Cybersecurity ranks among top three risks to manufacturing sector

Most companies are planning major AI investments to address growing threats to OT systems.

By David Jones • Aug. 15, 2025

Water sector expands partnership with volunteer hackers

As threats to critical infrastructure grow and government funding stagnates, operators are turning to civic-minded volunteers from the cybersecurity industry.

By Eric Geller • Aug. 14, 2025

Explore the Trendline➔

Risk Management

An esclation of cyber risks facing businesses and government has made cyber resilience a major priority. 

By Cybersecurity Dive staff

Trump administration cyber cuts eroding private sector’s trust, confidence

A report by Swimlane shows companies are reducing cybersecurity spending and security teams are experiencing increasing pressure.

By David Jones • Updated Aug. 14, 2025

White House urged to revamp cyber regulations

A leading trade group said the Trump administration should rein in a major pending cybersecurity rule as well as embrace AI-based cyber defenses.

By Eric Geller • Aug. 14, 2025

CISA, Microsoft update guidance on Exchange Server vulnerability

Officials reiterated their belief that hackers were not exploiting the flaw, but nonetheless urged users to immediately check their systems.

By David Jones • Aug. 13, 2025

US agencies, international allies issue guidance on OT asset inventorying

The guidance includes specific examples for three critical infrastructure sectors that held workshops with CISA.

By Eric Geller • Aug. 13, 2025

Financial impact from severe OT events could top $300B

A report from industrial cybersecurity firm Dragos highlights growing risks of business interruption and supply-chain disruptions.

By David Jones • Aug. 12, 2025

Cyber experts ponder a non-government future for the CVE program

Organizations supporting the security vulnerability program said it needed changes to improve stability and rebuild trust.

By Eric Geller • Aug. 11, 2025

DARPA touts value of AI-powered vulnerability detection as it announces competition winners

The U.S. military research agency hopes to foster a new ecosystem of autonomous vulnerability remediation.

By Eric Geller • Aug. 8, 2025

CISA officials say agency is moving ahead despite workforce purge

Two senior officials defended the agency’s progress amid concerns about the effects of mass layoffs and budget cuts.

By Eric Geller • Aug. 8, 2025

NSA partnering with cyber firms to support under-resourced defense contractors

The spy agency has sought out creative ways to help protect small companies supplying the U.S. military.

By Eric Geller • Aug. 7, 2025

US still prioritizing zero-trust migration to limit hacks’ damage

The zero-trust initiative, which gained steam during the Biden administration, is still underway.

By Eric Geller • Updated Aug. 7, 2025

CISA’s relationship with industry needs work to reestablish trust, experts say

Critics say budget cuts, job losses have hurt the agency’s ability to coordinate with private industry.

By David Jones • Aug. 6, 2025

Cybersecurity budgets tighten as economic anxiety rises

Uncertain tariff policies and fluctuating inflation and interest rates are leading to stagnant or reduced budgets, according to an IANS Research report.

By Alexei Alexis • Aug. 5, 2025

DOJ reaches $9.8 million settlement with Illumina over cyber whistleblower claims

The U.S. alleged the company knowingly sold genetic-sequencing systems with software vulnerabilities to federal agencies.

By David Jones • Updated Aug. 1, 2025

Palo Alto Networks to buy CyberArk for $25 billion

The agreement could completely reshape the market for identity security, according to analysts.

By David Jones • July 30, 2025

‘Shadow AI’ increases cost of data breaches, report finds

Companies are failing to protect their AI tools from compromise, often leading to more extensive data breaches, according to new data from IBM.

By Eric Geller • July 30, 2025

FBI, CISA warn about Scattered Spider’s evolving tactics

International authorities are pursuing the group following the arrests of four suspects in a series of attacks targeting British retailers.

By David Jones • July 29, 2025

Research shows LLMs can conduct sophisticated attacks without humans

The project, launched by Carnegie Mellon in collaboration with Anthropic, simulated the 2017 Equifax data breach.

By David Jones • July 28, 2025

Senators push CISA director nominee on election security, agency focus

Sean Plankey said he would double down on CISA’s core mission and “allow the operators to operate.”

By Eric Geller • July 24, 2025

Trump AI plan calls for cybersecurity assessments, threat info-sharing

It remains unclear how federal agencies depleted by layoffs will be able to implement the strategy’s ambitious vision, which includes an ISAC dedicated to AI.

By Eric Geller • July 23, 2025

Lapsed CISA contract impedes national lab’s threat-hunting operations

The CyberSentry program remains operational, according to CISA, with analysts outside the lab continuing to review sensor data.

By Eric Geller • July 23, 2025

Dwindling federal cyber support for critical infrastructure raises alarms

A plan to transfer cybersecurity and resilience responsibilities to states could have major unintended consequences.

By Eric Geller • July 22, 2025

State Department cyber diplomacy firings and changes threaten US defenses

Departures and restructuring will make it harder for the agency to pursue global policies that strengthen U.S. critical infrastructure, experts said.

By Eric Geller • July 17, 2025

AI-powered attacks rise as CISOs prioritize AI security risks

Security executives are concerned about flaws in AI agents but also eager to see them replace humans in some roles, according to a new report.

By Eric Geller • July 17, 2025