creator Linus Torvalds Rejects Anti-AI Push and Defends LLM Tools
ACR Stealer Uses ClickFix, WebDAV, and Steganography to Steal Browser Credentials and Tokens
Five-Layer Fileless Malware Uses JScript and PowerShell to Evade AMSI and Load .NET Payload
Cybersecurity Dive
Gaps in network security, oversight strategy hamper US’s aviation cybersecurity regulators
Iran-nexus actors using AI to enhance cyber playbook
CISA warns that multiple vulnerabilities in SharePoint are under exploitation
US launches vulnerability clearinghouse amid AI-fueled surge in flaws
Sharp rise in AI adoption for cyber defense exposes major governance gap
Healthcare sector faces persistent supply-chain security, identity management challenges
US authorities warn that state-linked hackers are targeting vulnerable networking devices
Hackers find a new trick to collect Microsoft Entra user data without raising red flags
When cybercriminals outrun the feed
Copy-paste might be the riskiest thing your enterprise employees do all day
Threatpost
Student Loan Breach Exposes 2.5M Records
Watering Hole Attacks Push ScanBox Keylogger
Tentacles of ‘0ktapus’ Threat Group Victimize 130 Firms
Ransomware Attacks are on the Rise
Cybercriminals Are Selling Access to Chinese Surveillance Cameras
Twitter Whistleblower Complaint: The TL;DR Version
Firewall Bug Under Active Attack Triggers CISA Warning
Fake Reservation Links Prey on Weary Travelers
iPhone Users Urged to Update to Patch 2 Zero-Days
Google Patches Chrome’s Fifth Zero-Day of the Year
The Register
Google fixing Android lock screen bug that lets Gemini send SMS without a PIN
South Korea making its own security-centric AI model
OpenAI admits GPT-5.6 occasionally deletes files – but it's an 'honest mistake'
Researcher poisons open-weight AI model for under $100
C'mon, just copy this text string and paste it into your macOS Terminal – it'll fix your computer, honest
Brit Scattered Spider duo handed tickets to prison over Transport for London attack
Windows 10 refuses to die, and the security bill is coming due
Telegram shortlinks knocked offline over sanctioned VPN connection
Law firm insisted on one password to rule them all
Tech support scam caused massive data breach at Australian airline Qantas
VentureBeat
Zero trust must now move at agent speed
1Password moves into AI cost management, betting that token spend is the next enterprise budget crisis
Forget typosquatting; slopsquatting is the software supply chain threat created by AI coding tools
Shared API keys expose AI agents at 69% of enterprises, new VentureBeat research finds
AI has collapsed the cyber response window — resilience now starts before the attack
The real cost, security, and culture problems behind enterprise AI agents
Digital resilience compounds when AI and human expertise scale together
TechCrunch
Coca-Cola suspended production at its Fairlife dairy after a ransomware attack
UK cops say arrest of two young hackers disrupted the operations of an infamous hacking group
Period tracker Stardust shares users’ health data with analytics firm, says Mozilla research
How a former DeepMind researcher raised at a $300M pre-seed valuation before launching a product
Microsoft patches bug in video game Age of Empires II
Hack suggests AI music generator Suno scraped YouTube for training data
Microsoft patches record number of security vulnerabilities, citing its use of AI
US charges Russian ‘bulletproof’ web hosts over cyberattacks that netted $62M from cybercrime victims
Iran abused mobile networks’ vulnerabilities to locate US military in the Middle East, report says
Telegram’s shortlink domain is back online after day-long suspension
Network World Security
New York State just hit pause on the AI data center boom
Huawei eying possible DRAM market entry
IBM targets AI edge with Power server, software upgrades
Network jobs watch: Hiring, skills and certification trends
Google Cloud configuration update disrupts VMware Engine stretched clusters
Fortinet adds AI protections to endpoint security platform
How data centers cope with heat waves
ISC2: AI raises accountability demands for cybersecurity teams
2026 network outage report and internet health check
Governments to enterprises: Improve your router security hygiene
Help Net Security
Scammers weaponize FaceTime to drain bank accounts
Claude can now sign into websites with 1Password without exposing your credentials
Ransomware attack halts Coca-Cola’s Fairlife US milk production
Prompt injection is becoming the XSS of the web agent era
The script, not the voice, is what makes AI voice phishing work
The five step plan that cuts security budget waste
A hard drive reliability check on 341,263 drives, from 4TB to past 20TB
New infosec products of the week: July 17, 2026
Scattered Spider members jailed over Transport for London hack that cost £29 million
Adaptiva simplifies secure patch management for air-gapped networks
SC Magazine
Russian hackers use fake CAPTCHA to infect Ukrainian targets
Google Mandiant warns of exposed serverless functions as attack vector
Period tracking app Stardust shares sensitive user data with third parties, report finds
Chinese actors leverage AI tools for automated cyberattacks on government and financial systems
Daxin malware resurfaces with new backdoor targeting Taiwan manufacturer
Partnered Health cyberattack exposes patient data across Australian clinics
Shark robot vacuums vulnerable to remote command execution
New TELEPUZ malware spreads via ClickFix lures
23andMe agrees to $18 million settlement over data breach
SpaceXAI acknowledges data retention issue with Grok Build coding tool
© 2026 RiskDiscovery | Sponsored by:
Deception Logic