The Latest

  • Cyberhackers-Ransomware
    Image attribution tooltip
    (Gorodenkoff) via Getty Images
    Image attribution tooltip

    Scattered Spider expands its roster of tactics in recent hacks

    Microsoft researchers warn they are seeing changing patterns as the cybercrime group has started trying to hack airlines and other industries after targeting retailers and insurers.

  • A white tractor-trailer in front of a red brick building.
    Image attribution tooltip
    Sam Silverstein/Cybersecurity Dive
    Image attribution tooltip

    UNFI expects cyberattack to cost it at least $350 million in sales

    Operations at the grocery distributor, whose customers include Whole Foods, have largely returned to normal, the company said.

  • Belk storefront.
    Image attribution tooltip
    Kaarin Vembar/Cybersecurity Dive
    Image attribution tooltip

    DragonForce hackers claim responsibility for Belk data breach

    The North Carolina-based retailer is the latest known victim in a spree of attacks in the U.K. and U.S.

  • Rendered image depicting global networks.
    Image attribution tooltip
    DKosig via Getty Images
    Image attribution tooltip

    Catastrophic cyber event could cause widespread disruptions to global infrastructure, study suggests

    The study by Munich Re and CyberCube also warned that the internet of things and large language models present near-term risks.  

  • A medical team takes a patient into the isolation ward in the emergency department of a full-service acute hospital facility.
    Image attribution tooltip
    Lisa Maree Williams via Getty Images
    Image attribution tooltip

    Risk management, legacy tech pose major threats to healthcare firms, report finds

    Companies have improved their recovery processes and user controls but still lag in risk preparedness, according to the report.

  • Norfolk Southern train Bellevue Yard Ohio
    Image attribution tooltip

    Retrieved from Norfolk Southern 

    Image attribution tooltip

    Major railroad-signaling vulnerability could lead to train disruptions

    The high-severity flaw could let a hacker abruptly halt — and potentially derail — a train.

    Updated July 14, 2025
  • A series of yellow folders that depict lines of binary code running between them.
    Image attribution tooltip
    D3Damon via Getty Images
    Image attribution tooltip

    Hackers exploiting flaw in widely used Wing FTP Server

    Researchers warn that a vulnerability in the file-transfer service could enable remote code execution.

    Updated July 14, 2025
  • A towering Citrix-branded expo sign; the tagline: "Better experience"
    Image attribution tooltip

    Citrix via Flickr

    Image attribution tooltip

    Researchers, CISA confirm active exploitation of critical Citrix Netscaler flaw

    Critics have faulted Citrix for not updating its guidance in recent days, even as concerns grow about a resumption of the 2023 CitrixBleed crisis.

    Updated July 11, 2025
  • A hand with a phone in it and laptop in frame.
    Image attribution tooltip

     

    Shutterstock / TippaPatt

    Image attribution tooltip

    Businesses are overconfident as mobile phishing scams surge

    Nearly six in 10 companies experienced incidents because of voice or text phishing attacks that led to executive impersonation, according to a new report from Lookout.

  • Harrods is one of three UK-based retail companies responding to a spree of attacks beginning in April 2025.
    Image attribution tooltip
    Hollie Adams via Getty Images
    Image attribution tooltip

    UK authorities arrest 4 people in probe of retail cyberattack spree

    The arrests mark the first major break in a case linked to the Scattered Spider cybercrime group, although additional work continues with multiple agencies.

    Updated July 10, 2025
  • close up programmer man hand typing on keyboard laptop for register data system or access password at dark operation room , cyber security concept - stock photo
    Image attribution tooltip
    Chainarong Prasertthai via Getty Images
    Image attribution tooltip

    Ingram Micro restores global operations following hack

    The company is still assessing the full impact of the ransomware attack, which has been linked to the SafePay hacker group.

  • An Iranian flag hangs on the side of a damaged building
    Image attribution tooltip
    Majid Saeedi via Getty Images
    Image attribution tooltip

    Iran-linked hackers target US transportation, manufacturing firms

    U.S. authorities have been warning of potential state-linked or hacktivist threats since the country intervened in the Israel-Iran war.

  • A general view of the Marks and Spencer flagship department store.
    Image attribution tooltip
    Leon Neal via Getty Images
    Image attribution tooltip

    M&S chairman calls for mandatory disclosure of material cyberattacks

    The chairman testified before British lawmakers following a major social-engineering attack on the department-store chain.

  • Qantas plane
    Image attribution tooltip
    Scott Barbour via Getty Images
    Image attribution tooltip

    Qantas says cyberattack affected 5.7 million customers

    The incident follows a notorious hacker gang’s pivot to targeting transportation companies with its trademark social-engineering attacks.

  • Symbolic of Sino-American relations, the flag of the United States of America and the flag of the Republic of China fly together on flag poles next to each other on a sunny, windy day.
    Image attribution tooltip
    Stock via Getty Images
    Image attribution tooltip

    Suspected contractor for China’s Hafnium group arrested in Italy

    U.S. authorities charged the man and a co-conspirator with hacking COVID-19 researchers and kicking off a cyberattack spree targeting Microsoft Exchange servers. 

  • exclamation point depicted hovering above network infrastructure
    Image attribution tooltip
    Just_Super/Getty Images via Getty Images
    Image attribution tooltip

    Ingram Micro makes progress on restoring operations following attack

    An attack linked to the ransomware gang SafePay has disrupted certain fulfillment capabilities.  

  • A general view of the exterior of the branch of retailer Marks and Spencer at Westfield White City on October 20, 2020 in London, England. Marks & Spencer said customer data was accessed in an April 2025 cyberattack.
    Image attribution tooltip
    Leon Neal via Getty Images
    Image attribution tooltip

    Scattered Spider poses serious risk to several hundred major companies

    A new report shows that a select group of large companies uses technologies that the hacker group often targets.

  • Longworth Congressional Building
    Image attribution tooltip
    Win McNamee via Getty Images
    Image attribution tooltip

    Security coalition urges Congress to renew 2015 CISA law

    A group of top cybersecurity and technology firms said the law provided critical protections for sharing essential vulnerability information.

  • SolarWinds
    Image attribution tooltip
    Photo illustration by Danielle Ternes/Cybersecurity Dive; photograph by ismagilov via Getty Images
    Image attribution tooltip

    SEC seeks SolarWinds settlement in reversal for agency under new leadership

    The decision by the commission, now under Republican control, could reshape the landscape of corporate accountability for cyber incidents.

  • Team of hackers dressed in black work on computers in dark room.
    Image attribution tooltip
    gorodenkoff via Getty Images
    Image attribution tooltip

    Ingram Micro investigating ransomware attack

    The technology company said the attack has affected its ability to process and ship orders.

  • Qantas plane
    Image attribution tooltip
    Scott Barbour via Getty Images
    Image attribution tooltip

    Qantas says large amount of customer data stolen in cyberattack on call center

    The attack follows a recent increase in cyberattacks and disruptions at major airlines.

    Updated July 7, 2025
  • Sen Ron Wyden sits behind a wooden podium with a microphone.
    Image attribution tooltip
    Sarah Silbiger / Stringer via Getty Images
    Image attribution tooltip

    FBI cyber guidance to lawmakers falls short, US senator says

    Sen. Ron Wyden wants FBI briefings to cover four often-overlooked cybersecurity practices.

  • Exterior of grocery story with sign
    Image attribution tooltip
    Sam Silverstein/Cybersecurity Dive
    Image attribution tooltip

    Ahold Delhaize USA says cyberattack exposed personal data of 2M people

    The intruders who gained access to the grocer’s online systems in November had access to information including birthdays, Social Security numbers and bank account details.

  • The flag of North Korea flies from a propaganda tower near the Demilitarized Zone with South Korea
    Image attribution tooltip
    Carl Court via Getty Images
    Image attribution tooltip

    US authorities unmask North Korean IT worker schemes and their American accomplices

    Federal officials said businesses should carefully verify the identities of remote employees to avoid falling prey to similar scams.

  • A man holds an upside-down American flag and an Iranian flag as he marches down a street. Behind him, other people hold signs, one of which says, "No War On Iran."
    Image attribution tooltip
    Apu Gomes via Getty Images
    Image attribution tooltip

    US government warns of new Iran-linked cyber threats on critical infrastructure

    Companies should disconnect operational technology from the internet and enforce strong protections for user accounts, a joint alert from CISA, the FBI, NSA and DoD said.