CISA updates cybersecurity benchmarks for critical infrastructure organizations

The agency streamlines and supplements goals it first issued in 2022.

By Eric Geller • Dec. 12, 2025

US, allies urge critical infrastructure operators to carefully plan and oversee AI use

New guidance attempts to temper companies’ enthusiasm for the latest exciting technology.

By Eric Geller • Dec. 4, 2025

Explore the Trendline➔

CISO Strategy

Corporate stakeholders want to better understand the risk calculus of their technology stacks, answering the lingering question: Are we a target? 

By Cybersecurity Dive staff

Lawmakers question White House on strategy for countering AI-fueled hacks

The Trump administration has said little about how it will prevent hackers from abusing AI.

By Eric Geller • Dec. 4, 2025

CISA eliminates pay incentives as it changes how it retains top cyber talent

Auditors had described the program as poorly managed. CISA is scrapping it in favor of another recruitment tool.

By Eric Geller • Dec. 3, 2025

Senators push to renew cyber grant program for state, local governments

Security experts and local officials say the program is vital to protecting the country.

By Eric Geller • Dec. 2, 2025

Gainsight CEO promises transparency as it responds to compromise of Salesforce integration

The company has been in regular contact with customers, and says only a handful have seen data directly impacted.

By David Jones • Updated Nov. 26, 2025

FCC eliminates cybersecurity requirements for telecom companies

Commissioners sharply disagreed over whether the rules were appropriate and necessary.

By Eric Geller • Nov. 20, 2025

FCC plan to scrap telecom cyber rules draws congressional backlash

A prominent U.S. senator wants the commission to rethink its plans.

By Eric Geller • Nov. 19, 2025

Trump’s cyber strategy will emphasize adversary deterrence, industry partnerships

Cyberattacks on the U.S. are “becoming more aggressive every passing day,” the national cyber director says.

By Eric Geller • Nov. 18, 2025

CISA, eyeing China, plans hiring spree to rebuild its depleted ranks

The agency will also change some of its workforce policies to avoid driving away talented staff.

By Eric Geller • Updated Nov. 18, 2025

CISO pay is on the rise, even as security budgets tighten

Companies are increasingly lavishing benefits on their top security executives, a recent report found.

By Eric Geller • Nov. 17, 2025

Companies want more from their threat intelligence platforms

Customers expect faster, more accurate and more relevant data, Recorded Future found in a new report.

By Eric Geller • Nov. 12, 2025

Shadow AI is widespread — and executives use it the most

Employees in fields like health care and finance trust AI more than they trust their colleagues, according to a new report.

By Eric Geller • Nov. 12, 2025

SonicWall says state-linked actor behind attacks against cloud backup service

CEO announces security and governance reforms inside the company, including the adoption of secure-by-design practices.

By David Jones • Nov. 6, 2025

Security leaders say AI can help with governance, threat detection, SOC automation

Executives and technical leaders differ on AI priorities, according to a report from Amazon.

By Eric Geller • Nov. 3, 2025

AI risks pack a punch, but governance provides a buffer

Enterprises strengthen governance and focus on responsible practices as more than 3 in 5 suffer AI risk-related losses of more than $1 million, EY data shows. 

By Lindsey Wilkinson • Oct. 29, 2025

UN member states sign cybercrime agreement despite industry, activist opposition

Critics say the new convention is ripe for abuse by authoritarian countries.

By Eric Geller • Oct. 27, 2025

Climbing costs, skills loss and other AI warnings for CIOs

Amid seismic change for IT leaders, enterprises need to curate survival kits to mitigate reliability and cost challenges, Gartner analysts said. 

By Lindsey Wilkinson • Oct. 23, 2025

Burned-out security leaders view AI as double-edged sword

As companies face cybersecurity skills gaps and broader attack surfaces, they’re warily turning to AI-powered automation.

By Eric Geller • Oct. 23, 2025

CISA’s international, industry and academic partnerships slashed

The latest round of sweeping layoffs could hamper the business community’s collaboration with the beleaguered cyber agency.

By Eric Geller • Oct. 22, 2025

Gartner: How to prepare for and respond to today’s evolving threat landscape

With the emergence of AI, security operations teams must navigate a fast-moving generation of cyber threats.

By Jeremy D'Hoinne, Distinguished Research VP, Gartner • Oct. 21, 2025

Top cybersecurity conferences to attend in 2026

Security experts will come together to hear about the latest risk management strategies, novel hacking techniques, cyber governance and the technologies enterprises need to defend their networks.

By Eric Geller , David Jones • Oct. 20, 2025

Why security awareness training doesn’t work — and how to fix it

Companies have built their security strategies around phishing simulations and educational webinars, tactics that research shows are ineffective.

By Eric Geller • Oct. 20, 2025

Fortune 500 companies designate specialist roles to bolster security operations teams

Four in 10 companies have created deputy CISO roles as regulatory concerns require greater board engagement.

By David Jones • Oct. 17, 2025

CISA’s latest cuts reignite concerns among Democratic lawmakers

A congressman on a key subcommittee suggests that shrinking CISA leaves Americans exposed to mounting cyber threats.

By Eric Geller • Oct. 15, 2025