The Latest
-
Justin Sullivan via Getty Images
FTC settles yearslong investigation into Marriott’s ‘security failures’
The settlement caps a pattern of major data breaches at Marriott and its subsidiary Starwood Hotels and Resorts Worldwide over the last decade.
-
Permission granted by Tines
Sponsored by TinesLeading CISOs weigh in on AI’s role in security: 7 key takeaways
Learn how CISOs are approaching AI adoption and embracing innovation -- while mitigating risk.
-
Nick van Bree via Getty Images
Cyber risk tops C-suite concerns heading into US election
A report by PwC shows American business leaders will continue to focus on data regulation, AI and technology investments regardless of which party prevails in November.
-
Honglouwawa via Getty Images
Decrease in deals and large rounds cut cyber funding to $2.1B in Q3
The decline in funding accentuates the inconsistent pace of venture capital investments in cyber startups.
-
iStock/Getty Images Plus via Getty Images
Trio of Ivanti CSA zero-day vulnerabilities under exploit threat
The latest round of exploitation follows more than three weeks of CVE disclosures involving various Ivanti products.
-
Viorika via Getty Images
MoneyGram attack exposed a trove of sensitive customer data
The attack led to a days-long outage in September. The money transfer firm hasn’t described the nature of the incident or said how many people are impacted.
-
The image by Jerrye & Roy Klotz, M.D. is licensed under CC BY-SA 4.0
Deep DiveCIOs turn to NIST to tackle generative AI’s many risks
Discover's CIO is one of many tech leaders working to limit generative AI missteps by turning to risk management frameworks to get deployment right from the outset.
-
Joe Raedle via Getty Images
ADT employee account data stolen in cyberattack
The alarm system company said an attacker accessed its network with compromised credentials obtained from an unnamed third party.
-
Joe Cicak via Getty Images
American Water Works investigates unauthorized cyber intrusion
The New Jersey-based utility said none of its water or wastewater operations were impacted by the hack.
-
FG Trade via Getty Images
Gender gap persists in cybersecurity field despite available opportunities
About half of women surveyed said they don’t feel like they would fit in or be able to be themselves, a Deloitte report said.
-
Alex Wong via Getty Images
Counter Ransomware Initiative summit emphasizes arduous effort
An international collective of cyber officials continued discussions with the White House on how to counter ransomware attacks, reduce payments and increase response capabilities.
-
ismagilov via Getty Images
CISOs, C-suite remain at odds over corporate cyber resilience
Security and IT executives, more than a year after a SEC vote on incident disclosure, still face an uphill battle to articulate risk strategy.
-
studio-fi via Getty Images
Economic uncertainty cools CISO hiring and compensation growth
A report by IANS and Artico Search shows the pace of CISO hiring remained slow during the first half of 2024, but is beginning to ramp back up.
-
johnemac72 via Getty Images
United Airlines leaned on real-time data to recover from the CrowdStrike outage
The airline modernized its technology foundations with better customer experiences in mind. Then, a major software outage underscored the importance of live data.
-
Photo illustration by Danielle Ternes/Cybersecurity Dive; photograph by yucelyilmaz via Getty Images
CISA’s vulnerability management program spotted 250 critical CVEs in 2023
The 51 federal civilian agencies involved in the program remediated 872 vulnerabilities last year, up 78% increase from 2022, according to CISA.
-
Justin Sullivan/Getty Images via Getty Images
What’s next for CrowdStrike on the road to repair its reputation?
The cybersecurity vendor finds itself operating from a vulnerable position. Efforts to earn back trust are complex and some require industrywide support.
-
(Gorodenkoff) via Getty Images
Ivanti up against another attack spree as hackers target its endpoint manager
Ivanti customers are facing a new series of exploitation attempts after the company pledged in April to launch a comprehensive overhaul of its internal security practices.
-
stefanovsky via Getty Images
Phishing remains cloud intrusion tactic of choice for threat groups
The long-lasting effectiveness and success of phishing campaigns underscores the most central challenge in cybersecurity — people are the weakest link.
-
(2024). "Pausing Congestion Pricing to Address Affordability and the Cost of Living in New York" [Video]. Retrieved from Governor Kathy Hochul/Youtube.
State CISOs up against a growing threat environment with minimal funding, report finds
A report by Deloitte and NASCIO warns that states do not have the resources necessary to fight state-backed and criminal threat groups.
-
Getty Plus via Getty Images
Two-thirds of healthcare organizations hit by ransomware in past year: survey
Nearly 40% of healthcare organizations reported it took more than a month to recover after an attack, according to the survey by cybersecurity firm Sophos.
-
Justin Sullivan/Getty Images via Getty Images
FCC reaches $31.5M settlement with T-Mobile over rash of data breaches
The company agreed to a major change in board-level governance and will make a series of upgrades to boost its cyber resilience.
-
Kent Nishimura via Getty Images
Ransomware attacks surge despite international enforcement effort
Progress remains elusive as federal authorities point to ransomware payments inhibiting progress to reduce the volume and impact of attacks.
-
Matt Kapko/Cybersecurity Dive
Top cybersecurity conferences to attend in 2025
Security experts from across sectors will come together to hear about the latest risk management strategies, novel hacking techniques, cyber governance and the technologies enterprises need to defend their networks.
-
gorodenkoff via Getty Images
CUPS vulnerability, a near miss, delivers another warning for open source
While a major crisis was averted, the disclosures may open up needed conversations about transparency and coordination, according to researchers.
-
gahsoon via Getty Images
Customers are done with passwords. Do businesses have a solution?
Research shows customers are frustrated with the login experience, and the friction can cost businesses customers.
-
Simonkr via Getty Images
A quartet of Linux CVEs draws exploit fears among open source community
Attackers can use the chained vulnerabilities to execute remote commands after a user initiates a print job.
