The Latest
-
Marco VDM via Getty Images
DeepSeek’s AI shake-up could boost cybersecurity risks, spending: report
The cybersecurity market could grow to $338 billion in value by 2033, driven in part by expanding AI risks, Bloomberg Intelligence analysts said.
-
Traitov/iStock/Getty via Getty Images
Palo Alto Networks warns hackers attempting to exploit a file read flaw in firewalls
Threat actors are chaining the CVE with at least one prior flaw to enable the hack attempts.
-
David Ryder / Stringer via Getty Images
Microsoft Power Pages vulnerability exploited in the wild
The high-severity privilege escalation flaw in Microsoft's website building application was disclosed and patched last week.
-
Hailshadow via Getty Images
Proof-of-concept exploit released for 4 Ivanti vulnerabilities
Critical flaws in Ivanti Endpoint Manager were initially disclosed and patched last month.
Updated Feb. 20, 2025 -
DKosig via Getty Images
US authorities warn Ghost ransomware leverages older CVEs
The China-linked threat group has targeted critical infrastructure providers in more than 70 countries.
-
GOCMEN via Getty Images
Tech investment firm Insight Partners discloses data breach
The company holds equity in several major technology companies, including Wiz and Kaseya.
-
TU IS via Getty Images
Lee Enterprises says cyberattack will likely have material impact
The newspaper chain said attackers encrypted critical applications and impacted billing, payments and print distribution.
-
Devrimb
SonicWall authentication flaw under threat of active exploitation
Weeks after the company released a patch, researchers warn the CVE is being targeted by threat actors.
-
Philip Steury via Getty Images
Phishing campaign targets Microsoft device-code authentication flows
Russian state-sponsored hackers have attacked enterprises and government agencies in North America and overseas.
-
Riccardo Savi via Getty Images
Trump to nominate Sean Cairncross as national cyber director
The president will tap the former RNC insider to lead the White House office that oversees nation’s cybersecurity strategy.
-
Courtesy of Trimble
CISA warns of hackers targeting vulnerability in Trimble Cityworks to conduct RCE
The software is widely used in projects by local governments, utilities, airports and other facilities.
-
JHVEPhoto via Getty Images
HPE issues breach notifications for 2023 Midnight Blizzard attack
Russian state-sponsored hackers compromised the tech giant's Office 365 email environment.
-
Photo illustration by Danielle Ternes/Cybersecurity Dive; photograph by ismagilov via Getty Images
Private equity firm to acquire SolarWinds for $4.4B
SolarWinds, which now will go private, was embroiled in a massive supply chain attack in 2020 linked to Russia-backed threat actors.
-
hapabapa via Getty Images
Microsoft warns 3K exposed ASP.NET machine keys at risk of weaponization
An unknown threat actor recently used an exposed key for code injection cyberattacks.
-
gorodenkoff/iStock via Getty Images
Suspected botnet targets edge devices using brute force attacks
Researchers warn of a surge in attempted logins targeting devices from SonicWall, Palo Alto Networks and others.
-
Motortion via Getty Images
Hackers deployed web shells, exploited public-facing applications in Q4
A Cisco Talos report also indicated a sharp increase in remote access tools being leveraged in ransomware.
-
Just_Super via Getty Images
State-linked hackers deploy macOS malware in fake job interview campaign
Actors linked to North Korea bypassed Apple security using malware called FlexibleFerret.
-
Just_Super via Getty Images
Ransomware payments fell 35% in 2024
Cyberattacks using ransomware spiked in the second half of the year, but fewer victims paid up.
-
Courtesy of Rhode Island
Deloitte pays $5M in connection with breach of Rhode Island benefits site
The company agreed to cover expenses related to recovery from the December cyberattack.
-
Atstock Productions via Getty Images
Sophos completes $859M acquisition of Secureworks
The deal comes amid a flurry of recent merger and acquisition deals in the cybersecurity sector.
-
Sarah Silbiger via Getty Images
FDA, CISA warn about vulnerabilities in patient health monitors
Vulnerabilities in certain Contec and Epsimed patient monitors can allow people to gain access and potentially manipulate the devices, the FDA warned.
-
.shock via Getty Images
The cybersecurity outlook for 2025
Threat actors are exploiting known weak points and enterprises’ dependency across the tech stack. It’s making cybersecurity professionals’ jobs harder than ever before.
-
solarseven
Security tool consolidation boosts efficiency, threat mitigation
A study from IBM shows the controversial shift to platformization can pay off for enterprises.
-
Getty Images via Getty Images
CISO stature gains traction as global cyber risk escalates
Security leaders are making inroads with corporate boards and now have a seat at the table with CEOs, a Splunk report shows.
-
simon2579 via Getty Images
What roadblocks await CISOs in 2025
Burnout seems certain as CISOs confront budget constraints, a heavy workload and job dissatisfaction.
