The Latest
-
Congress faces pressure to renew cyber information-sharing law
The law’s expiration in September could jeopardize a wide range of information-sharing partnerships that have helped catch and thwart cyberattacks in the U.S.
-
UK retailer Co-op restoring systems following major cyberattack
The company is carefully ramping up systems and is boosting deliveries to its 2,300 food stores after stock issues.
-
M&S says hackers gained access to customer data in April cyberattack
The UK retailer said the payment data was masked and therefore not usable.
-
China helps North Korean operatives land IT roles, bypassing sanctions
One Chinese company with at least 35 affiliates has shipped IT equipment to a North Korean government-backed organization.
Updated May 14, 2025 -
Lee Enterprises spent $2M for ransomware recovery
The newspaper chain said the attack will have lingering impacts on its balance sheet, and its lender waived certain payments.
-
PowerSchool data breach leads to school extortion attempts
A threat actor has contacted multiple school districts demanding payments related to student and staff data stolen in a December breach.
-
SAP NetWeaver exploitation enters second wave of threat activity
Researchers are tracking hundreds of cases around the world and warning that the risk is more serious than previously known.
-
Defense contractors get a head start on CMMC audits
Software investments, infrastructure upgrades and compliance documentation topped the list of Cybersecurity Maturity Model Certification implementation costs, a new survey shows.
-
CISA, FBI warn of ‘unsophisticated’ hackers targeting industrial systems
Federal authorities, including the EPA and the U.S. Department of Energy, urged network defenders to secure remote access and use stronger passwords.
-
Ransomware claims dipped slightly in 2024, cyber insurer says
A major cyber insurer’s annual report lays out how hackers are trying to steal money and how its policyholders responded.
-
CrowdStrike to cut 500 jobs in plan to scale business
The cybersecurity firm has faced increasing market pressures amid a scramble by rivals to consolidate enterprise customers on unified platforms.
Updated May 8, 2025 -
Masimo says cyberattack has impacted its ability to fulfill orders
The maker of patient monitoring devices does not currently expect to change its earnings guidance.
-
Retrieved from R. Eskalis/NIST.
NIST loses key cyber experts in standards and research
The head of the agency’s Computer Security Division and roughly a dozen of his subordinates took the Trump administration’s retirement offers, placing key programs at risk.
-
Airlines in North America prioritize investments in cyber, AI
Spending plans come amid rising concerns over third-party cyber risk.
-
UK authorities warn of retail-sector risks following cyberattack spree
Three major retail brands, including Harrods and M&S, have been targeted in recent weeks.
-
Photo illustration by Danielle Ternes/Cybersecurity Dive; photograph by yucelyilmaz via Getty Images
Trump proposes major cut to CISA’s budget, citing false ‘censorship’ claims
The president’s budget proposal repeated a debunked claim about the nation’s cyber agency engaging in censorship.
Updated May 5, 2025 -
DOD plans to fast-track software security reviews
The Pentagon will lay out new security requirements and approval processes for the software it purchases.
-
Recent DOJ settlements suggest Biden cyber-fraud initiative still active
The Justice Department under Trump has now settled three cases that bear the hallmarks of a Biden-era cyber enforcement initiative.
Updated May 2, 2025 -
Salt Typhoon telecom hacks one of the most consequential campaigns against US ever, expert says
A prominent former member of a recently shuttered cyber-incident review panel said the board should be reconstituted with independent authority.
-
Salesforce expands model lineup in support of agentic AI
The software vendor added variations to its family of large action models for on-device implementation, limited GPU resources and industrial applications.
-
DHS secretary vows to refocus CISA, saying it strayed from mission
Kristi Noem said the agency should be focused on securing critical infrastructure.
-
Operational impacts top list of vendor risk worries, study finds
The report comes as years of supply chain cyberattacks shine a spotlight on third-party risks.
-
AI-fueled cybercrime may outpace traditional defenses, Check Point warns
The security firm said in a new report that defenders should begin using AI to counter cyber criminals’ adoption of the technology.
-
Critical vulnerability in SAP NetWeaver Visual Composer leads to confirmed compromises
Thousands are exposed and potentially vulnerable as researchers warn of widespread exploitation.
Updated April 30, 2025 -
Cyber experts urge Trump to abandon Chris Krebs investigation
Dozens of cyber industry luminaries, many from the election security community, said the investigation could discourage important cyber work.