Cyberattack hits Mr. Cooper, blocks millions of mortgage payments

The loan servicing giant shut down systems after it detected the intrusion and set up alternative methods for its 4.3 million customers to make payments.

By Matt Kapko • Nov. 7, 2023

Atlassian Confluence customers confront pair of critical vulnerabilities

Back-to-back vulnerabilities in the enterprise content collaboration and management workspace remain under active attack by threat actors.

By Matt Kapko • Nov. 7, 2023

Explore the Trendline➔

Top 5 stories from Cybersecurity Dive

High-profile cybersecurity incidents and a rush to adopt new technologies illustrate the tumultuousness of 2023 so far.

By Cybersecurity Dive staff

Countries pledge to not pay ransoms, but experts question impact

There is no mandate to ban governments or businesses from paying ransom demands, but the pledge could be a step toward that outcome.

By Matt Kapko • Nov. 6, 2023

5 Okta customers snared in attack on the provider’s support system

The IAM provider says the attack was most likely linked to a compromised employee’s personal Google account or personal device.

By Matt Kapko • Nov. 3, 2023

Okta employee data breached in third-party healthcare attack

An incident at Rightway Healthcare resulted in a breach of sensitive health information of almost 5,000 Okta employees. It’s the latest in a series of security woes for the IAM provider.

By Matt Kapko • Nov. 2, 2023

Boeing confirms cyberattack, global services disrupted

The aerospace and defense company declined to describe the nature of the attack but said flight safety is not affected.

By Matt Kapko • Nov. 2, 2023

Caesars shakes off cyberattack with strong Q3 Las Vegas demand

The casino operator, however, faces extensive litigation and government inquiries following theft of its customer rewards database.

By David Jones • Nov. 1, 2023

BeyondTrust, Cloudflare averted Okta attacks thanks to security chops

With details scant, worries remain about how the attacks might have played out for less security-focused businesses that were impacted.

By Matt Kapko • Nov. 1, 2023

SEC charges SolarWinds, its CISO with fraud

The company allegedly misled investors regarding its cybersecurity practices and failed to disclose known risks, according to a complaint.

By David Jones • Updated Oct. 31, 2023

Five Guys discloses hack of 2 employees’ emails

The disclosure comes weeks after the company agreed to settle a federal class action suit stemming from a 2022 attack.

By David Jones • Oct. 30, 2023

Boeing assessing ransomware group’s claim of ‘sensitive’ data theft

A prolific Russia-affiliated group threatened to leak data if the aerospace company doesn't make contact by Nov. 2.

By Matt Kapko • Oct. 30, 2023

How to protect sensitive school data during a cyberattack

The CFO of a Texas school district recommends safer ways to request sensitive employee data and stronger password and verification policies.

By Kara Arundel • Oct. 27, 2023

High-profile summer attacks linked to same aggressive ransomware group

Microsoft researchers described Octo Tempest, or Oktapus, as one of the most dangerous financial criminal groups currently in operation.

By Matt Kapko • Oct. 27, 2023

Philadelphia discloses email compromise 5 months after initial detection

An ongoing investigation uncovered a two-month dwell time in the city’s email system that exposed some individuals’ sensitive information.

By Matt Kapko • Oct. 26, 2023

Novel zero-day exploits fuel Q3 surge in DDoS attacks

Exploits of the HTTP/2 Rapid Reset vulnerability led to record-breaking attacks as global threat activity continued into October.

By David Jones • Oct. 26, 2023

LastPass working through ‘systemic’ security overhaul

“We didn’t just address the issues that were the cause of the breach,” CEO Karim Toubba said. Still, nearly 1 in 10 customers are fleeing the password manager.

By Matt Kapko • Oct. 25, 2023

1Password caught in Okta breach, impacting employee-facing apps

The password manager came forward after BeyondTrust and Cloudflare disclosed similar Okta environment breaches. All three victims claim no data was compromised.

By Matt Kapko • Oct. 24, 2023

Citrix urges NetScaler ADC, Gateway customers to patch

The company warned of session hijacking and targeted attacks against a critical vulnerability.

By David Jones • Oct. 24, 2023

Cisco urges IOS XE customers to patch as thousands of devices remain infected

The company released enhanced guidance after security researchers were temporarily unable to detect exploited devices.

By David Jones • Oct. 24, 2023

Okta attacked again, this time hitting its support system

A threat actor accessed customer support tickets and files containing sensitive data. Okta declined to say how many customers are impacted.

By Matt Kapko • Updated Oct. 23, 2023

Cisco releases security fix for widely-exploited IOS XE software vulnerability

An unidentified threat actor is linked to attacks dating back to mid-September, resulting in about 42,000 exploited devices.

By David Jones • Updated Oct. 23, 2023

Critical flaw in JetBrains TeamCity exploited weeks after patch issued

State-linked actors are targeting the CI/CD platform, and the vendor warns backdoors are lingering undetected.

By David Jones • Oct. 20, 2023

Citrix Netscaler patch for critical CVE bypassed by malicious hackers

Citrix issued the patch on Oct. 10 for critical vulnerabilities in Netscaler ADC and Netscaler Gateway, but Mandiant is urging users to terminate all sessions.

By David Jones • Updated Oct. 19, 2023

Cisco’s critical IOS XE software zero day is a ‘bad situation’

Researchers from VulnCheck said they have found thousands of implanted hosts.

By David Jones • Oct. 17, 2023

US data compromises hit all-time high

Supply-chain attacks and zero-day exploits, such as the widespread attacks against the MOVEit file-transfer service, are surging, according to the Identity Theft Resource Center.

By Matt Kapko • Oct. 16, 2023