Congress wants details from White House on cyber strategy, Iran resilience measures

Lawmakers’ aides from both parties say they want to be kept in the loop on implementation.

By Eric Geller • March 25, 2026

FCC bans import of consumer-grade routers amid national security concerns

The decision follows years of escalating attacks against the U.S. from state-linked threat groups targeting routers and edge devices.

By David Jones • Updated March 24, 2026

Explore the Trendline➔

Top 5 stories from Cybersecurity Dive

tk

By Cybersecurity Dive staff

Companies know AI is essential for cyber defense but aren’t yet seeing returns

The maturity of organizations’ AI oversight also varies significantly, according to a new EY survey of cybersecurity leaders.

By Eric Geller • March 20, 2026

DOJ confirms seizure of domains linked to Iran-backed threat actor

A group connected to Iranian intelligence used the same infrastructure to claim credit for the hack of medical technology firm Stryker. 

By David Jones • March 20, 2026

CISA urges organizations to harden endpoint security following Stryker attack

The agency is coordinating with the FBI and other agencies amid concerns about additional threat activity involving Microsoft Intune. 

By David Jones • March 19, 2026

National cyber director expands on Trump administration’s vision for AI security, industry collaboration

The government wants AI firms to embrace security, not see it as a barrier.

By Eric Geller • Updated March 17, 2026

AI agent security: New governance framework shows progress, but critical gaps remain

New AI security framework shows progress, but seven critical vulnerabilities still need your attention.

March 16, 2026

Industry to NIST: Keep agentic AI standards flexible and voluntary

The business community said security guidance should reflect the nascency and diversity of the field.

By Eric Geller • March 11, 2026

US entities face heightened cyber risk related to Iran war

The military campaign against Iran is putting local governments, critical infrastructure providers and major U.S. companies at heightened risk of disruptive attacks.

By David Jones • March 10, 2026

Conflicting definitions and timelines cause cybersecurity regulation morass, industry reps say

A recent Government Accountability Office report highlights businesses’ frustrations with the way the government currently oversees cybersecurity.

By Eric Geller • March 9, 2026

Trump’s new cybersecurity strategy makes promises but lacks details

In a document released Friday, the administration vowed to increase the government’s use of AI for rapid cyber defense.

By Eric Geller • March 6, 2026

Microsoft, Europol disrupt global phishing platform Tycoon 2FA

The service helped cybercriminals bypass multifactor authentication and led to business email compromise and ransomware.

By David Jones • March 5, 2026

Plankey’s nomination as CISA director now in jeopardy

News that Sean Plankey has left his post at DHS comes amid rising risks to U.S. critical infrastructure from Iran-linked hackers and worries over a weakened CISA.

By Eric Geller • Updated March 5, 2026

Iran-linked hackers raise threat level against US, allies

Security researchers warn that hacktivists and state-linked groups are using DDoS, phishing and other tactics against critical infrastructure.

By David Jones • Updated March 2, 2026

Trump administration removes controversial acting CISA director

The new agency chief, Nick Andersen, has significantly more senior cybersecurity leadership experience, which has given some demoralized employees hope.

By Eric Geller • Updated Feb. 27, 2026

New security research finds governance determines trust in AI

As AI adoption deepens, governance determines whether security teams can trust it.

By Niall Heffernan, Staff GRC Analyst, Tines • Feb. 17, 2026

CISA seeks infrastructure sector consultation on incident reporting rule

The agency is particularly interested in feedback on several aspects of the long-awaited regulation.

By Eric Geller • Feb. 12, 2026

CISA orders feds to disconnect unsupported network edge devices

The government is worried about hackers accessing systems through insecure and poorly monitored routers, firewalls and similar equipment at the network perimeter.

By Eric Geller • Feb. 5, 2026

National cyber director solicits industry help in fixing regulations, threat information-sharing

President Donald Trump’s chief cybersecurity adviser said a forthcoming national strategy will kick off ambitious projects.

By Eric Geller • Feb. 3, 2026

National cybersecurity strategies depend on public-private trust, report warns

An influential cybersecurity think tank urged governments to consult extensively with a wide variety of business stakeholders before making ambitious plans.

By Eric Geller • Feb. 3, 2026

FCC urges telecoms to boost cybersecurity amid growing ransomware threat

The commission said it was aware of ransomware disruptions at a growing number of small and medium-sized telecoms.

By Eric Geller • Feb. 2, 2026

Cybersecurity 2026: AI, CISA, manufacturing sector all in the hot seat

A look at the most important trends and issues in cyber this year.

By Cybersecurity Dive Staff • Jan. 30, 2026

How Granite complied with new federal cyber regs before a critical deadline

To reach Cybersecurity Maturity Model Certification Level 2, CTO Malcolm Jack learned implementation was as much about people as it was the technology.

By Matthew Thibault • Jan. 30, 2026

Federal pivot on software security oversight could complicate vendor strategies

Software companies cheered the elimination of a government-wide attestation mandate. What comes next could be messy.

By Eric Geller • Jan. 28, 2026

Top 3 factors for selecting an identity access management tool

Identity and access management (IAM) ensures that people and entities with digital identities have the right level of access to your enterprise resources.

Jan. 26, 2026