US joins nearly two dozen other countries in striking back against DDoS-for-hire platforms

Authorities around the world seized more than 50 websites associated with DDoS “booter” services.

By Eric Geller • April 17, 2026

CIOs fret over rising security concerns amid AI adoption

AI is emerging as a critical tool and a growing threat as CIOs struggle to balance innovation with risk, according to a new report.

By Scarlett Evans • April 16, 2026

Explore the Trendline➔

Managing identity sprawl

Cyber threat actors know the simplest way to hack into an enterprise and remain under the radar is with stolen, legitimate user credentials -- and cloud services and AI are making managing and securing digital identities more challenging than ever.

By Cybersecurity Dive staff

FCC exempts Netgear from foreign router ban

The commission did not explain its action beyond citing a Defense Department determination.

By Eric Geller • April 15, 2026

Brute-force cyberattacks originating in Middle East surge in Q1

Hackers have primarily targeted SonicWall and Fortinet devices, according to researchers. 

By David Jones • April 14, 2026

FCC signals continued commitment to Cyber Trust Mark program

The government approved a new lead overseer for its IoT device security labeling initiative.

By Eric Geller • Updated April 14, 2026

US, Indonesia shut down ‘sophisticated’ phishing kit

For a nominal fee, cybercriminals could rent access to a service that maliciously duplicated popular websites’ login portals.

By Eric Geller • April 13, 2026

Nearly 4K industrial control devices vulnerable to Iran-linked hacking campaign

A research firm tallied the internet-exposed devices Iran is targeting and recommended mitigations for any infrastructure operator using them.

By Eric Geller • April 10, 2026

NERC is ‘actively monitoring the grid’ following Iran-linked cyber threat

Hackers have disrupted critical U.S. infrastructure by targeting programmable logic controllers, the Cybersecurity and Infrastructure Security Agency warned.

By Robert Walton • April 9, 2026

US operation evicts Russia from hacked SOHO routers used to breach critical infrastructure

The newly disclosed cyberattack campaign is the latest evidence of the threat end-of-life routers pose to major organizations.

By Eric Geller • Updated April 9, 2026

Iran-linked hackers target water, energy in US, FBI and CISA warn

Nation-state actors have exploited flaws in industrial programmable logic controllers, leading to disruption and financial losses.

By David Jones • April 8, 2026

Olympic Games, FIFA World Cup offer huge platforms, rich cyberattack surface

Global sporting events have become a lucrative target for criminal actors and geopolitical statements.

By David Jones • April 7, 2026

Threat cluster launches extortion campaign using social engineering

Researchers said the hackers are compromising business process outsourcers and targeting help desk support.

By David Jones • April 7, 2026

Government agencies see cyber threats as major barrier to tech improvements

Federal leaders also see opportunities to accelerate cyber defense with AI, according to a new report, but most agencies are still only testing AI tools.

By Eric Geller • April 3, 2026

Axios open-source library targeted in sophisticated supply chain attack

Researchers link the compromise to a North Korean adversary and warn the impacts could be wide ranging.

By David Jones • April 1, 2026

Iran-linked actors target Middle Eastern city governments to undermine missile-strike responses

The password-spraying campaign is the latest evidence that Iran is hitting back in cyberspace.

By Eric Geller • April 1, 2026

Iran actors’ claims raise questions about larger cyber threat to US, allies

Questions are being raised about the veracity and tactics of Iran-linked actors, amid claims that a large trove of Lockheed Martin data is on the market.

By David Jones • Updated March 31, 2026

Newly observed malware campaign likely combines AI and ClickFix

Using the techniques in tandem helps hackers evade detection, a security firm said.

By Eric Geller • March 30, 2026

Why user behavior is the primary entry point for cyberattacks

Human error still drives 60% of breaches — here’s why attackers keep targeting users.

March 30, 2026

6 trends redefining organizations’ future with IAM

With the right preparation, you can stay ahead of the most common IAM risks. Let’s explore the emerging IAM trends and what you can do to address them proactively. 

March 30, 2026

Espionage campaign targets telecom with stealthy Linux-based backdoor

A China-nexus actor has been able to gain long-term access in a bid to gather intel on government agencies and critical infrastructure providers.

By David Jones • March 27, 2026

Identity is the first line of defense, especially in an AI-fueled threat landscape

Two new reports illustrate why companies need to do a better job of scrutinizing what their human employees and AI agents are doing.

By Eric Geller • March 27, 2026

‘Do not shift budgets to AI’: How businesses should and shouldn’t respond to evolving threats

Experts said companies rushing to buy AI services risk letting their existing, still-vital defensive measures deteriorate.

By Eric Geller • March 25, 2026

Iran-linked ransomware operation targeted US healthcare provider

The Pay2Key group may have shifted its aims from extortion to destruction.

By David Jones • March 25, 2026

Congress wants details from White House on cyber strategy, Iran resilience measures

Lawmakers’ aides from both parties say they want to be kept in the loop on implementation.

By Eric Geller • March 25, 2026

Companies face difficult choices in blaming hackers for an attack

Publicly naming a hacking group can affect everything from retaliation to insurance coverage.

By Eric Geller • March 24, 2026