The Latest

  • exclamation point depicted hovering above network infrastructure
    Image attribution tooltip
    Just_Super/Getty Images via Getty Images
    Image attribution tooltip

    Pharmaceutical firm Inotiv investigating ransomware attack that disrupted operations

    The company says it doesn’t yet know if the incident will have a material impact.

  • Beige and blue modern office building with large windows and the “paloalto networks” logo in black and red near the top corners.
    Image attribution tooltip
    Alamy
    Image attribution tooltip

    Palo Alto Networks shares surge after company releases strong annual forecast

    The cybersecurity firm said its “platformization” strategy is beginning to pay dividends as more large customers consolidate their spending on its offerings.

  • Brightly colored digital lock with central computer processor and futuristic circuit board.
    Image attribution tooltip
    da-kuk via Getty Images
    Image attribution tooltip

    Businesses focus on AI, cloud, despite cyber defense oversights

    Recent surveys found enterprises are enthusiastically adopting AI, even as they neglect basic cybersecurity measures.

  • An artist's rendering of 3D shapes with AI, signifying a creative display of technology.
    Image attribution tooltip
    BlackJack3D via Getty Images
    Image attribution tooltip

    NIST seeks input on control overlays for securing AI systems

    The federal agency plans to develop guidance to organizations about various AI use cases.

  • Generic java programming code written on black.
    Image attribution tooltip
    funky-data via Getty Images
    Image attribution tooltip

    Developers knowingly push vulnerable code, despite growing breach risk

    Only three in 10 respondents said their application security programs were highly mature.

  • Futuristic electronic semiconductor and telecommunication network concept
    Image attribution tooltip
    Danai Jetawattana via Getty Images
    Image attribution tooltip

    Cybersecurity ranks among top three risks to manufacturing sector

    Most companies are planning major AI investments to address growing threats to OT systems.

  • An aerial view shows large pools of water at a wastewater treatment plant
    Image attribution tooltip
    Justin Sullivan via Getty Images
    Image attribution tooltip

    Water sector expands partnership with volunteer hackers

    As threats to critical infrastructure grow and government funding stagnates, operators are turning to civic-minded volunteers from the cybersecurity industry.

  • Three men sit on chairs on a stage. One man gestures with his hands while the other two look at him.
    Image attribution tooltip
    Eric Geller/Cybersecurity Dive
    Image attribution tooltip

    Trump administration cyber cuts eroding private sector’s trust, confidence

    A report by Swimlane shows companies are reducing cybersecurity spending and security teams are experiencing increasing pressure.

    Updated Aug. 14, 2025
  • The north facade of the White House is seen partially illuminated at night
    Image attribution tooltip
    Samuel Corum via Getty Images
    Image attribution tooltip

    White House urged to revamp cyber regulations

    A leading trade group said the Trump administration should rein in a major pending cybersecurity rule as well as embrace AI-based cyber defenses.

  • IT expert using digital tablet to operate network servers.
    Image attribution tooltip
    baranozdemir via Getty Images
    Image attribution tooltip

    US agencies, international allies issue guidance on OT asset inventorying

    The guidance includes specific examples for three critical infrastructure sectors that held workshops with CISA.

  • A sign displayed outside Xerox headquarters
    Image attribution tooltip
    Courtesy of Xerox
    Image attribution tooltip

    Xerox patches critical vulnerability in FreeFlow Core application

    Researchers at Horizon3.ai discovered the flaw after flagging unusual behavior in a customer environment.

    Updated Aug. 13, 2025
  • Microsoft building with logo
    Image attribution tooltip
    HJBC via Getty Images
    Image attribution tooltip

    CISA, Microsoft update guidance on Exchange Server vulnerability

    Officials reiterated their belief that hackers were not exploiting the flaw, but nonetheless urged users to immediately check their systems.

  • nucor-eaf
    Image attribution tooltip
    Courtesy of Nucor
    Image attribution tooltip

    Financial impact from severe OT events could top $300B

    A report from industrial cybersecurity firm Dragos highlights growing risks of business interruption and supply-chain disruptions.

  • Exterior of Citrix office complex.
    Image attribution tooltip
    Justin Sullivan/Getty Images via Getty Images
    Image attribution tooltip

    Citrix NetScaler flaws lead to critical infrastructure breaches

    Dutch authorities said hackers penetrated several critical infrastructure providers, in a warning sign for vulnerable organizations elsewhere.

    Updated Aug. 12, 2025
  • antitrust enforcement
    Image attribution tooltip
    Douglas Rissing via Getty Images
    Image attribution tooltip

    DOJ, international partners take down BlackSuit group’s infrastructure

    BlackSuit has been among the most prolific ransomware gangs in recent years, targeting government agencies, critical manufacturing companies and healthcare firms.

  • AI agent touch screen.
    Image attribution tooltip
    Alexander Sikov via Getty Images
    Image attribution tooltip

    Research shows AI agents are highly vulnerable to hijacking attacks

    Experts from Zenity Labs demonstrated how attackers could exploit widely deployed AI technologies for data theft and manipulation.

  • A massive electronic screen that says "DEF CON 2025" and "HUMAN 33" hangs in a large atrium.
    Image attribution tooltip
    Eric Geller/Cybersecurity Dive
    Image attribution tooltip

    Cyber experts ponder a non-government future for the CVE program

    Organizations supporting the security vulnerability program said it needed changes to improve stability and rebuild trust.

  • Six men stand on a stage. Three men hold an oversized $4 million check made out to "Team Atlanta," while two of the other men flank this trio and pose for a photo with them. The sixth person stands off to the side and applauds.
    Image attribution tooltip
    Eric Geller/Cybersecurity Dive
    Image attribution tooltip

    DARPA touts value of AI-powered vulnerability detection as it announces competition winners

    The U.S. military research agency hopes to foster a new ecosystem of autonomous vulnerability remediation.

  • Three men sit on chairs on a stage. One man gestures with his hands while the other two look at him.
    Image attribution tooltip
    Eric Geller/Cybersecurity Dive
    Image attribution tooltip

    CISA officials say agency is moving ahead despite workforce purge

    Two senior officials defended the agency’s progress amid concerns about the effects of mass layoffs and budget cuts.

  • close up programmer man hand typing on keyboard laptop for register data system or access password at dark operation room , cyber security concept - stock photo
    Image attribution tooltip
    Chainarong Prasertthai via Getty Images
    Image attribution tooltip

    Financially motivated cluster a key player in ToolShell exploitation

    Researchers from Palo Alto Networks detail ransomware deployment and malicious backdoors in a campaign against Microsoft SharePoint users.

  • An aerial view shows a series of buildings, parking lots, and highways
    Image attribution tooltip
    Patrick Smith via Getty Images
    Image attribution tooltip

    NSA partnering with cyber firms to support under-resourced defense contractors

    The spy agency has sought out creative ways to help protect small companies supplying the U.S. military.

  • exclamation point depicted hovering above network infrastructure
    Image attribution tooltip
    Just_Super/Getty Images via Getty Images
    Image attribution tooltip

    SonicWall says recent attack wave involved previously disclosed flaw, not zero-day

    The company said it had linked recent hacks to customers’ use of legacy credentials when migrating from Gen 6 to Gen 7 firewalls.

  • a microsoft storefront in a city nightscape
    Image attribution tooltip
    Jeenah Moon via Getty Images
    Image attribution tooltip

    CISA, Microsoft warn about new Microsoft Exchange server vulnerability

    The flaw could enable a hacker to perform a “total domain compromise” on affected systems, CISA said.

    Updated Aug. 7, 2025
  • A large sign reading "Black Hat" sits in the carpeted foyer of a convention center
    Image attribution tooltip
    Eric Geller/Cybersecurity Dive
    Image attribution tooltip

    US still prioritizing zero-trust migration to limit hacks’ damage

    The zero-trust initiative, which gained steam during the Biden administration, is still underway.

    Updated Aug. 7, 2025
  • Bob Ackerman, founder and managing director of AllegisCyber and DataTribe moderates a Black Hat panel Aug. 5, 2025. Marci McCarthy, director of public affairs at CISA; Rob Joyce, Data Tribe venture partner and former cybersecurity director at the NSA and Patrick Opet, CISO at JPMorgan Chase.
    Image attribution tooltip
    Permission granted by Kesserling Communications
    Image attribution tooltip

    CISA’s relationship with industry needs work to reestablish trust, experts say

    Critics say budget cuts, job losses have hurt the agency’s ability to coordinate with private industry.