The Latest
-
Eric Geller/Cybersecurity Dive
CISA’s Joint Cyber Defense Collaborative takes major personnel hit
JCDC’s troubles add to the woes of the already-depleted CISA, which could lose even more personnel as additional contracts with private companies expire.
-
Matt Kapko/Cybersecurity Dive
What we know about the cybercrime group Scattered Spider
The notorious hacker collective has attracted the attention of government authorities in several nations around the globe.
-
Hollie Adams via Getty Images
FBI, CISA warn about Scattered Spider’s evolving tactics
International authorities are pursuing the group following the arrests of four suspects in a series of attacks targeting British retailers.
-
BlackJack3D via Getty Images
‘Shadow AI’ increases cost of data breaches, report finds
Companies are failing to protect their AI tools from compromise, often leading to more extensive data breaches, according to new data from IBM.
-
Just_Super via Getty Images
Ransomware attacks against oil and gas firms surge
Manufacturing remains the No. 1 ransomware target, new data from Zscaler shows.
-
chombosan via Getty Images
Research shows LLMs can conduct sophisticated attacks without humans
The project, launched by Carnegie Mellon in collaboration with Anthropic, simulated the 2017 Equifax data breach.
-
Sean Gallup via Getty Images
Allianz Life discloses massive data breach linked to supply-chain attack
The intrusion comes amid a wave of recent social-engineering attacks targeting the insurance sector and other industries.
-
Carl Court via Getty Images
Treasury sanctions North Koreans involved in IT-worker schemes
Authorities also charged several of the indicted people with attempting to evade U.S. sanctions on North Korea.
-
Just_Super via Getty Images
Philadelphia Indemnity Insurance discloses June data breach
The regulatory filing follows a wave of hacks against the industry that researchers have linked to Scattered Spider.
-
hapabapa via Getty Images
What we know about the Microsoft SharePoint attacks
State-linked hackers and ransomware groups are targeting SharePoint customers across the globe.
-
Retrieved from Senate Homeland Security Committee.
Senators push CISA director nominee on election security, agency focus
Sean Plankey said he would double down on CISA’s core mission and “allow the operators to operate.”
-
Alex Wong via Getty Images
Trump AI plan calls for cybersecurity assessments, threat info-sharing
It remains unclear how federal agencies depleted by layoffs will be able to implement the strategy’s ambitious vision, which includes an ISAC dedicated to AI.
-
Photo illustration by Danielle Ternes/Cybersecurity Dive; photograph by yucelyilmaz via Getty Images
SharePoint hacking campaign affects hundreds of systems worldwide
CISA is responding to potential compromises at federal agencies and various state and local entities.
Updated July 23, 2025 -
Justin Sullivan via Getty Images
Clorox files $380 million suit blaming Cognizant for 2023 cyberattack
The attack, linked to Scattered Spider, disrupted production of household cleaners and other goods.
-
Permission granted by Central Arkansas Water
Deep DiveDwindling federal cyber support for critical infrastructure raises alarms
A plan to transfer cybersecurity and resilience responsibilities to states could have major unintended consequences.
-
Hailshadow via Getty Images
Lapsed CISA contract impedes national lab’s threat-hunting operations
The CyberSentry program remains operational, according to CISA, with analysts outside the lab continuing to review sensor data.
-
Michael M. Santiago via Getty Images
Microsoft sees China-backed nation-state hackers among adversaries targeting SharePoint
The company urged customers to apply security updates as security researchers warn of escalating attacks.
-
Jeenah Moon via Getty Images
Microsoft, CISA warn of cyberattacks targeting on-premises SharePoint servers
The flaw has already led to widespread compromises prior to Microsoft’s release of an emergency patch.
Updated July 21, 2025 -
iStock / Getty Images Plus via Getty Images
How IT leaders infuse cyber hygiene into daily work
For technology chiefs, a “do as I say, not as I do” stance could lead to a security breach. Instead, cyber awareness can be taught by example.
-
David Ramos via Getty Images
Top US senator calls out supply-chain risk with DoD contractors
The Senate Intelligence Committee chairman questioned the security of Microsoft’s “digital escort” arrangement with its Chinese employees.
Updated July 18, 2025 -
Pacheco, Isaac. Retrieved from U.S. Department of State / Flickr.
State Department cyber diplomacy firings and changes threaten US defenses
Departures and restructuring will make it harder for the agency to pursue global policies that strengthen U.S. critical infrastructure, experts said.
-
Permission granted by Amazon
Q&AAmazon’s director of security on locking down enterprise AI
"We've seen hype cycles before, but this one is a little different," Mark Ryland, director of security at Amazon, told CIO Dive.
-
Just_Super via Getty Images
Researchers warn of cyberattacks targeting key Fortinet software
Experts urged Fortinet customers to immediately apply patches or disable the affected administrative interface.
Updated July 18, 2025 -
Khanchit Khirisutchalual via Getty Images
AI-powered attacks rise as CISOs prioritize AI security risks
Security executives are concerned about flaws in AI agents but also eager to see them replace humans in some roles, according to a new report.
-
Just_Super via Getty Images
Threat actor targets end-of-life SonicWall SMA 100 appliances in ongoing campaign
The hacker has deployed a backdoor to modify the boot process and has exploited several different vulnerabilities during the attack spree.
