What we know about the cybercrime group Scattered Spider

The notorious hacker collective has attracted the attention of government authorities in several nations around the globe. 

By David Jones • July 30, 2025

‘Shadow AI’ increases cost of data breaches, report finds

Companies are failing to protect their AI tools from compromise, often leading to more extensive data breaches, according to new data from IBM.

By Eric Geller • July 30, 2025

Explore the Trendline➔

Risk Management

An esclation of cyber risks facing businesses and government has made cyber resilience a major priority. 

By Cybersecurity Dive staff

FBI, CISA warn about Scattered Spider’s evolving tactics

International authorities are pursuing the group following the arrests of four suspects in a series of attacks targeting British retailers.

By David Jones • July 29, 2025

Ransomware attacks against oil and gas firms surge

Manufacturing remains the No. 1 ransomware target, new data from Zscaler shows.

By Eric Geller • July 29, 2025

Research shows LLMs can conduct sophisticated attacks without humans

The project, launched by Carnegie Mellon in collaboration with Anthropic, simulated the 2017 Equifax data breach.

By David Jones • July 28, 2025

Emerging cybersecurity needs: What the market is telling us

Default-deny, strict controls, and real-time monitoring: how to stop threats before they start.

By Yuriy Tsibere, Product Manager and Business Analyst, ThreatLocker • July 28, 2025

Treasury sanctions North Koreans involved in IT-worker schemes

Authorities also charged several of the indicted people with attempting to evade U.S. sanctions on North Korea.

By Eric Geller • July 25, 2025

What we know about the Microsoft SharePoint attacks

State-linked hackers and ransomware groups are targeting SharePoint customers across the globe.

By David Jones • July 24, 2025

Trump AI plan calls for cybersecurity assessments, threat info-sharing

It remains unclear how federal agencies depleted by layoffs will be able to implement the strategy’s ambitious vision, which includes an ISAC dedicated to AI.

By Eric Geller • July 23, 2025

Lapsed CISA contract impedes national lab’s threat-hunting operations

The CyberSentry program remains operational, according to CISA, with analysts outside the lab continuing to review sensor data.

By Eric Geller • July 23, 2025

Microsoft sees China-backed nation-state hackers among adversaries targeting SharePoint

The company urged customers to apply security updates as security researchers warn of escalating attacks.

By David Jones • July 22, 2025

Ransomware attacks in education jump 23% year over year

Education was the fourth-most-targeted sector during the first half of 2025, according to a report from Comparitech.

By Briana Mendez-Padilla • July 22, 2025

Dwindling federal cyber support for critical infrastructure raises alarms

A plan to transfer cybersecurity and resilience responsibilities to states could have major unintended consequences.

By Eric Geller • July 22, 2025

Top US senator calls out supply-chain risk with DoD contractors

The Senate Intelligence Committee chairman questioned the security of Microsoft’s “digital escort” arrangement with its Chinese employees.

By Eric Geller • Updated July 18, 2025

State Department cyber diplomacy firings and changes threaten US defenses

Departures and restructuring will make it harder for the agency to pursue global policies that strengthen U.S. critical infrastructure, experts said.

By Eric Geller • July 17, 2025

AI-powered attacks rise as CISOs prioritize AI security risks

Security executives are concerned about flaws in AI agents but also eager to see them replace humans in some roles, according to a new report.

By Eric Geller • July 17, 2025

Scattered Spider expands its roster of tactics in recent hacks

Microsoft researchers warn they are seeing changing patterns as the cybercrime group has started trying to hack airlines and other industries after targeting retailers and insurers.

By David Jones • July 16, 2025

Catastrophic cyber event could cause widespread disruptions to global infrastructure, study suggests

The study by Munich Re and CyberCube also warned that the internet of things and large language models present near-term risks.  

By David Jones • July 15, 2025

Risk management, legacy tech pose major threats to healthcare firms, report finds

Companies have improved their recovery processes and user controls but still lag in risk preparedness, according to the report.

By Eric Geller • July 15, 2025

DragonForce hackers claim responsibility for Belk data breach

The North Carolina-based retailer is the latest known victim in a spree of attacks in the U.K. and U.S.

By David Jones • July 15, 2025

Major railroad-signaling vulnerability could lead to train disruptions

The high-severity flaw could let a hacker abruptly halt — and potentially derail — a train.

By Eric Geller • Updated July 14, 2025

Businesses are overconfident as mobile phishing scams surge

Nearly six in 10 companies experienced incidents because of voice or text phishing attacks that led to executive impersonation, according to a new report from Lookout.

By Eric Geller • July 11, 2025

Ingram Micro restores global operations following hack

The company is still assessing the full impact of the ransomware attack, which has been linked to the SafePay hacker group.

By David Jones • July 10, 2025

UK authorities arrest 4 people in probe of retail cyberattack spree

The arrests mark the first major break in a case linked to the Scattered Spider cybercrime group, although additional work continues with multiple agencies.

By David Jones • Updated July 10, 2025

Iran-linked hackers target US transportation, manufacturing firms

U.S. authorities have been warning of potential state-linked or hacktivist threats since the country intervened in the Israel-Iran war.

By Eric Geller • July 9, 2025