Cyber insurance policyholders facing heavier scrutiny in underwriting, claims

A multiyear lull in insurance rates and insurers’ over-dependence on large U.S. policyholders have led to more restrictions and exclusions in coverage.

By David Jones • June 8, 2026

Companies aren’t prepared for how AI is accelerating impersonation attacks

Businesses generally aren’t taking a proactive enough approach to blocking schemes that spoof their leaders’ identities, according to a new report.

By Eric Geller • June 8, 2026

Explore the Trendline➔

The Cybersecurity Skills Gap

From AI to federal budget cuts, the nature of cybersecurity work is changing faster than ever.

By Cybersecurity Dive staff

The new risk equation: Why endpoint security is a financial imperative

Cyber risk is financial risk; endpoint security in financial services is a business imperative.

June 8, 2026

Sprawling new House AI bill includes frontier model oversight, open-source security grants

The legislation has already drawn widespread criticism for its proposal to preempt state AI laws.

By Eric Geller • June 5, 2026

CISA chief says Trump AI executive order implementation will start soon

The agency, depleted after several rounds of cuts imposed by the White House, insists it can handle its new AI security responsibilities.

By Eric Geller • June 4, 2026

CrowdStrike, Palo Alto Networks defy estimates as AI fuels cyber demand

The cybersecurity sector has been under perceived pressure due to accelerating deployment of AI tools.

By David Jones • June 4, 2026

‘Don’t panic’: AI reality checks dominate major cybersecurity conference

CISOs and their colleagues should focus on network security basics, not overhyped AI promises, analysts said at a Gartner cybersecurity event.

By Eric Geller • June 3, 2026

Trump signs EO seeking early government access to powerful AI models

The directive represents an about-face for an administration that previously repudiated government AI reviews.

By Eric Geller • Updated June 2, 2026

Anthropic shares Mythos with 150 more organizations, including critical infrastructure operators

The AI firm also said it’s exploring how to help open-source developers deal with a flood of vulnerability reports.

By Eric Geller • June 2, 2026

Turning tension into collaboration: How CIOs and CISOs can lead together

If properly managed and channeled, age-old friction between IT and cybersecurity can create a more resilient organization.

By Tom Scholtz, Distinguished VP Analyst, Gartner • June 2, 2026

Without strong governance, companies put credit ratings at risk in AI era

A new report from S&P Global provides a blueprint for how companies can adapt to the changing threat environment.

By Eric Geller • June 1, 2026

Top 4 data security best practices for the AI-enabled enterprise

To maximize AI’s value without increasing security risk, organizations must enforce best‑practice data protections across their environment.

June 1, 2026

How Canva scaled to 260+M users while elevating security and productivity

See how Canva uses 1Password to integrate new teams fast, empower developers and maintain high standards for customers.

June 1, 2026

CISA urges security teams to check for software development compromises

The agency warned about a wave of attacks targeting credentials and other secrets across critical supply chains.

By David Jones • May 29, 2026

How CISOs can manage sovereign-cloud security risks

Selecting and adopting cloud services from non-U.S. regional providers requires solid cyber risk and security assessment.

By Charlie Winckless, VP Analyst, Gartner Cybersecurity Leadership • May 28, 2026

IBM’s new $5B initiative will help enterprises rapidly patch open-source vulnerabilities

The tech giant’s project could make it easier for businesses to safely use open-source packages.

By Eric Geller • May 28, 2026

Enterprise data is creeping its way into shadow AI tools

Executives and employees are clashing over usage policies as AI security concerns rise, an Okta report found.

By Paige Gross • May 28, 2026

Coordinated operation takes down Glassworm botnet

The botnet began in early 2025, targeting software developers across the open-source supply chain.

By David Jones • May 27, 2026

FBI warns about PhaaS platform used to access Microsoft 365 environments

Device code phishing enabled hackers to bypass multifactor authentication without credentials.

By David Jones • May 26, 2026

New York regulator calls for additional cyber mitigation amid heightened threat environment

The guidance from the state Department of Financial Services arises from concerns about frontier AI and threats linked to the Iran war and other geopolitical risks.

By David Jones • May 22, 2026

CISA asks cybersecurity community to alert it to vulnerability exploitation

The agency wants to ensure that its public catalog of actively exploited flaws is as comprehensive as possible.

By Eric Geller • May 21, 2026

Microsoft disrupts cybercrime operation that hid behind legitimate software

The Fox Tempest malware-signing-as-a-service operation was linked to numerous ransomware attacks.

By David Jones • May 20, 2026

Telecom sector launches its own private ISAC

Federal government involvement in an existing group chilled some cybersecurity discussions among major telecom providers. The new group is intended to alleviate those anxieties.

By Eric Geller • May 19, 2026

How a government contest launched a revolution in AI-based bug hunting

Security researchers have spent months honing AI systems that can find and fix serious vulnerabilities. Critical infrastructure everywhere could benefit.

By Eric Geller • May 18, 2026

MSPs need AI to fight AI-fueled cyberthreats: Guardz

Entry points haven’t changed, but the speed and scale of attacks have intensified, the security vendor found.

By Kelly Teal, Channel Dive contributor • May 15, 2026