Mitre CVE program regains funding as renewal deal reached
The Cybersecurity and Infrastructure Security Agency said it reached an agreement to renew funding for a software vulnerability program that is used by the information…
Category: CyberSecurityDive
CISA launches new wave of job cuts
The Cybersecurity and Infrastructure Security Agency is in the process of a major push to eliminate jobs, starting with a voluntary resignation program, part of…
Attackers exploit zero-day flaw in Gladinet CentreStack file-sharing platform
Dive Brief: Huntress on Monday published research that showed exploitation of CVE-2025-30406, a deserialization vulnerability in Gladinet’s CentreStack enterprise file-sharing platform for managed service providers…
Hertz says personal data breached in connection with Cleo file-transfer flaws
Hertz Corp. confirmed a threat actor gained access to sensitive personal data in a breach linked to vulnerabilities in Cleo file-transfer software, according to a…
Aviation sector faces heightened cyber risks due to vulnerable software, aging tech
Dive Brief: The aviation industry is facing significant threats to its ability to maintain cyber resilience and must address key issues ranging from aging technology,…
Over 14K Fortinet devices compromised via new attack method
Dive Brief: The Shadowserver Foundation reported Saturday that more than 14,000 Fortinet devices across the globe have been compromised by a threat actor that exploited…
Why a secure enterprise browser should be on your security short list in 2025
The shift in how we work has brought efficiencies and operational enhancements, but it also added complexity, created new attack vectors, and exacerbated existing security…
Remote access tools most frequently targeted as ransomware entry points
Dive Brief: Remote access tools were the initial entry point in eight of every 10 ransomware attacks in 2024, according to a report released Thursday by…
Fortinet warns of threat activity against older vulnerabilities
Dive Brief: Fortinet detailed new exploitation activity against known critical vulnerabilities in FortiGate devices, including CVE-2022-42475, CVE-2023-27997 and CVE-2024-21762, in a Thursday blog post.. Fortinet said that…
CIOs worry about cyber threats, tech talent
Dive Brief: Cybersecurity threats emerged as tech executives’ top challenge and area for investment, according to a report published Tuesday by IT resources and managed…
Sensata Technologies’ operations disrupted by ransomware attack
Sensata Technologies was struck by a ransomware attack earlier this week that disrupted several of the company’s operations, according to a regulatory filing. Sensata disclosed…
Plankey nomination at CISA placed on hold after Wyden pushes for telecom report
Sen. Ron Wyden has placed the nomination of Sean Plankey as director of the Cybersecurity and Infrastructure Security Agency on hold, citing the refusal to…