FBI cyber guidance to lawmakers falls short, US senator says

Sen. Ron Wyden wants FBI briefings to cover four often-overlooked cybersecurity practices.

By Eric Geller • July 2, 2025

Qantas says large amount of customer data stolen in cyberattack on call center

The attack follows a recent increase in cyberattacks and disruptions at major airlines.

By David Jones • July 2, 2025

Ahold Delhaize USA says cyberattack exposed personal data of 2M people

The intruders who gained access to the grocer’s online systems in November had access to information including birthdays, Social Security numbers and bank account details.

By Sam Silverstein • July 1, 2025

Data breach at healthcare services firm Episource affects 5.4M

The incident, one of the largest breaches reported to federal regulators this year, came after a cybercriminal accessed data on the company’s computer systems over the winter.

By Emily Olsen • June 30, 2025

Why IT teams under pressure are looking to access logs for answers

Under pressure, IT teams are tapping access logs for real-time insight—not just compliance.

By Joel Burleson-Davis, Chief Technology Officer, Imprivata • June 30, 2025

Scattered Spider appears to pivot toward aviation sector

A cyberattack on Hawaiian Airlines carries some hallmarks of the notorious cybercrime group.

By David Jones • Updated June 27, 2025

United Natural Foods says cyberattack will reduce quarterly earnings

The company, which supplies Whole Foods and other grocery stores nationwide, had to disable electronic ordering systems while responding to the attack earlier this month.

By Eric Geller • June 27, 2025

‘Suspended animation’: US government upheaval has frayed partnerships with critical infrastructure

Recent federal cuts, reorganizations and other disruptions have alarmed industry leaders, who say the government is a less reliable partner even as cyber threats increase.

By Eric Geller • June 25, 2025

Fewer ransomware attacks encrypting data, report finds

Hackers are increasingly performing extortion-only attacks.

By Eric Geller • June 24, 2025

Steelmaker Nucor restores operations, confirms limited data breach

The steel products giant said it does not expect the cyberattack to have a material impact on its operations.

By David Jones • June 23, 2025

Aflac discloses cyber intrusion linked to wider crime spree targeting insurance industry

The breach marks the latest in a series of recent attacks linked to cybercrime group Scattered Spider.

By David Jones • Updated June 20, 2025

How the cyberattack against UNFI affected 4 independent grocers

The distributor said it is still relying on manual processes to fulfill orders as it works to bring its systems back online after an intrusion earlier this month.

By Sam Silverstein • June 18, 2025

CISA warns of supply chain risks as ransomware attacks exploit SimpleHelp flaws

The latest confirmed cyber intrusion hit a utility billing software provider and its customers.

By Eric Geller • June 13, 2025

UNFI’s operations remain hobbled following cyberattack

The grocery company had to entirely shut down its network following the intrusion and is serving customers on only a “limited basis” as it works to recover, CEO Sandy Douglas said.

By Sam Silverstein • June 11, 2025

Global law-enforcement operation targets infostealer malware

Authorities in three countries arrested 32 people and seized dozens of servers.

By Eric Geller • June 11, 2025

Marks & Spencer restores some online-order operations following cyberattack

The department store chain six weeks ago was one of the first targets in an international spree of attacks disrupting retailers.

By David Jones • June 10, 2025

From malware to deepfakes, generative AI is transforming attacks

Generative AI is even helping hackers trick open-source developers into using malicious code, according to Gartner.

By Eric Geller • June 10, 2025

Scattered Spider targeting MSPs, IT vendors in social engineering campaigns

The same group is believed to be behind a wave of attacks against retailers in the UK, the US and elsewhere.

By David Jones • June 9, 2025

SentinelOne rebuffs China-linked attack — and discovers global intrusions

The security firm said the operatives who tried to breach it turned out to be responsible for cyberattacks on dozens of critical infrastructure organizations worldwide.

By Eric Geller • Updated June 9, 2025

Understanding the evolving malware and ransomware threat landscape

Cyber threats like ransomware and malware are rising fast, hitting firms like Frederick Health and Marks & Spencer. Defense needs layers, adaptability and vigilance.

By Farid Mustafayev, Senior Software Engineer, ThreatLocker • June 9, 2025

Main distributor to Whole Foods hit by cyberattack

UNFI, a grocery retailer and wholesaler, is working to resume full operations following “unauthorized activity” involving its IT systems.

By Sam Silverstein • June 9, 2025

Hackers abuse malicious version of Salesforce tool for data theft, extortion

A threat group is using voice phishing to trick targeted organizations into sharing sensitive credentials.

By David Jones • June 4, 2025

ConnectWise warns of threat activity linked to suspected nation-state hackers

The company said suspicious activity has affected a limited number of ScreenConnect customers.

By David Jones • Updated May 30, 2025

Victoria’s Secret shuts down website in response to security incident

Although stores are open, the company has also halted some in-store services as it works to fully restore operations. 

By Kaarin Moore • May 29, 2025

Google: China-backed hackers hiding malware in calendar events

The APT41 nation-state threat group is exploiting yet another cloud service to mask its operations, according to new research.

By Eric Geller • May 29, 2025