Agentic AI surges in financial sector even as many firms fail to manage security risks

One-fifth of firms aren’t even sure if they’ve been hacked through their AI tools, according to a new report.

By Eric Geller • June 12, 2026

It’s Mythos’ world now. How do we live in it?

Anthropic's powerful model raises difficult questions about how government and industry should work together to safeguard systems in the AI era.

By Eric Geller • June 12, 2026

Explore the Trendline➔

Managing identity sprawl

Cyber threat actors know the simplest way to hack into an enterprise and remain under the radar is with stolen, legitimate user credentials -- and cloud services and AI are making managing and securing digital identities more challenging than ever.

By Cybersecurity Dive staff

Enterprises report increasing budgets for security training in AI and other critical topics

Finding the time to train employees remains the biggest impediment to programs’ success, according to a new report.

By Eric Geller • June 11, 2026

FIFA World Cup expected to face extensive criminal, hacktivist cyber threats

Researchers warn that thousands of malicious domains are already in place, as fans and tournament organizers face potential attacks.

By David Jones • June 11, 2026

CISA gives agencies new vulnerability remediation deadlines that take risk levels into account

The cybersecurity agency says it wants to help network defenders prioritize the fixes that matter the most.

By Eric Geller • Updated June 10, 2026

Companies are failing to keep up with AI’s identity sprawl, creating entry points for hackers

Three-quarters of organizations say they aren’t fully overseeing the activities of user accounts belonging to agents and other AI tools.

By Eric Geller • June 10, 2026

IT sector faces growing threats from IP-hungry China, AI-enabled cybercriminals

Businesses also need to watch out for North Korean remote IT worker schemes, according to a new CrowdStrike report.

By Eric Geller • June 9, 2026

Companies aren’t prepared for how AI is accelerating impersonation attacks

Businesses generally aren’t taking a proactive enough approach to blocking schemes that spoof their leaders’ identities, according to a new report.

By Eric Geller • June 8, 2026

Cisco warns zero-day flaw in SD-WAN is being exploited

The company cautioned that no current patches are available and the flaw could allow an attacker to conduct command injection attacks.

By David Jones • June 5, 2026

Sprawling new House AI bill includes frontier model oversight, open-source security grants

The legislation has already drawn widespread criticism for its proposal to preempt state AI laws.

By Eric Geller • June 5, 2026

‘Don’t panic’: AI reality checks dominate major cybersecurity conference

CISOs and their colleagues should focus on network security basics, not overhyped AI promises, analysts said at a Gartner cybersecurity event.

By Eric Geller • June 3, 2026

CISA, FBI warn that hackers are targeting systems used to monitor industrial fluids

Automatic tank gauge systems are widely used across multiple industries, including energy, agriculture and transportation.

By David Jones • June 3, 2026

Trump signs EO seeking early government access to powerful AI models

The directive represents an about-face for an administration that previously repudiated government AI reviews.

By Eric Geller • Updated June 2, 2026

Turning tension into collaboration: How CIOs and CISOs can lead together

If properly managed and channeled, age-old friction between IT and cybersecurity can create a more resilient organization.

By Tom Scholtz, Distinguished VP Analyst, Gartner • June 2, 2026

CISA adds critical Palo Alto Networks firewall flaw to KEV as company, researchers warn of exploitation

The vulnerability in a vital defensive technology creates serious risks for federal networks, CISA said.

By Eric Geller • June 1, 2026

CISA urges security teams to check for software development compromises

The agency warned about a wave of attacks targeting credentials and other secrets across critical supply chains.

By David Jones • May 29, 2026

IBM’s new $5B initiative will help enterprises rapidly patch open-source vulnerabilities

The tech giant’s project could make it easier for businesses to safely use open-source packages.

By Eric Geller • May 28, 2026

Enterprise data is creeping its way into shadow AI tools

Executives and employees are clashing over usage policies as AI security concerns rise, an Okta report found.

By Paige Gross • May 28, 2026

Coordinated operation takes down Glassworm botnet

The botnet began in early 2025, targeting software developers across the open-source supply chain.

By David Jones • May 27, 2026

FBI warns about PhaaS platform used to access Microsoft 365 environments

Device code phishing enabled hackers to bypass multifactor authentication without credentials.

By David Jones • May 26, 2026

Iran-linked hackers target key US, allied sectors with sophisticated spear-phishing messages

Companies, particularly those in the affected industries, should harden their defenses against impersonation schemes, Palo Alto Networks said.

By Eric Geller • May 22, 2026

New York regulator calls for additional cyber mitigation amid heightened threat environment

The guidance from the state Department of Financial Services arises from concerns about frontier AI and threats linked to the Iran war and other geopolitical risks.

By David Jones • May 22, 2026

Grafana Labs links GitHub environment breach to TanStack npm supply chain attack

The company behind the widely used observability platform refused an extortion demand and has since taken steps to harden its security.

By David Jones • May 21, 2026

Microsoft disrupts cybercrime operation that hid behind legitimate software

The Fox Tempest malware-signing-as-a-service operation was linked to numerous ransomware attacks.

By David Jones • May 20, 2026

Compromised coding tool helped hackers breach thousands of GitHub repositories

The attack is the latest example of hackers’ intense focus on open-source packages.

By Eric Geller • May 20, 2026