The Latest
-
JuSun via Getty Images
Lemonade says applicant driver’s license numbers exposed
The company is notifying about 190,000 people after certain information used for car insurance quotes was left unencrypted.
-
Image generated by ChatGPT / OpenAI
Sponsored by Palo Alto NetworksHow next-generation firewalls are evolving in a world of AI-enabled cyberattacks
Discover how Next-Generation Firewalls are adapting to combat AI-enabled cyberattacks and evolving to protect organizations in today's dynamic threat landscape.
-
JHVEPhoto via Getty Images
CISA warns companies to secure credentials amid Oracle Cloud breach claims
The agency is asking organizations to come forward if they detect suspicious activity or other evidence of a compromise.
-
Getty Images via Getty Images
Older SonicWall SMA100 vulnerability exploited in the wild
CISA added the high-severity flaw, initially disclosed in 2021, to its known exploited vulnerabilities catalog this week.
-
Getty Images via Getty Images
Bill extends cyber threat info-sharing between public, private sector
The Cybersecurity Information Sharing Act of 2015, set to expire in September, “moved the needle.”
-
Photo illustration by Danielle Ternes/Cybersecurity Dive; photograph by yucelyilmaz via Getty Images
CISA launches new wave of job cuts
Critics warn that drastic downsizing of the DHS unit will threaten the nation’s ability to counter cyber adversaries.
-
iStock via Getty Images
Mitre CVE program regains funding as renewal deal reached
The information security industry feared a lapse would lead to industrywide exposures of software vulnerabilities.
-
Courtesy of Hertz/GM
Hertz says personal data breached in connection with Cleo file-transfer flaws
The company is the latest organization to investigate or disclose an incident linked to a monthslong attack spree.
-
saengsuriya13 via Getty Images
DaVita hit by ransomware attack
The kidney dialysis firm doesn’t have an estimate for how long disruption from the attack will last, though it stressed patients are still receiving care.
-
JUN LI via Getty Images
Attackers exploit zero-day flaw in Gladinet CentreStack file-sharing platform
Critical vulnerability affects both CentreStack and Gladinet’s on-premises file-sharing server, Triofox.
-
DKosig via Getty Images
Over 14K Fortinet devices compromised via new attack method
Fortinet warned last week that a threat actor was using a novel post-exploitation trick to maintain access to devices after they were patched.
-
Jessica McGowan / Stringer via Getty Images
Aviation sector faces heightened cyber risks due to vulnerable software, aging tech
A report calls on federal authorities to conduct comprehensive risk assessments and take steps to modernize the air traffic control system.
-
AntonioGuillem/Getty Images Plus via Getty Images
Remote access tools most frequently targeted as ransomware entry points
Supply chain risk via third-party vendors increased sharply last year, according to a report by At-Bay.
-
TU IS via Getty Images
Fortinet warns of threat activity against older vulnerabilities
Researchers discovered a technique that allows threat actors to maintain read-only access to vulnerable FortiGate devices after they are patched.
-
jeenah Moon via Getty Images
Windows CLFS zero-day exploited in ransomware attacks
A threat actor tracked as Storm-2460 has used PipeMagic malware to facilitate the attacks.
-
WhataWin via Getty Images
CISA adds Ivanti Connect Secure vulnerability to KEV catalog
CVE-2025-22457 is a critical stack buffer-overflow vulnerability. Ivanti had initially assessed as a low-level product bug that could not be exploited remotely.
-
Courtesy of Sam's Club
Sam’s Club investigating attack claim linked to Clop ransomware
The prolific gang is linked to the exploitation of critical flaws in Cleo file transfer software.
-
Photo illustration by Danielle Ternes/Cybersecurity Dive; photograph by yucelyilmaz via Getty Images
CISA urges fired probationary workers to respond after federal judge grants order
The agency plans to keep workers on paid administrative leave despite ongoing concerns about its ability to address cyber threats.
-
Just_Super via Getty Images
Hacker linked to Oracle Cloud intrusion threatens to sell stolen data
Security researchers from Trustwave SpiderLabs provided additional evidence backing up claims of a breach.
-
Robert Nickelsberg via Getty Images
Solar power gear vulnerable to remote sabotage
Security flaws underscore the risk of cyber threat actors commandeering parts of the electric grid.
-
iStock / Getty Images Plus via Getty Images
AI project failure rates are on the rise: report
The share of businesses scrapping most of their AI initiatives increased to 42% this year, up from 17% last year, according to S&P Global Market Intelligence.
-
JHVEPhoto via Getty Images
Tech giants seek data standards amid AI push
Microsoft, IBM and Cisco are among the vendors backing the OASIS Data Provenance Standards Technical Committee announced last week.
-
Kevin Dietsch / Getty Images via Getty Images
FCC launches national security unit to counter state-linked threats to US telecoms
The new council is part of an effort to thwart Salt Typhoon and other cyber espionage groups.
-
Stock Photo via Getty Images
82% of K-12 schools recently experienced a cyber incident
Cybercriminals are increasingly targeting school networks through phishing and social engineering, a cybersecurity nonprofit reported.
-
Oselote via Getty Images
Majority of ransomware claims involved compromise of perimeter security devices
A report by cyber insurance firm Coalition shows six of every 10 ransomware claims involved compromised VPN or firewall.
-
Getty Images via Getty Images
Former NSA cyber director warns drastic job cuts threaten national security
Rob Joyce told lawmakers mass layoffs of federal workers will hurt the ability of the U.S. to combat malicious cyber activity from China and other adversaries.
