Lemonade says applicant driver’s license numbers exposed
Lemonade Inc. has begun sending notification letters to about 190,000 people after their driver’s license numbers were transmitted unencrypted, according to regulatory filings by the…
Category: CyberSecurityDive
Ahold Delhaize confirms data stolen after threat group claims credit for November attack
Ahold Delhaize confirmed Thursday that certain files from its U.S. operations were stolen in a November cyberattack after a threat group claimed credit for the…
Older SonicWall SMA100 vulnerability exploited in the wild
Dive Brief: SonicWall on Tuesday disclosed that an OS command-injection vulnerability in SonicWall SMA100 remote-access appliances, tracked as CVE-2021-20035, has been exploited in the wild.…
CISA warns companies to secure credentials amid claims of Oracle Cloud data breach
The Cybersecurity and Infrastructure Security Agency on Wednesday said organizations and individuals should take steps to protect their environments from a potential compromise of a…
Bill extends cyber threat info-sharing between public, private sector
Two federal lawmakers today introduced a bi-partisan bill that preserves key regulation that facilitates the sharing of cyber-threat data between private companies and the federal…
Mitre CVE program regains funding as renewal deal reached
The Cybersecurity and Infrastructure Security Agency said it reached an agreement to renew funding for a software vulnerability program that is used by the information…
CISA launches new wave of job cuts
The Cybersecurity and Infrastructure Security Agency is in the process of a major push to eliminate jobs, starting with a voluntary resignation program, part of…
Attackers exploit zero-day flaw in Gladinet CentreStack file-sharing platform
Dive Brief: Huntress on Monday published research that showed exploitation of CVE-2025-30406, a deserialization vulnerability in Gladinet’s CentreStack enterprise file-sharing platform for managed service providers…
Hertz says personal data breached in connection with Cleo file-transfer flaws
Hertz Corp. confirmed a threat actor gained access to sensitive personal data in a breach linked to vulnerabilities in Cleo file-transfer software, according to a…
Aviation sector faces heightened cyber risks due to vulnerable software, aging tech
Dive Brief: The aviation industry is facing significant threats to its ability to maintain cyber resilience and must address key issues ranging from aging technology,…
Over 14K Fortinet devices compromised via new attack method
Dive Brief: The Shadowserver Foundation reported Saturday that more than 14,000 Fortinet devices across the globe have been compromised by a threat actor that exploited…
Why a secure enterprise browser should be on your security short list in 2025
The shift in how we work has brought efficiencies and operational enhancements, but it also added complexity, created new attack vectors, and exacerbated existing security…