The Latest
-
Getty Images
Medium-severity flaw in Microsoft SharePoint exploited
The flaw should be taken seriously, despite its relatively low score, according to researchers.
Updated April 16, 2026 -
Mark Wilson via Getty Images
FCC signals continued commitment to Cyber Trust Mark program
The government approved a new lead overseer for its IoT device security labeling initiative.
Updated April 14, 2026 -
Getty Images
Brute-force cyberattacks originating in Middle East surge in Q1
Hackers have primarily targeted SonicWall and Fortinet devices, according to researchers.
-
Getty Images
US, Indonesia shut down ‘sophisticated’ phishing kit
For a nominal fee, cybercriminals could rent access to a service that maliciously duplicated popular websites’ login portals.
-
Getty Images
CISOs see gaps in their incident response playbooks
A survey by Sygnia reveals that senior-level security leaders fear they are not prepared to respond to the next cyberattack.
-
Alamy
Stryker warns of earnings fallout from March cyberattack
The medtech company was targeted in a wiper attack linked to an Iran-sponsored threat group.
-
Getty Images
Nearly 4K industrial control devices vulnerable to Iran-linked hacking campaign
A research firm tallied the internet-exposed devices Iran is targeting and recommended mitigations for any infrastructure operator using them.
-
Getty Images
CISA adds second critical flaw in Ivanti EPMM to exploited vulnerabilities catalog
The code injection flaw is similar to a prior vulnerability that was immediately flagged in January.
-
Michael Gruber via Getty Images
Iran-linked hackers target water, energy in US, FBI and CISA warn
Nation-state actors have exploited flaws in industrial programmable logic controllers, leading to disruption and financial losses.
-
Majid Saeedi/Getty Image via Getty Images
NERC is ‘actively monitoring the grid’ following Iran-linked cyber threat
Hackers have disrupted critical U.S. infrastructure by targeting programmable logic controllers, the Cybersecurity and Infrastructure Security Agency warned.
-
Jens Domschky via Getty Images
US operation evicts Russia from hacked SOHO routers used to breach critical infrastructure
The newly disclosed cyberattack campaign is the latest evidence of the threat end-of-life routers pose to major organizations.
Updated April 9, 2026 -
Massimo Rosi via Getty Images
Olympic Games, FIFA World Cup offer huge platforms, rich cyberattack surface
Global sporting events have become a lucrative target for criminal actors and geopolitical statements.
-
Getty Images
CISA’s vulnerability scans, field support on chopping block in Trump budget
The president is proposing to shrink the agency by nearly 900 positions.
-
Getty Images
React2Shell vulnerability helps hackers steal credentials, AI platform keys and other sensitive data
The stolen information could help intruders plan follow-up attacks and breach more organizations, Cisco researchers said.
-
Getty Images
Threat cluster launches extortion campaign using social engineering
Researchers said the hackers are compromising business process outsourcers and targeting help desk support.
-
Courtesy of Fortinet
Critical flaw in FortiClient EMS under exploitation
Fortinet released an emergency hotfix after security researchers discovered the vulnerability being exploited as a zero-day.
Updated April 6, 2026 -
Courtesy of Hims & Hers
Hims & Hers says limited data stolen in social engineering attack
The telehealth provider said hackers gained access to a third-party customer service platform, but medical records remained secure.
-
Eric Geller/Cybersecurity Dive
Trump’s FY2027 budget again targets CISA
The White House reiterated accusations about CISA’s counter-misinformation work to justify a major proposed reduction.
-
Getty Images
Researchers warn of critical flaws in Progress ShareFile
Attackers could chain vulnerabilities together, leading to configuration changes or remote code execution.
-
solarseven
Government agencies see cyber threats as major barrier to tech improvements
Federal leaders also see opportunities to accelerate cyber defense with AI, according to a new report, but most agencies are still only testing AI tools.
-
Jessica McGowan via Getty Images
Retail and hospitality CISOs expect budget growth, new AI headaches and opportunities
More than eight in 10 security leaders in the sector say they’ve rolled out an AI governance framework to some degree, a new survey found.
-
Courtesy of F5 Press Kit
Critical flaw in F5 BIG-IP faces wide exploitation risk
The company revised a security advisory as newly disclosed information heightens the potential impact.
-
gorodenkoff via Getty Images
Axios open-source library targeted in sophisticated supply chain attack
Researchers link the compromise to a North Korean adversary and warn the impacts could be wide ranging.
-
Cyberattack hits Hasbro, impacting orders and shipping
The major U.S. toymaker and entertainment company is still working to assess if company data was stolen in the attack.
Updated April 1, 2026 -
Majid Saeedi/ via Getty Images
Iran-linked actors target Middle Eastern city governments to undermine missile-strike responses
The password-spraying campaign is the latest evidence that Iran is hitting back in cyberspace.
