FBI, Cisco warn of Russia-linked hackers targeting critical infrastructure organizations

The intrusions have exploited a vulnerability in Cisco’s networking equipment software.

By Eric Geller • Aug. 20, 2025

Pharmaceutical firm Inotiv investigating ransomware attack that disrupted operations

The company says it doesn’t yet know if the incident will have a material impact.

By David Jones • Aug. 20, 2025

Explore the Trendline➔

Top 5 stories from Cybersecurity Dive

tk

By Cybersecurity Dive staff

Hackers target Workday in social engineering attack

Researchers cite increasing evidence of collaboration between Scattered Spider and the cybercrime group ShinyHunters in the campaign.

By David Jones • Aug. 19, 2025

Developers knowingly push vulnerable code, despite growing breach risk

Only three in 10 respondents said their application security programs were highly mature.

By Eric Geller • Aug. 15, 2025

Citrix NetScaler flaws lead to critical infrastructure breaches

Dutch authorities said hackers penetrated several critical infrastructure providers, in a warning sign for vulnerable organizations elsewhere.

By Eric Geller • Updated Aug. 12, 2025

DARPA touts value of AI-powered vulnerability detection as it announces competition winners

The U.S. military research agency hopes to foster a new ecosystem of autonomous vulnerability remediation.

By Eric Geller • Aug. 8, 2025

SonicWall says recent attack wave involved previously disclosed flaw, not zero-day

The company said it had linked recent hacks to customers’ use of legacy credentials when migrating from Gen 6 to Gen 7 firewalls.

By David Jones • Aug. 7, 2025

SonicWall investigating possible zero-day related to firewall attacks

Researchers recently warned about a surge in Akira ransomware attacks linked to a potential SonicWall vulnerability.

By David Jones • Aug. 5, 2025

AI is helping hackers automate and customize cyberattacks

CrowdStrike’s annual cyber-threat-hunting report reveals the double threat that AI poses to many businesses.

By Eric Geller • Aug. 4, 2025

Ransomware spike linked to potential zero-day flaw in SonicWall devices

Researchers say hackers using the Akira ransomware strain may be exploiting the vulnerability en masse.

By David Jones • Updated Aug. 4, 2025

Ransomware gangs capitalize on law enforcement takedowns of competitors

After authorities dismantled LockBit and RansomHub, other groups rushed in to snatch up their affiliates, according to a new report that highlights a cybercrime ecosystem in flux.

By Eric Geller • July 31, 2025

What we know about the cybercrime group Scattered Spider

The notorious hacker collective has attracted the attention of government authorities in several nations around the globe. 

By David Jones • July 30, 2025

‘Shadow AI’ increases cost of data breaches, report finds

Companies are failing to protect their AI tools from compromise, often leading to more extensive data breaches, according to new data from IBM.

By Eric Geller • July 30, 2025

FBI, CISA warn about Scattered Spider’s evolving tactics

International authorities are pursuing the group following the arrests of four suspects in a series of attacks targeting British retailers.

By David Jones • July 29, 2025

Ransomware attacks against oil and gas firms surge

Manufacturing remains the No. 1 ransomware target, new data from Zscaler shows.

By Eric Geller • July 29, 2025

Emerging cybersecurity needs: What the market is telling us

Default-deny, strict controls, and real-time monitoring: how to stop threats before they start.

By Yuriy Tsibere, Product Manager and Business Analyst, ThreatLocker • July 28, 2025

What we know about the Microsoft SharePoint attacks

State-linked hackers and ransomware groups are targeting SharePoint customers across the globe.

By David Jones • July 24, 2025

Clorox files $380 million suit blaming Cognizant for 2023 cyberattack

The attack, linked to Scattered Spider, disrupted production of household cleaners and other goods.

By David Jones • July 23, 2025

SharePoint hacking campaign affects hundreds of systems worldwide

CISA is responding to potential compromises at federal agencies and various state and local entities.

By David Jones • Updated July 23, 2025

Microsoft sees China-backed nation-state hackers among adversaries targeting SharePoint

The company urged customers to apply security updates as security researchers warn of escalating attacks.

By David Jones • July 22, 2025

Ransomware attacks in education jump 23% year over year

Education was the fourth-most-targeted sector during the first half of 2025, according to a report from Comparitech.

By Briana Mendez-Padilla • July 22, 2025

Dwindling federal cyber support for critical infrastructure raises alarms

A plan to transfer cybersecurity and resilience responsibilities to states could have major unintended consequences.

By Eric Geller • July 22, 2025

AI-powered attacks rise as CISOs prioritize AI security risks

Security executives are concerned about flaws in AI agents but also eager to see them replace humans in some roles, according to a new report.

By Eric Geller • July 17, 2025

UNFI expects cyberattack to cost it at least $350 million in sales

Operations at the grocery distributor, whose customers include Whole Foods, have largely returned to normal, the company said.

By Sam Silverstein • July 16, 2025

Threat actor targets end-of-life SonicWall SMA 100 appliances in ongoing campaign

The hacker has deployed a backdoor to modify the boot process and has exploited several different vulnerabilities during the attack spree.

By David Jones • July 16, 2025