Feed Sources

US-CERT Current Activity - Latest cybersecurity alerts and advisories

Healthcare and medical device cybersecurity advisories

Centre for Cybersecurity Belgium — official news, NIS2 updates, national cyber resilience announcements

Centre for Cybersecurity Belgium — security advisories, vulnerability warnings, patch notifications

FBI Internet Crime Complaint Center — cyber security advisories, alerts, and wanted notices

Federal Trade Commission consumer-protection blog — scam alerts and emerging fraud trends

FBI Internet Crime Complaint Center PSAs — active fraud schemes, BEC, romance + tech-support scams

UK National Cyber Security Centre advisories, guidance and threat reports

Bruce Schneier's security blog and essays

Industrial Control Systems / OT security advisories from CISA (affected products, mitigations, exploitability).

Threatpost — enterprise vulnerability reporting, zero-day tracking, and breach coverage. Cybersecurity news for security pros.

In-depth security journalism by Brian Krebs

Latest cybersecurity news, exploits, and vulnerabilities

Computer security news, tutorials, and how-to guides

Cybersecurity news, analysis, and enterprise security insights

Security news and features from Wired

Biting the hand that feeds IT - Security news

Computer security news and cybersecurity insights

Security and risk management leadership news

Misinformation + scam fact-checking; routinely covers deepfake claims and viral scam stories

Google News search RSS for "deepfake fraud" — synthetic-media-driven fraud incidents

Google News search RSS for "digital scam victim" — case-by-case fraud reporting from mainstream media

India-scoped Google News for active scam types — digital-arrest, UPI / payment fraud, predatory loan apps, courier & KYC scams.

India cybercrime enforcement coverage — I4C / 1930 helpline actions, fraud-ring busts, mule-account crackdowns.

Long-con investment + crypto fraud ("sha zhu pan") news coverage

Fake-job / fake-recruiter / employment-fraud incident coverage

Microsoft / Apple / IRS / IT-support impersonation incident coverage

Investment / brokerage / advisory fraud coverage

Voice-cloning vishing / family-emergency / kidnapping-claim incident coverage

SIM-swap account-takeover incidents — banking, crypto, social-media takeovers

Token / DeFi rug-pull incidents — exit-scam projects, drained liquidity

Wallet-drainer kits (Inferno, Pink, Angel), NFT phishing, seed-phrase theft

Smart-contract exploits, bridge drains, oracle manipulation, flash-loan attacks

Financial technology news — banking security, payments, regtech, digital transformation in finance

Cyber attacks and data breaches in the banking sector — retail banks, commercial banking

Fintech company security incidents — neobanks, payments apps, lending platforms

Payment system security — card fraud, payment processor breaches, POS malware, BICS exploits

Cyber attacks on insurance companies — claims data theft, underwriting system compromises

Cyber incidents at investment banks, hedge funds, asset managers, trading platforms

Payments industry news — fintech, digital payments, payment security, fraud prevention, regulatory

Banking industry news — digital banking, compliance, cybersecurity, fintech partnerships

Hacking news, tools, and tutorials — password cracking, cryptography, network security, and pen-testing

Hacker News front page - top tech, AI, and security stories

Ask Hacker News - questions and discussions from the community

Show Hacker News - new projects, products, and demos

Y Combinator blog - startup essays, announcements, and YC news

Security-vendor funding, M&A, breaches, and product launches as covered by TechCrunch

Enterprise security industry coverage — funding, AI/security crossover, vendor moves

Recent Series A / B / C announcements in the cybersecurity sector

M&A activity in cybersecurity — strategic acquisitions, vendor consolidation

AI capex, data-centre build-outs, cloud-vendor AI spend, model-training investment

TechCrunch AI tag — model releases, AI funding, agentic-AI products, lab moves

Consumer + product-side AI coverage from The Verge

Official OpenAI announcements — model releases, safety + research notes, policy

Google research and product launches under the AI tag

Recent AI-system security incidents — prompt injection in production, agent failures, model leaks

Funding rounds across the AI vendor / model / tooling space

Enterprise AI rollouts — security posture, ROI claims, governance moves

Anthropic official blog — Claude releases, safety research, alignment, policy positions

Open-source ML/AI research — model releases, datasets, papers, community highlights

DeepMind research — AI breakthroughs, safety papers, scientific applications

AI regulation, governance frameworks, policy developments — EU AI Act, executive orders

GenAI security incidents — prompt injection, model jailbreaks, LLM vulnerabilities, AI supply-chain

AI news and analysis — model releases, enterprise AI adoption, regulation, security implications

Long-form Ars coverage of infrastructure, OS, networking, devices, and the security crossover

Independent reporting on emerging technology, AI ethics, biotech, computing

Open-source AI / ML research, model releases and tooling

AI industry news — model launches, research, policy and enterprise adoption

Weekly AI research & policy analysis newsletter

DeepMind research announcements and model releases

Threat research from Cisco Talos — daily IOCs, malware analysis, campaign tracking

Active campaign tracking and malware analysis

New software supply-chain compromise incidents (npm/PyPI/container/AI-agents). Change-detection signal; full structured data on the Supply-chain incidents page.

Cloud / SaaS / identity threat incidents tracked by Wiz Research. Change-detection signal; full structured data on the Cloud incidents page.

European-focused threat research, esp. Russia/Ukraine cyber operations

Long-tail threat and malware research from Kaspersky GReAT

Endpoint-driven adversary intelligence and incident reports

Malware reverse engineering and threat hunting

Infostealer research, campaign tracking, and weekly reports from the Hudson Rock cybercrime intelligence team — RedLine, Lumma, Vidar, StealC, and emerging stealer families.

All infostealers.com content — blog, reports, and techniques combined feed.

Infostealers weekly threat reports from Hudson Rock — compromised machine counts, top domains, trending families.

Infostealer technique profiles from Hudson Rock — Formbook, LummaC2, Aurora, and other stealer TTPs.

Threat intelligence and cybercrime news — deep-dive investigations into organized crime, crypto heists, infostealers, piracy takedowns, and underground markets.

Daily dark web intelligence, ransomware leak-site posts, breach reports, and underground chatter

Original threat intelligence research — malware analysis, open-directory investigations, IOC feeds, and hunting detections

Active ransomware victim and leak-site tracker, updated continuously

BleepingComputer breach coverage via main feed — renamed 2026-05; was a separate category feed that now 404s

HackRead breach reporting — covers global incidents with notable focus on India + emerging markets

SecurityWeek cybercrime category — enterprise breach incident reporting + regulator notices

CyberScoop — US government + enterprise cyber incident coverage, breaches, indictments

Breach reporting and analysis from Dissent. Wide coverage of healthcare, education, and government incidents

In-depth incident response writeups with full IOC and TTP detail

Autonomous CTI platform — CVE deep-dives, active exploitation, breaches, and original threat research

Cybersecurity reporting from Recorded Future, with strong dark web and ransomware coverage

Threat actor and ransomware research from the Curated Intelligence collective

Zero-day vulnerability research from the Google Project Zero team

Malware reverse engineering and active campaign tracking from Check Point

Consumer and enterprise malware research from Malwarebytes Labs

Detection content and incident reports from the Huntress threat ops team

Detection engineering and threat intel from the Red Canary team

Brad Duncan's daily PCAPs, IOCs, and malware samples. One of the highest-signal IOC feeds online

Official updates from the MITRE ATT&CK team on framework changes and threat groups

Digital forensics and incident response research, threat analysis, and case studies

Security advisories and threat intelligence from the DFIR Radar project

Daily handler diaries and security threat intelligence

Recorded Future threat research — threat intel, APT tracking, and strategic analysis

Attack surface management research, vulnerability disclosures, and APT infrastructure tracking by RedHunt Labs

Network security community discussions

Malware analysis, samples, and reverse engineering discussion

Defender-focused threat intel, detection rules, and incident reports

Threat intelligence discussion, IOC sharing, and actor tracking

First-person scam reports — phishing, IRS impersonation, romance, marketplace, tech-support, gift-card

Cryptocurrency-specific scam reports — pig butchering, fake exchanges, wallet drainers

User-reported phishing samples — SMS, email, voice (vishing)

Fake recruiter / fake interview / employment-fraud reports

Scammer-baiting and call-centre exposé community — scammer tradecraft, impersonation patterns

Long-form post-mortems of major DeFi exploits, rug pulls, and protocol failures

Molly White's running ledger of crypto scams, rug pulls, and grift incidents

vpnMentor research lab — discovered and reported breaches, particularly in exposed-database / misconfigured-cloud territory

GRC Solutions (formerly IT Governance UK) — monthly breach round-ups + analysis of high-profile data-protection incidents

Comparitech privacy / breach research — Bob Diachenko-style exposed-database investigations and breach reporting

Troy Hunt's personal blog — write-ups of every Have I Been Pwned acquisition, plus deep dives on credential-stuffing, breach pricing, and the post-leak data-broker ecosystem.

CyberNews — data breach investigations, cybersecurity research, and exposure reports.

Graham Cluley — independent security blog covering data breaches, malware, and cybercrime.

ITRC — non-profit that tracks U.S. publicly-reported data breaches; publishes quarterly + annual reports on breach trends, victim counts, and notification compliance.

India-scoped Google News for cyber-attacks, data breaches, ransomware incidents and APT activity targeting Indian organisations.

Coverage of CERT-In (Indian Computer Emergency Response Team) advisories, vulnerability notes and alerts — CERT-In has no stable public RSS, so this tracks it via news.

Threat intelligence research — dark-web monitoring, ransomware, breach and campaign analysis

Dark-web and external attack-surface threat research, leak and ransomware tracking

Independent CTI research — ransomware, dark-web actors, campaign deep-dives

Vulnerability research, emergent-threat advisories and detection guidance

Japan CERT incident & malware analysis — APT tooling, ICS, regional campaigns

AhnLab Security Emergency-response Center — malware, phishing and APT analysis

MyThreatIntel Telegram-based ransomware victim tracking, republished as an RSS feed from the synthesised same-origin endpoint

Merged ransomware victim claims from Ransomlook, ransomware.live, ransomfeed.it, ransomwatch, and andreafortuna

DFIR, threat intelligence, incident response, digital forensics, and OSINT from Lesley Carhart, full-spectrum cyber-warrior

Web security research and unintended-use hacking from the author of XSS Hunter — SSRF, blind XSS, DNS rebinding

Web security vulnerability research, bug bounty write-ups, and security culture insights from the Detectify team

Offensive security techniques and methodologies — exploitation, privilege escalation, persistence, and lateral movement

Cybersecurity tutorials covering ethical hacking, digital forensics, Linux, and penetration testing for aspiring professionals

AI/LLM security research, red-team exploit analysis, prompt injection vulnerabilities, and defensive insights

Security awareness training blog — social engineering, ransomware, phishing attacks, and cybercrime trends

Windows internals, identity theft protection, penetration testing, malware, forensics, and incident response

Comprehensive penetration testing tutorials — system exploitation, vulnerability research, tools, and CTF walkthroughs

The Exploit Database - latest exploits and vulnerabilities