Breaches
-
Data breach hits car insurance provider
Hackers gained access to more than 6.9 million records at AssuranceAmerica by targeting a company employee.
By David Jones • July 9, 2026 -
Ransomware ecosystem grows, but ‘four-headed monster’ dominates
AI is helping hackers, a new report finds, but mostly by automating very human behaviors.
By Eric Geller • July 9, 2026 -
Explore the Trendline➔
Getty Images
TrendlineManaging identity sprawl
Cyber threat actors know the simplest way to hack into an enterprise and remain under the radar is with stolen, legitimate user credentials -- and cloud services and AI are making managing and securing digital identities more challenging than ever.
By Cybersecurity Dive staff -
Accenture faces massive data breach that could put clients at risk
The threat actor claiming responsibility says they stole source code, encryption keys and more.
By Eric Geller • July 8, 2026 -
Alleged member of Scattered Spider extradited to US
A man with dual U.S.-Estonian citizenship was charged in connection to the hack of a luxury jewelry retailer.
By David Jones • July 6, 2026 -
Most cybersecurity workers have been told to conceal a breach, report finds
Security firm Bitdefender also found that U.S. companies were simultaneously more confident and more strained on cyber defense than foreign peers.
By Eric Geller • July 2, 2026 -
Retrieved from iStock.
Insurance body confirms hackers posted Oracle PeopleSoft breach data
NAIC warned that some ratings agencies have suspended data feeds as a precaution.
By David Jones • Updated June 29, 2026 -
Ransomware attacks grew in 2025 as traditional data breaches fell
In a new report, Bitsight charted a massive surge in internet-exposed AI services.
By Eric Geller • June 24, 2026 -
Klue investigating supply chain attack that targeted Salesforce integrations
Customer data from several prominent cybersecurity firms was among that of hundreds of potential enterprise victims.
By David Jones • June 23, 2026 -
CISA urges device hardening after thousands of Fortinet credentials compromised
Security researchers warn of a months-long FortiBleed campaign targeting western organizations.
By David Jones • June 22, 2026 -
AI adoption correlates with incident frequency, underscoring need for governance
Even organizations that haven’t been breached expect an AI-related incident in the near future, a new survey found.
By Eric Geller • June 16, 2026 -
IT sector faces growing threats from IP-hungry China, AI-enabled cybercriminals
Businesses also need to watch out for North Korean remote IT worker schemes, according to a new CrowdStrike report.
By Eric Geller • June 9, 2026 -
Dozens of Red Hat npm packages targeted in supply chain attack
Researchers said a variant of the Mini Shai-Hulud is involved in the compromise.
By David Jones • June 2, 2026 -
Iranian government, not hacktivist group, breached LA Metro system, security firm says
A report by Israel-based Gambit Security dismisses the hackers’ claims of being patriotic but unaffiliated activists.
By Eric Geller • May 26, 2026 -
Grafana Labs links GitHub environment breach to TanStack npm supply chain attack
The company behind the widely used observability platform refused an extortion demand and has since taken steps to harden its security.
By David Jones • May 21, 2026 -
7-Eleven hit by data breach
The retailer confirmed that an unauthorized third party gained access to certain systems used to store franchisee documents earlier this spring.
By Brett Dworski • May 20, 2026 -
Compromised coding tool helped hackers breach thousands of GitHub repositories
The attack is the latest example of hackers’ intense focus on open-source packages.
By Eric Geller • May 20, 2026 -
Grafana Labs says hacker gained access to codebase through leaked token
The company, which operates a widely used observability platform, is refusing to pay an extortion demand.
By David Jones • Updated May 19, 2026 -
Second Canvas data breach causes major disruptions for schools, colleges
The Instructure-owned learning management system went offline on May 7 after a threat actor once again gained unauthorized access.
By Anna Merod • May 11, 2026 -
Businesses hide vast majority of ransomware attacks, report finds
The security firm BlackFog said the number of disclosed incidents it tracked in Q1 was roughly one-tenth of the number of undisclosed incidents.
By Eric Geller • May 7, 2026 -
Retrieved from NASA's Moderate Resolution Imaging Spectroradiometer.
Iran-sponsored threat group behind false flag social engineering campaign
The state-linked actor has been masquerading as a criminal ransomware group in attacks targeting U.S. organizations.
By David Jones • May 6, 2026 -
Trellix investigating breach of source code repository
The cybersecurity company said there is no immediate evidence of code being exploited or released.
By David Jones • May 5, 2026 -
Major critical infrastructure supplier reports cyberattack
Itron, which makes devices that measure energy and water use, said its operations were continuing, despite the intrusion.
By Eric Geller • April 27, 2026 -
Hasbro expects March cyberattack to impact second-quarter revenue
The toymaker is reviewing files and working to fully bring certain systems back online. The company will incur some costs related to the investigation.
By David Jones • April 24, 2026 -
Vercel systems targeted after third-party tool compromised
An employee using a consumer app was breached after granting too many permissions.
By David Jones • April 20, 2026 -
NERC is ‘actively monitoring the grid’ following Iran-linked cyber threat
Hackers have disrupted critical U.S. infrastructure by targeting programmable logic controllers, the Cybersecurity and Infrastructure Security Agency warned.
By Robert Walton • April 9, 2026