The Latest

  • Palo Alto Networks
    Image attribution tooltip
    Matt Kapko/Cybersecurity Dive
    Image attribution tooltip

    Palo Alto Networks’ free incentives offer sparks investor anxiety

    The firm is giving away services and offering deferred billing to corral new customers into its consolidated cybersecurity platforms.

  • A textbox with five stars blocking out a word and a lock to simulate password protection.
    Image attribution tooltip
    kaedeezign via Getty Images
    Image attribution tooltip

    IBM marks monumental shift in valid account attacks

    X-Force identified a 71% increase in valid account credential attacks, the most common point of entry last year.

  • Image attribution tooltip
    Anna Moneymaker via Getty Images
    Image attribution tooltip

    LockBit operations dismantled following international takedown

    An international group of law enforcement partners seized the infrastructure of the prolific ransomware group, obtaining decryption keys along the way. 

  • Seals of the U.S. Cyber Command, the National Security Agency and the Central Security Service.
    Image attribution tooltip
    Chip Somodevilla / Staff via Getty Images
    Image attribution tooltip

    NSA Cyber Director Rob Joyce to retire

    The NSA veteran is retiring at the end of March after 34 years with the agency. David Luber, deputy director of the Cybersecurity Directorate, will succeed Joyce.

  • software developers using computer to write code sitting at desk with multiple screens work remotely in home at night.
    Image attribution tooltip
    MTStock Studio via Getty Images
    Image attribution tooltip

    Critical infrastructure vendor PSI Software hit by ransomware

    The Germany-based company shut down systems after it detected the intrusion, and it remains offline.

    Updated Feb. 21, 2024
  • Grunge flags illustration of three countries with conflict and political problems (cracked concrete background) | USA, China and Russia
    Image attribution tooltip
    Barks_japan via Getty Images
    Image attribution tooltip

    FBI-led operation disrupts botnet controlled by state-linked Forest Blizzard

    Russia’s GRU-backed group exploited hundreds of vulnerable routers to conduct spear phishing and credential harvesting attacks against U.S. targets.

  • Microsoft CEO Satya Nadella speaks as OpenAI CEO Sam Altman looks on during the OpenAI DevDay event on November 06, 2023 in San Francisco, California.
    Image attribution tooltip
    Justin Sullivan via Getty Images
    Image attribution tooltip

    OpenAI, Microsoft warn of state-linked actors’ AI use

    Threat groups linked to Russia, China, North Korea and Iran were using AI in preparation for potential early stage hacking campaigns.

  • Creative image depicting a ransomware attack.
    Image attribution tooltip
    iStock / Getty Images Plus via Getty Images
    Image attribution tooltip

    State Department puts $10M bounty on AlphV ransomware group

    The prolific ransomware group and its affiliates are behind some of the most high-profile attacks in the last year.

  • Pipe-laying crane lowers a section of pipe into a trench.
    Image attribution tooltip
    Maksim Safaniuk via Getty Images
    Image attribution tooltip

    AlphV claims hit on Canada’s Trans-Northern Pipelines

    The pipeline operator confirmed its internal systems, including communications, were impacted by a November cyberattack. However, the pipelines and fuel delivery were never disrupted.

  • bank of america flag waving in Charlotte
    Image attribution tooltip
    Davis Turner/Stringer via Getty Images
    Image attribution tooltip

    Bank of America customer data exposed in IT provider breach

    Infosys McCamish Systems, which works closely with the lender, was impacted by the cybersecurity incident in November that exposed customer Social Security numbers and other account information.

  • A signage of Microsoft is seen on March 13, 2020 in New York City.
    Image attribution tooltip
    Jeenah Moon / Stringer via Getty Images
    Image attribution tooltip

    Microsoft Azure customers hit by phishing, account takeover attacks

    More than 200 organizations have been targeted via employee compromise, Proofpoint said.

  • cybersecurity
    Image attribution tooltip
    2d illustrations and photos via Getty Images
    Image attribution tooltip

    Contractual obligations driving data privacy, cybersecurity upgrades

    To secure work from business partners, more companies are getting serious about having the right technical and legal safeguards, a specialist says.

  • Rendering of digital data code in safety security technology concept.
    Image attribution tooltip
    iStock/Getty Images Plus via Getty Images
    Image attribution tooltip

    Ivanti Connect Secure threat activity continues as researchers flag additional flaws

    The company revised a recent vulnerability disclosure after failing to credit security firm watchTowr.

  • Digital cloud and network security. 3D computer hardware illustration.
    Image attribution tooltip
    solarseven
    Image attribution tooltip

    Attackers hit more networking gear, this time a critical Fortinet CVE

    The active exploits of Fortinet appliances come during a heightened period of China state-linked malicious activity targeting networking equipment.

  • Sphere venue in Las Vegas.
    Image attribution tooltip
    Greg Doherty via Getty Images
    Image attribution tooltip

    CISA blitzes Super Bowl with cyber campaign as businesses fumble security

    CISA brought its Secure Our World initiative to Las Vegas, for the biggest annual event in sports. Will anyone heed the advice?

  • National Cyber Director Harry Coker speaks in Washington.
    Image attribution tooltip
    Permission granted by Information Technology Industry Council
    Image attribution tooltip

    National cyber director urges private sector collaboration to counter nation-state cyber threat

    Harry Coker said the Biden administration is exploring plans to hold manufacturers accountable for poor security, while also working to harmonize regulations.

  • A sign at Lurie Children's Hospital
    Image attribution tooltip
    Jeff Schear/Getty Images for Ann and Robert H. Lurie Hospital of Chicago via Getty Images
    Image attribution tooltip

    Chicago children’s hospital confirms cyberattack, continues to provide care

    Lurie Children’s Hospital took its computer systems offline more than a week ago.

    Updated Feb. 9, 2024
  • FBI Director Chris Wray speaks at a House Select Committee hearing on Volt Typhoon. CISA Director Jen Easterly and NSA Director Gen. Paul Nakasone look on.
    Image attribution tooltip
    Kevin Dietsch via Getty Images
    Image attribution tooltip

    CISA, FBI confirm critical infrastructure intrusions by China-linked hackers

    Federal agencies urged critical infrastructure providers and tech manufacturers to take immediate action to protect against malicious threat activity from Volt Typhoon.

  • Ransomware virus has encrypted data. Attacker is offering key to unlock encrypted data for money.
    Image attribution tooltip
    vchal via Getty Images
    Image attribution tooltip

    Ransomware actors hit zero-day exploits hard in 2023

    Ransomware payments surpassed $1.1 billion and researchers say attack sprees targeting MOVEit, GoAnywhere, Citrix devices and PaperCut helped fuel the surge.

  • A picture of the exterior of the US Department of Health and Human Services. In front of the building is a black sign designating the building's name.
    Image attribution tooltip
    Alex Wong via Getty Images
    Image attribution tooltip

    HHS settles cybersecurity investigation with Montefiore Medical Center

    The nonprofit will pay $4.75 million to settle allegations that data security failures allowed an employee to steal and sell the protected health information of thousands of patients.

  • Header image for "56% of Business Leaders Are Incorporating AI Into Cybersecurity: Weekly Stat"
    Image attribution tooltip
    Andrew Brookes
    Image attribution tooltip

    JetBrains warns of another critical CVE in on-premises TeamCity servers

    The new vulnerability disclosure comes two months after authorities warned of other TeamCity exploitation activity linked to Midnight Blizzard.

  • Password input field
    Image attribution tooltip
    Getty via Getty Images
    Image attribution tooltip

    AnyDesk attack response stirs threat analyst criticism and doubts

    The company said session hijacking is "extremely unlikely" and credential compromise is a "theoretical risk," but a possibility it cannot rule out.

  • Image attribution tooltip
    (Justin Sullivan/Getty Images) via Getty Images
    Image attribution tooltip

    Clorox says it incurred $49M in costs from 2023 cyberattack

    The breach caused system disruptions that led to order processing delays and “significant product outages,” negatively impacting net sales and earnings.

  • Coin stack on international banknotes with house model on table.
    Image attribution tooltip
    Zephyr18 via Getty Images
    Image attribution tooltip

    Mortgage industry attack spree punctuates common errors

    Attacks against Mr. Cooper Group, Fidelity National Financial, First American Financial and loanDepot impacted operations and put customers in a bind.

  • An image of a digital lock is shown
    Image attribution tooltip
    Just_Super via Getty Images
    Image attribution tooltip

    Ivanti VPNs face renewed threat activity after initial patch release and new CVEs

    After weeks of mitigation efforts, CISA ordered federal civilian agencies to disconnect the devices.