CISA warns of supply chain risks as ransomware attacks exploit SimpleHelp flaws

The latest confirmed cyber intrusion hit a utility billing software provider and its customers.

By Eric Geller • June 13, 2025

UNFI’s operations remain hobbled following cyberattack

The grocery company had to entirely shut down its network following the intrusion and is serving customers on only a “limited basis” as it works to recover, CEO Sandy Douglas said.

By Sam Silverstein • June 11, 2025

Global law-enforcement operation targets infostealer malware

Authorities in three countries arrested 32 people and seized dozens of servers.

By Eric Geller • June 11, 2025

Marks & Spencer restores some online-order operations following cyberattack

The department store chain six weeks ago was one of the first targets in an international spree of attacks disrupting retailers.

By David Jones • June 10, 2025

From malware to deepfakes, generative AI is transforming attacks

Generative AI is even helping hackers trick open-source developers into using malicious code, according to Gartner.

By Eric Geller • June 10, 2025

Scattered Spider targeting MSPs, IT vendors in social engineering campaigns

The same group is believed to be behind a wave of attacks against retailers in the UK, the US and elsewhere.

By David Jones • June 9, 2025

SentinelOne rebuffs China-linked attack — and discovers global intrusions

The security firm said the operatives who tried to breach it turned out to be responsible for cyberattacks on dozens of critical infrastructure organizations worldwide.

By Eric Geller • Updated June 9, 2025

Understanding the evolving malware and ransomware threat landscape

Cyber threats like ransomware and malware are rising fast, hitting firms like Frederick Health and Marks & Spencer. Defense needs layers, adaptability and vigilance.

By Farid Mustafayev, Senior Software Engineer, ThreatLocker • June 9, 2025

Main distributor to Whole Foods hit by cyberattack

UNFI, a grocery retailer and wholesaler, is working to resume full operations following “unauthorized activity” involving its IT systems.

By Sam Silverstein • June 9, 2025

Hackers abuse malicious version of Salesforce tool for data theft, extortion

A threat group is using voice phishing to trick targeted organizations into sharing sensitive credentials.

By David Jones • June 4, 2025

ConnectWise warns of threat activity linked to suspected nation-state hackers

The company said suspicious activity has affected a limited number of ScreenConnect customers.

By David Jones • Updated May 30, 2025

Victoria’s Secret shuts down website in response to security incident

Although stores are open, the company has also halted some in-store services as it works to fully restore operations. 

By Kaarin Moore • May 29, 2025

Google: China-backed hackers hiding malware in calendar events

The APT41 nation-state threat group is exploiting yet another cloud service to mask its operations, according to new research.

By Eric Geller • May 29, 2025

CFOs, financial execs in crosshairs of ‘highly targeted’ spearphishing campaign

Hackers are preying on senior corporate leaders at banks, investment firms, utilities and insurance companies worldwide.

By Eric Geller • Updated May 29, 2025

Microsoft, Dutch government discover new Russian hacking group

The findings highlight the vulnerability of all critical infrastructure firms to similar attack methods.

By Eric Geller • Updated May 28, 2025

Masimo says cyberattack will not prevent it from fulfilling orders

The maker of patient monitoring devices said the incident will not have a material effect on its updated financial outlook.

By David Jones • May 27, 2025

Ohio’s Kettering Health hit by cyberattack

Elective inpatient and outpatient procedures at the health system’s facilities were canceled Tuesday.

By Emily Olsen • Updated May 21, 2025

Russia stepping up attacks on firms aiding Ukraine, Western nations warn

One of Moscow’s most infamous hacker teams is targeting logistics and technology companies supporting Kyiv’s war effort.

By Eric Geller • May 21, 2025

Microsoft leads international takedown of Lumma Stealer

The Lumma infostealer malware is a popular way for hackers to steal passwords, credit cards and cryptocurrency wallets.

By David Jones • May 21, 2025

M&S warns April cyberattack will cut $400 million from profits

The U.K. department store chain warns online transactions will be disrupted through July and says food, fashion and home goods have experienced disruptions.

By David Jones • May 21, 2025

Ivanti Endpoint Mobile Manager customers exploited via chained vulnerabilities

The company said additional CVEs may be necessary for flaws in related open-source libraries, but researchers are raising questions.  

By David Jones • Updated May 20, 2025

Hack could cost Coinbase up to $400M: filing

The crypto exchange is offering a $20 million reward for information leading to the hackers’ arrest. Coinbase terminated customer support agents who leaked customer data.

By Gabrielle Saulsbery • May 16, 2025

Tennessee’s largest school district sues PowerSchool over data breach

Memphis-Shelby County Schools’ federal lawsuit against the ed tech giant is among the latest that have been filed by over 100 other districts nationwide.

By Anna Merod • May 16, 2025

Researchers warn threat actors in UK retail attacks are targeting US sector

Google Threat Intelligence researchers say the hackers behind intrusions at multiple British retailers are launching similar social engineering attacks against American companies. 

By David Jones • May 15, 2025

Steelmaker Nucor discloses cyberattack on IT network

The company halted production at various locations and took potentially affected systems offline.

By David Jones • May 14, 2025