Attackers exploit critical flaw in Cisco Catalyst SD-WAN Controller

Researchers discovered the authentication bypass vulnerability while investigating a prior issue in the same service.

By David Jones • May 15, 2026

MSPs need AI to fight AI-fueled cyberthreats: Guardz

Entry points haven’t changed, but the speed and scale of attacks have intensified, the security vendor found.

By Kelly Teal, Channel Dive contributor • May 15, 2026

Explore the Trendline➔

Managing identity sprawl

Cyber threat actors know the simplest way to hack into an enterprise and remain under the radar is with stolen, legitimate user credentials -- and cloud services and AI are making managing and securing digital identities more challenging than ever.

By Cybersecurity Dive staff

Foxconn confirms cyberattack affecting some North American facilities

A ransomware group has claimed a major attack against the electronics manufacturer.

By David Jones • May 13, 2026

Canvas owner reaches ‘agreement’ with threat actors after data breach

Cybersecurity experts suggest that Instructure appears to have made a ransomware payment, which the FBI highly discourages.

By Anna Merod • May 13, 2026

AI and an absent government: Takeaways from RSAC 2026

Cybersecurity professionals discussed the balance between autonomy and oversight at the recent conference.

By Eric Geller • May 12, 2026

Second Canvas data breach causes major disruptions for schools, colleges

The Instructure-owned learning management system went offline on May 7 after a threat actor once again gained unauthorized access.

By Anna Merod • May 11, 2026

AI used to develop working zero-day exploit, researchers warn

A report by GTIG shows threat groups are increasingly leveraging AI to scale attacks. The exploitation attempt was disclosed and patched, preventing a mass incident.

By David Jones • May 11, 2026

Instructure confirms cybersecurity incident

The ed tech company that operates Canvas said information impacted by the data breach includes messages, names, email addresses and student ID numbers.

By Anna Merod • May 8, 2026

Palo Alto Networks warns state-linked cluster behind zero-day exploitation

A patch for the flaw, which hackers began targeting in early April, won’t be ready for another week.

By David Jones • May 7, 2026

Iran-sponsored threat group behind false flag social engineering campaign

The state-linked actor has been masquerading as a criminal ransomware group in attacks targeting U.S. organizations.

By David Jones • May 6, 2026

NIST will test three major tech firms’ frontier AI models for cybersecurity risks

After Anthropic’s announcement of Claude Mythos, agencies across the government are racing to get ahead of new AI models’ potential dangers.

By Eric Geller • May 6, 2026

CISA urges critical infrastructure firms to ‘fortify’ before it’s too late

As concerns mount about potential cyber sabotage by the Chinese government, the U.S. is warning operators to practice maintaining services in a degraded state.

By Eric Geller • Updated May 5, 2026

White House questions tech industry on defensive AI use, cybersecurity resilience

Companies may be reluctant to answer some of the government’s questions, given the sensitive topics they address.

By Eric Geller • May 1, 2026

As email phishing evolves, malicious attachments decline and QR codes surge

A new Microsoft report also describes the collapse of a once-dominant tool for generating phishing websites with fake CAPTCHAs.

By Eric Geller • May 1, 2026

US and allies urge ‘careful adoption’ of AI agents

New guidance from a coalition of Western governments underscores the difficult-to-predict risks of still-evolving agentic tools.

By Eric Geller • May 1, 2026

US agencies promote zero-trust practices for operational technology networks

Many zero-trust defenses work differently in industrial environments than in traditional business networks, five federal agencies said in newly published guidance.

By Eric Geller • April 30, 2026

‘Fundamental tension’ undermines manufacturers’ cybersecurity

A simple security mistake caused roughly one-quarter of all financial losses in the sector in 2025, cybersecurity insurer Resilience said.

By Eric Geller • April 28, 2026

North Korea-linked actor targets Web3 execs in social-engineering campaign

Founders and other top executives were compromised to gain access to crypto wallets.

By David Jones • April 27, 2026

US, UK authorities warn that Firestarter backdoor malware survives patching

A federal agency was impacted by a hacking campaign that exploited flaws in Cisco devices.

By David Jones • April 27, 2026

China disguises cyberattacks with ‘covert network’ botnets, US and allies warn

A new security advisory highlights Beijing’s stealthy techniques.

By Eric Geller • Updated April 23, 2026

Iran-nexus threat groups refine attacks against critical infrastructure

State-sponsored and hacktivist groups have shown greater determination to damage or disable energy, water and other key sectors.

By David Jones • April 23, 2026

Phishing — sometimes with AI’s help — topped initial-access methods in Q1, Cisco says

Hackers can now spin up fake login pages without writing a single line of code.

By Eric Geller • April 22, 2026

CISA confirms exploitation of 3 more Cisco networking device vulnerabilities

Cisco revealed six critical flaws in widely used products in February. The government has now seen evidence that hackers are abusing four of them.

By Eric Geller • April 21, 2026

Vulnerability exploitation surges often precede disclosure, offering possible early warnings

Organizations can get ahead of major flaws with the right threat intelligence, according to a new report.

By Eric Geller • April 20, 2026

US joins nearly two dozen other countries in striking back against DDoS-for-hire platforms

Authorities around the world seized more than 50 websites associated with DDoS “booter” services.

By Eric Geller • April 17, 2026