Over 14K Fortinet devices compromised via new attack method
Dive Brief: The Shadowserver Foundation reported Saturday that more than 14,000 Fortinet devices across the globe have been compromised by...
Read more →Category: CyberSecurityDive
Why a secure enterprise browser should be on your security short list in 2025
The shift in how we work has brought efficiencies and operational enhancements, but it also added complexity, created new attack...
Read more →
Remote access tools most frequently targeted as ransomware entry points
Dive Brief: Remote access tools were the initial entry point in eight of every 10 ransomware attacks in 2024, according...
Read more →
Fortinet warns of threat activity against older vulnerabilities
Dive Brief: Fortinet detailed new exploitation activity against known critical vulnerabilities in FortiGate devices, including CVE-2022-42475, CVE-2023-27997 and CVE-2024-21762, in a Thursday...
Read more →
CIOs worry about cyber threats, tech talent
Dive Brief: Cybersecurity threats emerged as tech executives’ top challenge and area for investment, according to a report published Tuesday...
Read more →
Sensata Technologies’ operations disrupted by ransomware attack
Sensata Technologies was struck by a ransomware attack earlier this week that disrupted several of the company’s operations, according to...
Read more →
Plankey nomination at CISA placed on hold after Wyden pushes for telecom report
Sen. Ron Wyden has placed the nomination of Sean Plankey as director of the Cybersecurity and Infrastructure Security Agency on...
Read more →
Treasury Department bank regulator discloses major hack
Attackers gained access to emails containing sensitive government data related to financial institutions in a cyberattack on the Department of...
Read more →
Windows CLFS zero-day exploited in ransomware attacks
Dive Brief: Attackers are exploiting a zero-day vulnerability in the Windows Common Log File System to deploy ransomware against various...
Read more →
How AI Agents can help AppSec teams keep up with AI-generated code vulnerabilities
While AppSec teams are stuck with legacy scanners and backlogs, developers and hackers have adopted AI tools to accelerate their...
Read more →
WK Kellogg confirms employee data breach tied to Cleo file-transfer flaw
WK Kellogg Co. confirmed that at least one employee was affected in a December hack related to a vulnerability in...
Read more →
Over 5K Ivanti VPNs vulnerable to critical bug under attack
Dive Brief: The Shadowserver Foundation found 5,113 Ivanti VPN instances that are vulnerable to CVE-2025-22457, a critical stack-based buffer overflow...
Read more →