Second Canvas data breach causes major disruptions for schools, colleges

The Instructure-owned learning management system went offline on May 7 after a threat actor once again gained unauthorized access.

By Anna Merod • May 11, 2026

Businesses hide vast majority of ransomware attacks, report finds

The security firm BlackFog said the number of disclosed incidents it tracked in Q1 was roughly one-tenth of the number of undisclosed incidents.

By Eric Geller • May 7, 2026

Explore the Trendline➔

Managing identity sprawl

Cyber threat actors know the simplest way to hack into an enterprise and remain under the radar is with stolen, legitimate user credentials -- and cloud services and AI are making managing and securing digital identities more challenging than ever.

By Cybersecurity Dive staff

Iran-sponsored threat group behind false flag social engineering campaign

The state-linked actor has been masquerading as a criminal ransomware group in attacks targeting U.S. organizations.

By David Jones • May 6, 2026

Trellix investigating breach of source code repository

The cybersecurity company said there is no immediate evidence of code being exploited or released.

By David Jones • May 5, 2026

Major critical infrastructure supplier reports cyberattack

Itron, which makes devices that measure energy and water use, said its operations were continuing, despite the intrusion.

By Eric Geller • April 27, 2026

Hasbro expects March cyberattack to impact second-quarter revenue

The toymaker is reviewing files and working to fully bring certain systems back online. The company will incur some costs related to the investigation.

By David Jones • April 24, 2026

Vercel systems targeted after third-party tool compromised

An employee using a consumer app was breached after granting too many permissions.

By David Jones • April 20, 2026

NERC is ‘actively monitoring the grid’ following Iran-linked cyber threat

Hackers have disrupted critical U.S. infrastructure by targeting programmable logic controllers, the Cybersecurity and Infrastructure Security Agency warned.

By Robert Walton • April 9, 2026

US operation evicts Russia from hacked SOHO routers used to breach critical infrastructure

The newly disclosed cyberattack campaign is the latest evidence of the threat end-of-life routers pose to major organizations.

By Eric Geller • Updated April 9, 2026

Hims & Hers says limited data stolen in social engineering attack

The telehealth provider said hackers gained access to a third-party customer service platform, but medical records remained secure.

By David Jones • April 6, 2026

Cyberattack hits Hasbro, impacting orders and shipping

The major U.S. toymaker and entertainment company is still working to assess if company data was stolen in the attack.

By David Jones • Updated April 1, 2026

Iran-linked actors target Middle Eastern city governments to undermine missile-strike responses

The password-spraying campaign is the latest evidence that Iran is hitting back in cyberspace.

By Eric Geller • April 1, 2026

Stryker restores most manufacturing after cyberattack

The medtech company has been working to restore manufacturing, ordering and shipping operations since it was hit by a cyberattack on March 11.

By Ricky Zipp • March 30, 2026

‘Do not shift budgets to AI’: How businesses should and shouldn’t respond to evolving threats

Experts said companies rushing to buy AI services risk letting their existing, still-vital defensive measures deteriorate.

By Eric Geller • March 25, 2026

Companies face difficult choices in blaming hackers for an attack

Publicly naming a hacking group can affect everything from retaliation to insurance coverage.

By Eric Geller • March 24, 2026

Lockheed Martin targeted in alleged breach by pro-Iran hacktivist

The group is demanding millions of dollars to not sell the information to U.S. adversaries.

By David Jones • March 23, 2026

Stryker confirms cyberattack is contained and restoration underway

An assurance letter from Palo Alto Networks provides insight into the forensic investigation at the medical technology firm.

By David Jones • March 23, 2026

Telus Digital confirms hack as ShinyHunters claims credit for massive data theft

The Canadian business-process outsourcer, which counts many major businesses among its customers, still isn’t sure what the hackers stole.

By Eric Geller • March 16, 2026

Robotics firm Intuitive Surgical says cyberattack compromised business, customer data

The company said an intruder accessed employee information, customer contact details and other records.

By Ricky Zipp • March 16, 2026

Ransomware is now less about malware and more about impersonation

Stolen passwords have replaced infectious code as the most common tactic in major breaches, Cloudflare said.

By Eric Geller • March 3, 2026

UFP Technologies investigating cyberattack that impacted company data

The medical device maker warned of short-term shipment delays, but does not see a material impact.

By David Jones • Feb. 26, 2026

AI accelerates lateral movement in cyberattacks

New research paints a grim picture of how the technology is making cyberattacks faster and easier for threat actors.

By Eric Geller • Feb. 26, 2026

China-linked hackers breached dozens of telecoms, government agencies

The cyberattacks used a clever technique: malware that hid in plain sight on Google Sheets.

By Eric Geller • Feb. 25, 2026

AI helps novice threat actor compromise FortiGate devices in dozens of countries

Generative AI tools analyzed target networks and wrote exploit code, enabling an opportunistic attacker to have an outsized impact, according to a new Amazon report.

By Eric Geller • Feb. 23, 2026

Identity and supply chain need more attention, risk intelligence firm says

Roughly a third of attacks now use stolen credentials, according to the company’s latest report.

By Eric Geller • Feb. 18, 2026