AI-powered attacks rise as CISOs prioritize AI security risks

Security executives are concerned about flaws in AI agents but also eager to see them replace humans in some roles, according to a new report.

By Eric Geller • July 17, 2025

UNFI expects cyberattack to cost it at least $350 million in sales

Operations at the grocery distributor, whose customers include Whole Foods, have largely returned to normal, the company said.

By Sam Silverstein • July 16, 2025

DragonForce hackers claim responsibility for Belk data breach

The North Carolina-based retailer is the latest known victim in a spree of attacks in the U.K. and U.S.

By David Jones • July 15, 2025

Iran-linked hackers target US transportation, manufacturing firms

U.S. authorities have been warning of potential state-linked or hacktivist threats since the country intervened in the Israel-Iran war.

By Eric Geller • July 9, 2025

SEC seeks SolarWinds settlement in reversal for agency under new leadership

The decision by the commission, now under Republican control, could reshape the landscape of corporate accountability for cyber incidents.

By Eric Geller • July 7, 2025

Ahold Delhaize USA says cyberattack exposed personal data of 2M people

The intruders who gained access to the grocer’s online systems in November had access to information including birthdays, Social Security numbers and bank account details.

By Sam Silverstein • July 1, 2025

US authorities unmask North Korean IT worker schemes and their American accomplices

Federal officials said businesses should carefully verify the identities of remote employees to avoid falling prey to similar scams.

By Eric Geller • June 30, 2025

Data breach at healthcare services firm Episource affects 5.4M

The incident, one of the largest breaches reported to federal regulators this year, came after a cybercriminal accessed data on the company’s computer systems over the winter.

By Emily Olsen • June 30, 2025

United Natural Foods says cyberattack will reduce quarterly earnings

The company, which supplies Whole Foods and other grocery stores nationwide, had to disable electronic ordering systems while responding to the attack earlier this month.

By Eric Geller • June 27, 2025

Judge approves AT&T’s $177M data breach settlement

The settlement, which has received preliminary clearance, now awaits a December hearing for final approval.

By Alexei Alexis • June 25, 2025

Steelmaker Nucor restores operations, confirms limited data breach

The steel products giant said it does not expect the cyberattack to have a material impact on its operations.

By David Jones • June 23, 2025

Aflac discloses cyber intrusion linked to wider crime spree targeting insurance industry

The breach marks the latest in a series of recent attacks linked to cybercrime group Scattered Spider.

By David Jones • Updated June 20, 2025

How the cyberattack against UNFI affected 4 independent grocers

The distributor said it is still relying on manual processes to fulfill orders as it works to bring its systems back online after an intrusion earlier this month.

By Sam Silverstein • June 18, 2025

CISA warns of supply chain risks as ransomware attacks exploit SimpleHelp flaws

The latest confirmed cyber intrusion hit a utility billing software provider and its customers.

By Eric Geller • June 13, 2025

UNFI’s operations remain hobbled following cyberattack

The grocery company had to entirely shut down its network following the intrusion and is serving customers on only a “limited basis” as it works to recover, CEO Sandy Douglas said.

By Sam Silverstein • June 11, 2025

Marks & Spencer restores some online-order operations following cyberattack

The department store chain six weeks ago was one of the first targets in an international spree of attacks disrupting retailers.

By David Jones • June 10, 2025

Data security is a CX issue, too

A string of cyberattacks have targeted retailers like Adidas and North Face. Incidents like these can weaken customer trust and lead to lost business, experts say.

By Kristen Doerer • June 9, 2025

SentinelOne rebuffs China-linked attack — and discovers global intrusions

The security firm said the operatives who tried to breach it turned out to be responsible for cyberattacks on dozens of critical infrastructure organizations worldwide.

By Eric Geller • Updated June 9, 2025

Main distributor to Whole Foods hit by cyberattack

UNFI, a grocery retailer and wholesaler, is working to resume full operations following “unauthorized activity” involving its IT systems.

By Sam Silverstein • June 9, 2025

Hackers abuse malicious version of Salesforce tool for data theft, extortion

A threat group is using voice phishing to trick targeted organizations into sharing sensitive credentials.

By David Jones • June 4, 2025

Victoria’s Secret postponing release of report earnings amid breach impact

The intrusion follows a string of attacks that appear to be the work of the cybercrime gang Scattered Spider.

By David Jones • June 3, 2025

ConnectWise warns of threat activity linked to suspected nation-state hackers

The company said suspicious activity has affected a limited number of ScreenConnect customers.

By David Jones • Updated May 30, 2025

CFOs, financial execs in crosshairs of ‘highly targeted’ spearphishing campaign

Hackers are preying on senior corporate leaders at banks, investment firms, utilities and insurance companies worldwide.

By Eric Geller • Updated May 29, 2025

Microsoft, Dutch government discover new Russian hacking group

The findings highlight the vulnerability of all critical infrastructure firms to similar attack methods.

By Eric Geller • Updated May 28, 2025

Ohio’s Kettering Health hit by cyberattack

Elective inpatient and outpatient procedures at the health system’s facilities were canceled Tuesday.

By Emily Olsen • Updated May 21, 2025