FBI, CISA warn about Scattered Spider’s evolving tactics

International authorities are pursuing the group following the arrests of four suspects in a series of attacks targeting British retailers.

By David Jones • July 29, 2025

Ransomware attacks against oil and gas firms surge

Manufacturing remains the No. 1 ransomware target, new data from Zscaler shows.

By Eric Geller • July 29, 2025

Explore the Trendline➔

Top 5 stories from Cybersecurity Dive

tk

By Cybersecurity Dive staff

Emerging cybersecurity needs: What the market is telling us

Default-deny, strict controls, and real-time monitoring: how to stop threats before they start.

By Yuriy Tsibere, Product Manager and Business Analyst, ThreatLocker • July 28, 2025

What we know about the Microsoft SharePoint attacks

State-linked hackers and ransomware groups are targeting SharePoint customers across the globe.

By David Jones • July 24, 2025

Clorox files $380 million suit blaming Cognizant for 2023 cyberattack

The attack, linked to Scattered Spider, disrupted production of household cleaners and other goods.

By David Jones • July 23, 2025

SharePoint hacking campaign affects hundreds of systems worldwide

CISA is responding to potential compromises at federal agencies and various state and local entities.

By David Jones • Updated July 23, 2025

Microsoft sees China-backed nation-state hackers among adversaries targeting SharePoint

The company urged customers to apply security updates as security researchers warn of escalating attacks.

By David Jones • July 22, 2025

Ransomware attacks in education jump 23% year over year

Education was the fourth-most-targeted sector during the first half of 2025, according to a report from Comparitech.

By Briana Mendez-Padilla • July 22, 2025

Dwindling federal cyber support for critical infrastructure raises alarms

A plan to transfer cybersecurity and resilience responsibilities to states could have major unintended consequences.

By Eric Geller • July 22, 2025

AI-powered attacks rise as CISOs prioritize AI security risks

Security executives are concerned about flaws in AI agents but also eager to see them replace humans in some roles, according to a new report.

By Eric Geller • July 17, 2025

UNFI expects cyberattack to cost it at least $350 million in sales

Operations at the grocery distributor, whose customers include Whole Foods, have largely returned to normal, the company said.

By Sam Silverstein • July 16, 2025

Threat actor targets end-of-life SonicWall SMA 100 appliances in ongoing campaign

The hacker has deployed a backdoor to modify the boot process and has exploited several different vulnerabilities during the attack spree.

By David Jones • July 16, 2025

Businesses are overconfident as mobile phishing scams surge

Nearly six in 10 companies experienced incidents because of voice or text phishing attacks that led to executive impersonation, according to a new report from Lookout.

By Eric Geller • July 11, 2025

Ingram Micro restores global operations following hack

The company is still assessing the full impact of the ransomware attack, which has been linked to the SafePay hacker group.

By David Jones • July 10, 2025

UK authorities arrest 4 people in probe of retail cyberattack spree

The arrests mark the first major break in a case linked to the Scattered Spider cybercrime group, although additional work continues with multiple agencies.

By David Jones • Updated July 10, 2025

Iran-linked hackers target US transportation, manufacturing firms

U.S. authorities have been warning of potential state-linked or hacktivist threats since the country intervened in the Israel-Iran war.

By Eric Geller • July 9, 2025

M&S chairman calls for mandatory disclosure of material cyberattacks

The chairman testified before British lawmakers following a major social-engineering attack on the department-store chain.

By David Jones • July 9, 2025

Qantas says cyberattack affected 5.7 million customers

The incident follows a notorious hacker gang’s pivot to targeting transportation companies with its trademark social-engineering attacks.

By David Jones • July 9, 2025

Ingram Micro makes progress on restoring operations following attack

An attack linked to the ransomware gang SafePay has disrupted certain fulfillment capabilities.  

By David Jones • July 8, 2025

Ingram Micro investigating ransomware attack

The technology company said the attack has affected its ability to process and ship orders.

By David Jones • July 7, 2025

SEC seeks SolarWinds settlement in reversal for agency under new leadership

The decision by the commission, now under Republican control, could reshape the landscape of corporate accountability for cyber incidents.

By Eric Geller • July 7, 2025

FBI cyber guidance to lawmakers falls short, US senator says

Sen. Ron Wyden wants FBI briefings to cover four often-overlooked cybersecurity practices.

By Eric Geller • July 2, 2025

Qantas says large amount of customer data stolen in cyberattack on call center

The attack follows a recent increase in cyberattacks and disruptions at major airlines.

By David Jones • Updated July 7, 2025

Ahold Delhaize USA says cyberattack exposed personal data of 2M people

The intruders who gained access to the grocer’s online systems in November had access to information including birthdays, Social Security numbers and bank account details.

By Sam Silverstein • July 1, 2025

Data breach at healthcare services firm Episource affects 5.4M

The incident, one of the largest breaches reported to federal regulators this year, came after a cybercriminal accessed data on the company’s computer systems over the winter.

By Emily Olsen • June 30, 2025