Catastrophic cyber event could cause widespread disruptions to global infrastructure, study suggests

The study by Munich Re and CyberCube also warned that the internet of things and large language models present near-term risks.  

By David Jones • July 15, 2025

Risk management, legacy tech pose major threats to healthcare firms, report finds

Companies have improved their recovery processes and user controls but still lag in risk preparedness, according to the report.

By Eric Geller • July 15, 2025

Explore the Trendline➔

Risk Management

An esclation of cyber risks facing businesses and government has made cyber resilience a major priority. 

By Cybersecurity Dive staff

DragonForce hackers claim responsibility for Belk data breach

The North Carolina-based retailer is the latest known victim in a spree of attacks in the U.K. and U.S.

By David Jones • July 15, 2025

Major railroad-signaling vulnerability could lead to train disruptions

The high-severity flaw could let a hacker abruptly halt — and potentially derail — a train.

By Eric Geller • Updated July 14, 2025

Businesses are overconfident as mobile phishing scams surge

Nearly six in 10 companies experienced incidents because of voice or text phishing attacks that led to executive impersonation, according to a new report from Lookout.

By Eric Geller • July 11, 2025

Ingram Micro restores global operations following hack

The company is still assessing the full impact of the ransomware attack, which has been linked to the SafePay hacker group.

By David Jones • July 10, 2025

UK authorities arrest 4 people in probe of retail cyberattack spree

The arrests mark the first major break in a case linked to the Scattered Spider cybercrime group, although additional work continues with multiple agencies.

By David Jones • Updated July 10, 2025

Iran-linked hackers target US transportation, manufacturing firms

U.S. authorities have been warning of potential state-linked or hacktivist threats since the country intervened in the Israel-Iran war.

By Eric Geller • July 9, 2025

Qantas says cyberattack affected 5.7 million customers

The incident follows a notorious hacker gang’s pivot to targeting transportation companies with its trademark social-engineering attacks.

By David Jones • July 9, 2025

Suspected contractor for China’s Hafnium group arrested in Italy

U.S. authorities charged the man and a co-conspirator with hacking COVID-19 researchers and kicking off a cyberattack spree targeting Microsoft Exchange servers. 

By David Jones • July 8, 2025

Scattered Spider poses serious risk to several hundred major companies

A new report shows that a select group of large companies uses technologies that the hacker group often targets.

By David Jones • July 8, 2025

Ingram Micro makes progress on restoring operations following attack

An attack linked to the ransomware gang SafePay has disrupted certain fulfillment capabilities.  

By David Jones • July 8, 2025

Ingram Micro investigating ransomware attack

The technology company said the attack has affected its ability to process and ship orders.

By David Jones • July 7, 2025

FBI cyber guidance to lawmakers falls short, US senator says

Sen. Ron Wyden wants FBI briefings to cover four often-overlooked cybersecurity practices.

By Eric Geller • July 2, 2025

US authorities unmask North Korean IT worker schemes and their American accomplices

Federal officials said businesses should carefully verify the identities of remote employees to avoid falling prey to similar scams.

By Eric Geller • June 30, 2025

US government warns of new Iran-linked cyber threats on critical infrastructure

Companies should disconnect operational technology from the internet and enforce strong protections for user accounts, a joint alert from CISA, the FBI, NSA and DoD said.

By Eric Geller • June 30, 2025

Scattered Spider appears to pivot toward aviation sector

A cyberattack on Hawaiian Airlines carries some hallmarks of the notorious cybercrime group.

By David Jones • Updated June 27, 2025

‘Suspended animation’: US government upheaval has frayed partnerships with critical infrastructure

Recent federal cuts, reorganizations and other disruptions have alarmed industry leaders, who say the government is a less reliable partner even as cyber threats increase.

By Eric Geller • June 25, 2025

Federal officials, critical infrastructure leaders remain on guard for Iran-linked hacks

Amid an uneasy truce, security teams in the U.S. said they have not seen any credible or specific threats.

By David Jones • June 24, 2025

Fewer ransomware attacks encrypting data, report finds

Hackers are increasingly performing extortion-only attacks.

By Eric Geller • June 24, 2025

DHS warns of heightened cyber threat as US enters Iran conflict

Federal officials are warning that pro-Iran hacktivists or state-linked actors may target poorly secured U.S. networks.

By David Jones • June 23, 2025

Aflac discloses cyber intrusion linked to wider crime spree targeting insurance industry

The breach marks the latest in a series of recent attacks linked to cybercrime group Scattered Spider.

By David Jones • Updated June 20, 2025

Cloud storage buckets leaking secret data despite security improvements

New data from Tenable highlighted significant improvements in the number of businesses with publicly exposed and critically vulnerable buckets storing sensitive data.

By Eric Geller • June 18, 2025

Threat group linked to UK, US retail attacks now targeting insurance industry

The warning from Google researchers follows a recent incident at Erie Insurance, although the perpetrators of that attack have not been identified.

By David Jones • June 16, 2025

US critical infrastructure could become casualty of Iran-Israel conflict

Researchers warn that Iran-aligned threat groups could soon target U.S. companies and individuals in cyber espionage or sabotage attacks.

By David Jones • June 16, 2025