Major critical infrastructure disruptions are inevitable, acting CISA chief says

In recent years, the U.S. government has reoriented its cybersecurity strategy away from prevention and toward resilience.

By Eric Geller • June 17, 2026

Cybersecurity experts blast US government for restricting Anthropic’s AI models

Chief information security officers and prominent researchers called a recent export-control ban “dangerous.”

By Eric Geller • June 15, 2026

Explore the Trendline➔

Top 5 stories from Cybersecurity Dive

tk

By Cybersecurity Dive staff

It’s Mythos’ world now. How do we live in it?

Anthropic's powerful model raises difficult questions about how government and industry should work together to safeguard systems in the AI era.

By Eric Geller • June 12, 2026

CISA gives agencies new vulnerability remediation deadlines that take risk levels into account

The cybersecurity agency says it wants to help network defenders prioritize the fixes that matter the most.

By Eric Geller • Updated June 10, 2026

Sprawling new House AI bill includes frontier model oversight, open-source security grants

The legislation has already drawn widespread criticism for its proposal to preempt state AI laws.

By Eric Geller • June 5, 2026

CISA chief says Trump AI executive order implementation will start soon

The agency, depleted after several rounds of cuts imposed by the White House, insists it can handle its new AI security responsibilities.

By Eric Geller • June 4, 2026

CISA, FBI warn that hackers are targeting systems used to monitor industrial fluids

Automatic tank gauge systems are widely used across multiple industries, including energy, agriculture and transportation.

By David Jones • June 3, 2026

Trump signs EO seeking early government access to powerful AI models

The directive represents an about-face for an administration that previously repudiated government AI reviews.

By Eric Geller • Updated June 2, 2026

How CISOs can manage sovereign-cloud security risks

Selecting and adopting cloud services from non-U.S. regional providers requires solid cyber risk and security assessment.

By Charlie Winckless, VP Analyst, Gartner Cybersecurity Leadership • May 28, 2026

FBI warns about PhaaS platform used to access Microsoft 365 environments

Device code phishing enabled hackers to bypass multifactor authentication without credentials.

By David Jones • May 26, 2026

New York regulator calls for additional cyber mitigation amid heightened threat environment

The guidance from the state Department of Financial Services arises from concerns about frontier AI and threats linked to the Iran war and other geopolitical risks.

By David Jones • May 22, 2026

Telecom sector launches its own private ISAC

Federal government involvement in an existing group chilled some cybersecurity discussions among major telecom providers. The new group is intended to alleviate those anxieties.

By Eric Geller • May 19, 2026

AI and an absent government: Takeaways from RSAC 2026

Cybersecurity professionals discussed the balance between autonomy and oversight at the recent conference.

By Eric Geller • May 12, 2026

NIST will test three major tech firms’ frontier AI models for cybersecurity risks

After Anthropic’s announcement of Claude Mythos, agencies across the government are racing to get ahead of new AI models’ potential dangers.

By Eric Geller • Updated May 21, 2026

White House questions tech industry on defensive AI use, cybersecurity resilience

Companies may be reluctant to answer some of the government’s questions, given the sensitive topics they address.

By Eric Geller • May 1, 2026

US, UK authorities warn that Firestarter backdoor malware survives patching

A federal agency was impacted by a hacking campaign that exploited flaws in Cisco devices.

By David Jones • April 27, 2026

Iran-linked hackers target water, energy in US, FBI and CISA warn

Nation-state actors have exploited flaws in industrial programmable logic controllers, leading to disruption and financial losses.

By David Jones • April 8, 2026

CISA’s vulnerability scans, field support on chopping block in Trump budget

The president is proposing to shrink the agency by nearly 900 positions.

By Eric Geller • April 7, 2026

Congress wants details from White House on cyber strategy, Iran resilience measures

Lawmakers’ aides from both parties say they want to be kept in the loop on implementation.

By Eric Geller • March 25, 2026

FCC bans import of consumer-grade routers amid national security concerns

The decision follows years of escalating attacks against the U.S. from state-linked threat groups targeting routers and edge devices.

By David Jones • Updated March 24, 2026

Companies know AI is essential for cyber defense but aren’t yet seeing returns

The maturity of organizations’ AI oversight also varies significantly, according to a new EY survey of cybersecurity leaders.

By Eric Geller • March 20, 2026

DOJ confirms seizure of domains linked to Iran-backed threat actor

A group connected to Iranian intelligence used the same infrastructure to claim credit for the hack of medical technology firm Stryker. 

By David Jones • March 20, 2026

CISA urges organizations to harden endpoint security following Stryker attack

The agency is coordinating with the FBI and other agencies amid concerns about additional threat activity involving Microsoft Intune. 

By David Jones • March 19, 2026

National cyber director expands on Trump administration’s vision for AI security, industry collaboration

The government wants AI firms to embrace security, not see it as a barrier.

By Eric Geller • Updated March 17, 2026

AI agent security: New governance framework shows progress, but critical gaps remain

New AI security framework shows progress, but seven critical vulnerabilities still need your attention.

March 16, 2026