CISA orders feds to patch Cisco flaws used in multiple agency hacks

One U.S. official called the ongoing cyberattack campaign “very sophisticated.”

By Eric Geller • Sept. 25, 2025

China-linked groups are using stealthy malware to hack software suppliers

Google, which disclosed the campaign, said it was one of the most significant supply-chain hacks in recent memory.

By Eric Geller • Sept. 24, 2025

Many ‘material’ cybersecurity breaches go unreported: VikingCloud

The research also found that cyberattacks have escalated both in frequency and severity in the past year, with AI serving as a primary driver behind the surge.

By Alexei Alexis • Sept. 23, 2025

SonicWall customers warned about brute force attacks against cloud backup service

Hackers have gained access to key information that could help exploit firewalls.

By David Jones • Sept. 23, 2025

Jaguar Land Rover to extend production pause into October following cyberattack

Meanwhile, Stellantis said hackers gained access to some customer information in a third-party data breach.

By David Jones • Sept. 23, 2025

UK arrests 2 more alleged Scattered Spider hackers over London transit system breach

Authorities say one of the suspects also hacked several U.S. healthcare firms.

By Eric Geller • Sept. 18, 2025

Microsoft disrupts global phishing campaign that led to widespread credential theft

Officials say the operation led to ransomware and BEC attacks on U.S. hospitals and healthcare organizations.

By David Jones • Sept. 17, 2025

Jaguar Land Rover extends production delay following cyberattack

A hacker group linked to multiple social-engineering attacks has claimed credit for the intrusion.

By David Jones • Sept. 16, 2025

Schools are getting better at navigating ransomware attacks, Sophos finds

In 2025, 67% of global lower education providers said they stopped an attack before their stolen data was encrypted, the cybersecurity company reported.

By Anna Merod • Sept. 16, 2025

Salesloft platform integration restored after probe reveals monthslong GitHub account compromise

An investigation by Mandiant found the attack began months ago, leading to a major supply chain attack.

By David Jones • Sept. 8, 2025

Cloudflare, Proofpoint say hackers gained access to Salesforce instances in attack spree

The breaches are part of hundreds of potential supply chain attacks linked to Salesloft Drift.

By David Jones • Sept. 3, 2025

Palo Alto Networks, Zscaler customers impacted by supply chain attacks

A hacking campaign using credentials linked to Salesloft Drift has impacted a growing number of companies, including downstream customers of leading cybersecurity firms.

By David Jones • Sept. 2, 2025

US, allies warn China-linked actors still targeting critical infrastructure

An advisory from 13 countries says state-backed hackers continue trying to breach telecommunications systems and other vital networks.

By Eric Geller • Aug. 27, 2025

Hackers steal data from Salesforce instances in widespread campaign

Google researchers say the hackers abused a third-party tool in an attack spree designed to harvest credentials.

By David Jones • Updated Aug. 29, 2025

FBI, Cisco warn of Russia-linked hackers targeting critical infrastructure organizations

The intrusions have exploited a vulnerability in Cisco’s networking equipment software.

By Eric Geller • Aug. 20, 2025

Hackers target Workday in social engineering attack

Researchers cite increasing evidence of collaboration between Scattered Spider and the cybercrime group ShinyHunters in the campaign.

By David Jones • Aug. 19, 2025

Developers knowingly push vulnerable code, despite growing breach risk

Only three in 10 respondents said their application security programs were highly mature.

By Eric Geller • Aug. 15, 2025

Citrix NetScaler flaws lead to critical infrastructure breaches

Dutch authorities said hackers penetrated several critical infrastructure providers, in a warning sign for vulnerable organizations elsewhere.

By Eric Geller • Updated Aug. 12, 2025

Financially motivated cluster a key player in ToolShell exploitation

Researchers from Palo Alto Networks detail ransomware deployment and malicious backdoors in a campaign against Microsoft SharePoint users.

By David Jones • Aug. 8, 2025

AI is helping hackers automate and customize cyberattacks

CrowdStrike’s annual cyber-threat-hunting report reveals the double threat that AI poses to many businesses.

By Eric Geller • Aug. 4, 2025

Ransomware gangs capitalize on law enforcement takedowns of competitors

After authorities dismantled LockBit and RansomHub, other groups rushed in to snatch up their affiliates, according to a new report that highlights a cybercrime ecosystem in flux.

By Eric Geller • July 31, 2025

‘Shadow AI’ increases cost of data breaches, report finds

Companies are failing to protect their AI tools from compromise, often leading to more extensive data breaches, according to new data from IBM.

By Eric Geller • July 30, 2025

FBI, CISA warn about Scattered Spider’s evolving tactics

International authorities are pursuing the group following the arrests of four suspects in a series of attacks targeting British retailers.

By David Jones • July 29, 2025

Ransomware attacks against oil and gas firms surge

Manufacturing remains the No. 1 ransomware target, new data from Zscaler shows.

By Eric Geller • July 29, 2025

Allianz Life discloses massive data breach linked to supply-chain attack

The intrusion comes amid a wave of recent social-engineering attacks targeting the insurance sector and other industries.

By David Jones • July 28, 2025