The Latest
-
Justin Sullivan / Staff via Getty Images
Critical flaw in Microsoft Copilot could have allowed zero-click attack
Researchers said the vulnerability, dubbed “EchoLeak,” could allow a hacker to access data without any specific user interaction.
Updated June 11, 2025 -
Courtesy of Johnson Controls
How AI agents could revolutionize the SOC — with human help
AI agents aren’t foolproof, but they could soon replace some of the most common tasks for cyber defenders.
-
Sean Gallup via Getty Images
Global law-enforcement operation targets infostealer malware
Authorities in three countries arrested 32 people and seized dozens of servers.
-
Peyton Bigora/Cybersecurity Dive
UNFI’s operations remain hobbled following cyberattack
The grocery company had to entirely shut down its network following the intrusion and is serving customers on only a “limited basis” as it works to recover, CEO Sandy Douglas said.
-
Khanchit Khirisutchalual via Getty Images
From malware to deepfakes, generative AI is transforming attacks
Generative AI is even helping hackers trick open-source developers into using malicious code, according to Gartner.
-
Leon Neal via Getty Images
Marks & Spencer restores some online-order operations following cyberattack
The department store chain six weeks ago was one of the first targets in an international spree of attacks disrupting retailers.
-
Courtesy of United Natural Foods, Inc.
Main distributor to Whole Foods hit by cyberattack
UNFI, a grocery retailer and wholesaler, is working to resume full operations following “unauthorized activity” involving its IT systems.
-
Andrew Brookes
SentinelOne rebuffs China-linked attack — and discovers global intrusions
The security firm said the operatives who tried to breach it turned out to be responsible for cyberattacks on dozens of critical infrastructure organizations worldwide.
Updated June 9, 2025 -
Leon Neal via Getty Images
Scattered Spider targeting MSPs, IT vendors in social engineering campaigns
The same group is believed to be behind a wave of attacks against retailers in the UK, the US and elsewhere.
-
AnnaStills via Getty Images
OpinionGartner: How to create a compelling SOC narrative for executives
Focus on financial impact, efficiency and risk management to ensure informed cybersecurity investment decisions.
-
Andrew Harnik via Getty Images
Trump scraps Biden software security, AI, post-quantum encryption efforts in new executive order
The White House accused the Biden administration of trying to “sneak problematic and distracting issues into cybersecurity policy.”
-
Spencer Platt via Getty Images
Data security is a CX issue, too
A string of cyberattacks have targeted retailers like Adidas and North Face. Incidents like these can weaken customer trust and lead to lost business, experts say.
-
wildpixel via Getty Images
Corporate executives face mounting digital threats as AI drives impersonation
Malicious actors are using deepfakes and voice-cloning technology to target senior executives in both the workplace and personal spaces.
-
Riccardo Savi via Getty Images
Trump’s national cyber director nominee dodges criticism of funding cuts
Sean Cairncross said his managerial experience has prepared him well to lead a relatively new White House cyber unit.
-
(2025). "EPA Administrator Lee Zeldin Launches the Greatest Day of Deregulation in American History" [Video]. Retrieved from U.S. Environmental Protection Agency.
Water utilities mitigate equipment flaws after researchers find widespread exposures
Censys researchers said hundreds of water treatment facilities have taken steps to protect against malicious cyber intrusions.
-
Photo illustration by Danielle Ternes/Cybersecurity Dive; photograph by yucelyilmaz via Getty Images
CISA workforce cut by nearly one-third so far
The agency has lost roughly 1,000 staffers in the wake of the Trump administration’s workforce cuts, losses that could imperil its ability to protect government computer systems and critical infrastructure.
-
Chip Somodevilla via Getty Images
FBI, CISA warn Play ransomware targeting critical infrastructure with evolving techniques
The hacker group has breached hundreds of organizations and is working with others to exploit flaws in a popular remote support tool.
-
Christopher Furlong via Getty Images
Vast array of solar power equipment left exposed online
The most commonly exposed device has been discontinued and vulnerable for a decade, new research found.
-
Sundry Photography via Getty Images
Hackers abuse malicious version of Salesforce tool for data theft, extortion
A threat group is using voice phishing to trick targeted organizations into sharing sensitive credentials.
-
OlegAlbinsky via Getty Images
Trump’s cyber nominees gain broad industry support
CISA director and national cyber director nominees could transform how the federal government engages with the private sector on cybersecurity issues.
Updated June 3, 2025 -
Lara Ewen/Cybersecurity Dive
Victoria’s Secret postponing release of report earnings amid breach impact
The intrusion follows a string of attacks that appear to be the work of the cybercrime gang Scattered Spider.
-
Matt Kapko/Cybersecurity Dive
Microsoft, CrowdStrike, other cyber firms collaborate on threat actor taxonomy
After years of confusion, leading threat-intelligence companies will streamline how they name threat groups.
-
Samuel Corum via Getty Images
Trump’s CISA budget lays out deep job cuts, program reductions
Critical infrastructure organizations and small businesses would get less support under the president’s fiscal 2026 funding plan.
Updated June 2, 2025 -
iStock / Getty Images Plus via Getty Images
SentinelOne analysis links service disruption to software flaw
The outage had major impacts on enterprise customers’ ability to manage security operations, although federal customers were not affected.
-
Phoenix, Sydney. Retrieved from U.S. Department of Homeland Security.
Senate Democrats urge DHS to reconstitute CSRB
The lawmakers said the Cyber Safety Review Board’s work has made government agencies and private businesses more secure.
