The Latest

• 

  Microsoft, Dutch government discover new Russian hacking group

  The findings highlight the vulnerability of all critical infrastructure firms to similar attack methods.

  Updated May 28, 2025

  Breaches

• 

  Sponsored by Rockwell Automation

  Build more robust OT security with the NIST framework

  Access your guide below and start your journey towards resilient, secure OT operations using the NIST framework.

  Vulnerability

• 

  CFOs, financial execs in crosshairs of ‘highly targeted’ spearphishing campaign

  Hackers are preying on senior corporate leaders at banks, investment firms, utilities and insurance companies worldwide.

  Updated May 29, 2025

  Breaches

• 

  Zscaler enters agreement to buy Red Canary

  The agreement allows Red Canary to scale, while helping Zscaler expand into MDR.

  Strategy

• 

  Masimo says cyberattack will not prevent it from fulfilling orders

  The maker of patient monitoring devices said the incident will not have a material effect on its updated financial outlook.

  Strategy

• 

  CISA loses nearly all top officials as purge continues

  Most of the leaders of the agency’s operating divisions and regional offices have left or will leave this month amid the Trump administration’s aggressive government-downsizing campaign.

  Strategy

• 

  US authorities charge 16 in operation to disrupt DanaBot malware

  Authorities said malware linked to Russia-based cybercrime group infected more than 300,000 computers around the world with the malicious code.

  Threats

• 

  US, allies recommend security protections for AI models

  The joint guidance comes as officials fear how hackers could manipulate AI systems, especially in critical infrastructure.

  Strategy

• 

  Russia stepping up attacks on firms aiding Ukraine, Western nations warn

  One of Moscow’s most infamous hacker teams is targeting logistics and technology companies supporting Kyiv’s war effort.

  Cyberattacks

• 

  Palo Alto Networks beats earnings estimates amid consolidation, AI concerns

  Investors still have concerns about margins as the company uses incentives to drive customers into unified platform deals.

  Strategy

• 

  M&S warns April cyberattack will cut $400 million from profits

  The U.K. department store chain warns online transactions will be disrupted through July and says food, fashion and home goods have experienced disruptions.

  Cyberattacks

• 

  Microsoft leads international takedown of Lumma Stealer

  The Lumma infostealer malware is a popular way for hackers to steal passwords, credit cards and cryptocurrency wallets.

  Cyberattacks

• 

  AI drives cyber strategies, security execs say

  Basic vulnerabilities account for most cyberattacks, but security leaders say they’re more concerned about the risks of AI, new research shows.

  Updated May 21, 2025

  Strategy

• 

  High-profile CISA departure adds to agency’s struggles

  The Trump administration’s workforce purge is sapping CISA of its best talent, experts say. CISA deputy Matt Hartman is the latest to leave the agency.

  Leadership & Careers

• 

  Major tech vendors call for streamlining US foreign cyber aid

  A new coalition will push policymakers to change how the government oversees foreign purchases of U.S. cyber resources.

  Updated May 21, 2025

  Leadership & Careers

• 

  Researchers warn of China-backed espionage campaign targeting laid-off US workers

  A report by FDD says an elaborate online recruiting effort is using LinkedIn and fake online companies to gather sensitive intelligence.

  Strategy

• 

  Ivanti Endpoint Mobile Manager customers exploited via chained vulnerabilities

  The company said additional CVEs may be necessary for flaws in related open-source libraries, but researchers are raising questions.  

  Updated May 20, 2025

  Vulnerability

• 

  Hack could cost Coinbase up to $400M: filing

  The crypto exchange is offering a $20 million reward for information leading to the hackers’ arrest. Coinbase terminated customer support agents who leaked customer data.

  Breaches

• 

  Hearing shows broad support for extension of cyber info-sharing law

  With bipartisan support and backing from the private sector, the 2015 law appears to be on a glide path to reauthorization.

  Strategy

• 

  Opinion

  How hospitality companies can stay ahead of cyberattacks this summer

  Hotels are a popular target for cyberattacks, but industry collaboration and intelligence sharing can serve as defense mechanisms.

  Strategy

• 

  FBI warns senior US officials are being impersonated using texts, AI-based voice cloning

  Hackers are increasingly using vishing and smishing for state-backed espionage campaigns and major ransomware attacks.

  Threats

• 

  Researchers warn threat actors in UK retail attacks are targeting US sector

  Google Threat Intelligence researchers say the hackers behind intrusions at multiple British retailers are launching similar social engineering attacks against American companies. 

  Cyberattacks

• 

  Steelmaker Nucor discloses cyberattack on IT network

  The company halted production at various locations and took potentially affected systems offline.

  Cyberattacks

• 

  GOP lawmakers urge ban of networking vendor TP-Link, citing ties to China

  The Trump administration is facing mounting pressure to formulate a strategy for addressing supply-chain threats that endanger national security.

  Strategy

• 

  Congress faces pressure to renew cyber information-sharing law

  The law’s expiration in September could jeopardize a wide range of information-sharing partnerships that have helped catch and thwart cyberattacks in the U.S.

  Leadership & Careers

• 

  UK retailer Co-op restoring systems following major cyberattack

  The company is carefully ramping up systems and is boosting deliveries to its 2,300 food stores after stock issues.

  Breaches

More stories