The Latest
-
Photo illustration by Danielle Ternes/Cybersecurity Dive; photograph by yucelyilmaz via Getty Images
Trump proposes major cut to CISA’s budget, citing false ‘censorship’ claims
The president’s budget proposal repeated a debunked claim about the nation’s cyber agency engaging in censorship.
Updated May 5, 2025 -
Shutterstock / Andrey_Popov
Sponsored by Zilla, a CyberArk CompanyAccess reviews can be fixed - here’s how
Drowning in spreadsheets for access reviews? There’s a smarter solution.
-
gorodenkoff via Getty Images
DOD plans to fast-track software security reviews
The Pentagon will lay out new security requirements and approval processes for the software it purchases.
-
Anna Moneymaker via Getty Images
Recent DOJ settlements suggest Biden cyber-fraud initiative still active
The Justice Department under Trump has now settled three cases that bear the hallmarks of a Biden-era cyber enforcement initiative.
Updated May 2, 2025 -
Alex Wong via Getty Images
Salt Typhoon telecom hacks one of the most consequential campaigns against US ever, expert says
A prominent former member of a recently shuttered cyber-incident review panel said the board should be reconstituted with independent authority.
-
Sundry Photography via Getty Images
Salesforce expands model lineup in support of agentic AI
The software vendor added variations to its family of large action models for on-device implementation, limited GPU resources and industrial applications.
-
Eric Thayer via Getty Images
DHS secretary vows to refocus CISA, saying it strayed from mission
Kristi Noem said the agency should be focused on securing critical infrastructure.
-
rorodenkoff via Getty Images
Operational impacts top list of vendor risk worries, study finds
The report comes as years of supply chain cyberattacks shine a spotlight on third-party risks.
-
Stock Photo via Getty Images
AI-fueled cybercrime may outpace traditional defenses, Check Point warns
The security firm said in a new report that defenders should begin using AI to counter cyber criminals’ adoption of the technology.
-
Victor Golmer via Getty Images
Critical vulnerability in SAP NetWeaver Visual Composer leads to confirmed compromises
Thousands are exposed and potentially vulnerable as researchers warn of widespread exploitation.
Updated April 30, 2025 -
Tasos Katopodis via Getty Images
Cyber experts urge Trump to abandon Chris Krebs investigation
Dozens of cyber industry luminaries, many from the election security community, said the investigation could discourage important cyber work.
-
Getty Images via Getty Images
Zero-day exploitation drops slightly from last year, Google report finds
Google’s threat intelligence team said software vendor security practices are making it harder for hackers to find flaws in some platforms.
-
JPMorgan Chase
JPMorgan Chase CISO warns software industry on supply chain security
In an open letter, Patrick Opet said third-party vendors need to embrace secure development practices over speed to market.
-
Chip Somodevilla via Getty Images
FBI seeks public tips about Salt Typhoon
The bureau’s public alert follows months of conversations with the telecom industry about the far-reaching cyber espionage campaign by a Chinese nation-state threat actor.
-
Victor Golmer via Getty Images
Critical vulnerability in SAP NetWeaver under threat of active exploitation
Attackers have been observed dropping webshell backdoors and researchers warn the application is popular among government agencies.
Updated April 25, 2025 -
Alex Wong via Getty Images
CISA gets a deputy director as it braces for major layoffs
Madhu Gottumukkala, a state CIO, lacks the homeland security experience of his two predecessors.
-
gorodenkoff/iStock via Getty Images
Threat groups exploit resurgent vulnerabilities
VPNs, routers and firewalls are being targeted via older CVEs, new GreyNoise research shows.
-
Antonio Masiello via Getty Images
CISOs band together to urge world governments to harmonize cyber rules
Policymakers have moved slowly to reduce regulatory overlap, but the new industry plea could help change that.
-
Drew Angerer via Getty Images
State Department reorganization could imperil cyber diplomacy
Congress told the U.S. State Department how to approach global cyber challenges, but the administration’s plan would upend that strategy.
-
Chip Somodevilla via Getty Images
BEC scams, investment fraud accounted for biggest cybercrime losses in 2024
Americans lost $16.6 billion to cyber fraud last year, according to an FBI report, with phishing, spoofing and extortion topping the list of complaints.
-
LuisPortugal/Getty Images Plus via Getty Images
Financial gain still drives majority of cyber threat activity
Stolen credentials are becoming a more prevalent form of initial access, a report from Mandiant shows.
-
Weedezign via Getty Images
AI impact on data breach outcomes remains ‘limited’: Verizon
While AI-generated text in malicious emails has doubled, the rate of successful phishing breaches is stable.
-
Photo illustration by Danielle Ternes/Cybersecurity Dive; photograph by yucelyilmaz via Getty Images
CISA’s Secure by Design initiative in limbo after key leaders resign
Companies have been urging CISA to scale back its software security pressure campaign. Two new resignations from the agency could accelerate that shift.
-
Andy Manis via Getty Images
Conduent warns January breach impacted a ‘significant’ number of people
The company incurred a material amount of nonrecurring expenses during Q1 related to potential notification requirements.
-
assalve via Getty Images
Banks gear up to boost cybersecurity, cloud and data spending
In the race to scale generative AI capabilities, executives plan to increase foundational technology investments, according to Broadridge.
-
David Ryder / Stringer via Getty Images
Microsoft strengthens in-house cyber governance, training
The technology giant, as part of its Secure Future Initiative program, has overhauled security practices following a series of crippling nation-state-linked cyberattacks.
