Microsoft, CrowdStrike, other cyber firms collaborate on threat actor taxonomy

After years of confusion, leading threat-intelligence companies will streamline how they name threat groups.  

Trump’s CISA budget lays out deep job cuts, program reductions

Critical infrastructure organizations and small businesses would get less support under the president’s fiscal 2026 funding plan.

Updated June 2, 2025

SentinelOne analysis links service disruption to software flaw

The outage had major impacts on enterprise customers’ ability to manage security operations, although federal customers were not affected.

Senate Democrats urge DHS to reconstitute CSRB

The lawmakers said the Cyber Safety Review Board’s work has made government agencies and private businesses more secure.

ConnectWise warns of threat activity linked to suspected nation-state hackers

The company said suspicious activity has affected a limited number of ScreenConnect customers.

Updated May 30, 2025

Outage disrupts some SentinelOne services

Company executives said there was no indication the incident was the result of a security issue.

Thousands of ASUS routers compromised in sophisticated hacking campaign

Researchers have previously linked the suspected threat actor, dubbed ViciousTrap, to the exploitation of Cisco routers.

Victoria’s Secret shuts down website in response to security incident

Although stores are open, the company has also halted some in-store services as it works to fully restore operations. 

Google: China-backed hackers hiding malware in calendar events

The APT41 nation-state threat group is exploiting yet another cloud service to mask its operations, according to new research.

Microsoft, Dutch government discover new Russian hacking group

The findings highlight the vulnerability of all critical infrastructure firms to similar attack methods.

Updated May 28, 2025

CFOs, financial execs in crosshairs of ‘highly targeted’ spearphishing campaign

Hackers are preying on senior corporate leaders at banks, investment firms, utilities and insurance companies worldwide.

Updated May 29, 2025

Zscaler enters agreement to buy Red Canary

The agreement allows Red Canary to scale, while helping Zscaler expand into MDR.

Masimo says cyberattack will not prevent it from fulfilling orders

The maker of patient monitoring devices said the incident will not have a material effect on its updated financial outlook.

CISA loses nearly all top officials as purge continues

Most of the leaders of the agency’s operating divisions and regional offices have left or will leave this month amid the Trump administration’s aggressive government-downsizing campaign.

US authorities charge 16 in operation to disrupt DanaBot malware

Authorities said malware linked to Russia-based cybercrime group infected more than 300,000 computers around the world with the malicious code.

US, allies recommend security protections for AI models

The joint guidance comes as officials fear how hackers could manipulate AI systems, especially in critical infrastructure.

Russia stepping up attacks on firms aiding Ukraine, Western nations warn

One of Moscow’s most infamous hacker teams is targeting logistics and technology companies supporting Kyiv’s war effort.

Palo Alto Networks beats earnings estimates amid consolidation, AI concerns

Investors still have concerns about margins as the company uses incentives to drive customers into unified platform deals.

M&S warns April cyberattack will cut $400 million from profits

The U.K. department store chain warns online transactions will be disrupted through July and says food, fashion and home goods have experienced disruptions.

Microsoft leads international takedown of Lumma Stealer

The Lumma infostealer malware is a popular way for hackers to steal passwords, credit cards and cryptocurrency wallets.

AI drives cyber strategies, security execs say

Basic vulnerabilities account for most cyberattacks, but security leaders say they’re more concerned about the risks of AI, new research shows.

Updated May 21, 2025

High-profile CISA departure adds to agency’s struggles

The Trump administration’s workforce purge is sapping CISA of its best talent, experts say. CISA deputy Matt Hartman is the latest to leave the agency.

Major tech vendors call for streamlining US foreign cyber aid

A new coalition will push policymakers to change how the government oversees foreign purchases of U.S. cyber resources.

Updated May 21, 2025

Researchers warn of China-backed espionage campaign targeting laid-off US workers

A report by FDD says an elaborate online recruiting effort is using LinkedIn and fake online companies to gather sensitive intelligence.

Ivanti Endpoint Mobile Manager customers exploited via chained vulnerabilities

The company said additional CVEs may be necessary for flaws in related open-source libraries, but researchers are raising questions.  

Updated May 20, 2025