Jaguar Land Rover begins phased restoration of services following cyberattack

The luxury automaker is working diligently to clear payment backlogs and resume the shipment of parts. 

By David Jones • Sept. 26, 2025

CISA orders feds to patch Cisco flaws used in multiple agency hacks

One U.S. official called the ongoing cyberattack campaign “very sophisticated.”

By Eric Geller • Sept. 25, 2025

Explore the Trendline➔

Top 5 stories from Cybersecurity Dive

tk

By Cybersecurity Dive staff

China-linked groups are using stealthy malware to hack software suppliers

Google, which disclosed the campaign, said it was one of the most significant supply-chain hacks in recent memory.

By Eric Geller • Sept. 24, 2025

SonicWall customers warned about brute force attacks against cloud backup service

Hackers have gained access to key information that could help exploit firewalls.

By David Jones • Sept. 23, 2025

Jaguar Land Rover to extend production pause into October following cyberattack

Meanwhile, Stellantis said hackers gained access to some customer information in a third-party data breach.

By David Jones • Sept. 23, 2025

Social engineering campaigns highlight the ability to exploit human behavior

A report by S&P says organizations should consider changes to strengthen cyber governance, training and awareness. 

By David Jones • Sept. 22, 2025

AI-powered vulnerability detection will make things worse, not better, former US cyber official warns

Patching won’t be able to keep up with discovery, said Rob Joyce, who once led the National Security Agency's elite hacking team.

By Eric Geller • Sept. 22, 2025

Flights across Europe delayed after cyberattack targets third-party vendor

A suspected ransomware attack targeting a U.S. company that provides check-in technology has led to widespread flight disruptions since Friday.

By David Jones • Sept. 22, 2025

UK arrests 2 more alleged Scattered Spider hackers over London transit system breach

Authorities say one of the suspects also hacked several U.S. healthcare firms.

By Eric Geller • Sept. 18, 2025

Healthcare firms’ hack-related losses outpace those of other sectors

Companies in the healthcare sector experienced far more attacks costing more than $500,000 compared with organizations in other industries, according to a new report.

By Eric Geller • Sept. 18, 2025

Bridgestone Americas restores facilities’ network connections following cyberattack

The tire maker said it has begun to ramp up production but is still closely monitoring its processes for any issues.

By David Jones • Sept. 17, 2025

Jaguar Land Rover extends production delay following cyberattack

A hacker group linked to multiple social-engineering attacks has claimed credit for the intrusion.

By David Jones • Sept. 16, 2025

Context is key in a world of identity-based attacks and alert fatigue

A new report highlights why businesses struggle to separate true cyber threats from false positives.

By Eric Geller • Sept. 16, 2025

How the retail sector teams up to defend against cybercrime

The cyberthreat intel-sharing and collaboration group RH-ISAC is helping companies confront cyberattacks. But the challenge is delivering timely intelligence in a dynamic threat environment.

By Eric Geller • Sept. 11, 2025

How AI and politics hampered the secure open-source software movement

Tech giants pledged millions to secure open-source code. Then AI came along.

By Eric Geller • Sept. 9, 2025

Bridgestone Americas continues probe as it looks to restore operations

The tiremaker disclosed a cyberattack just days after Jaguar Land Rover was impacted by a major hack that also disrupted production at certain locations. 

By David Jones • Sept. 9, 2025

Salesloft platform integration restored after probe reveals monthslong GitHub account compromise

An investigation by Mandiant found the attack began months ago, leading to a major supply chain attack.

By David Jones • Sept. 8, 2025

Researchers warn of zero-day vulnerability in SiteCore products

Mandiant said it was able to disarm a ViewState deserialization attack leveraging exposed ASP.NET keys.

By David Jones • Updated Sept. 4, 2025

How the newest ISAC aims to help food and agriculture firms thwart cyberattacks

Food industry executives used to shrug off ransomware and cyber-espionage risks. A threat intel group is helping to change that, but its reach remains unclear.

By Eric Geller • Sept. 4, 2025

Cloudflare, Proofpoint say hackers gained access to Salesforce instances in attack spree

The breaches are part of hundreds of potential supply chain attacks linked to Salesloft Drift.

By David Jones • Sept. 3, 2025

Palo Alto Networks, Zscaler customers impacted by supply chain attacks

A hacking campaign using credentials linked to Salesloft Drift has impacted a growing number of companies, including downstream customers of leading cybersecurity firms.

By David Jones • Sept. 2, 2025

Federal, state officials investigating ransomware attack targeting Nevada

The Sunday attack disrupted key services across the state and led to the theft of some data.

By David Jones • Updated Aug. 29, 2025

US, allies warn China-linked actors still targeting critical infrastructure

An advisory from 13 countries says state-backed hackers continue trying to breach telecommunications systems and other vital networks.

By Eric Geller • Aug. 27, 2025

Hackers steal data from Salesforce instances in widespread campaign

Google researchers say the hackers abused a third-party tool in an attack spree designed to harvest credentials.

By David Jones • Updated Aug. 29, 2025

Credential harvesting campaign targets ScreenConnect cloud administrators

Researchers warn that attackers are using compromised Amazon email accounts in spear-phishing attacks that may lead to ransomware infections.

By David Jones • Aug. 25, 2025