Digital Safety and Cybersecurity
Digital Safety and Cybersecurity
| Reuters Staff | Reuters | June 29, 2026
The U.S. House passed youth online safety legislation aimed at requiring stronger platform safeguards for children, including limits on addictive features and protections against exploitation.
| Harriet Sherwood | The Guardian | June 24, 2026
A UK parliamentary report warned that museums and galleries remain vulnerable to cyberattacks and theft, showing how digital security is now essential for protecting public cultural systems.
| Times of India Staff | Times of India | June 24, 2026
A ransomware attack disrupted more than 100 Romanian hospitals, forcing staff to return to pen-and-paper systems and exposing the public safety risks of weak healthcare cybersecurity.
| Kopo M. Ramokapane, Rui Huan, Zaina Dkaidek, Awais Rashid | arXiv | June 16, 2026
Researchers propose “child-fit security,” arguing that online safety should be designed around children’s rights, privacy, wellbeing, and participation rather than only bans and surveillance.
| Verified Voting | Verified Voting | June 17, 2026
A coalition urged technology platforms to prevent election misuse through content provenance, transparency reports, AI restrictions, user reporting, and stronger support for election security.
| Department for Science, Innovation and Technology | GOV.UK | June 15, 2026
The UK opened a national conversation on children growing up online, focusing on safer platform design, harmful content, and the role of regulation in protecting young users.
| Mental Health Europe | Mental Health Europe | June 12, 2026
Civil society groups warned that child online safety rules must protect children from harm while preserving privacy, participation, education, play, and access to information.
This study finds that online safety regulation can unintentionally increase privacy risks when users respond to age-verification rules by seeking VPNs and other workarounds.
| Ali Swenson | PBS NewsHour | June 1, 2026
A surge in election-related websites raised warnings about phishing, impersonation, fraudulent donations, fake news, and digital attacks on voter trust ahead of the midterms.
| Check Point Research | Check Point Blog | June 1, 2026
Check Point argues that the biggest cyber risk to the 2026 midterms may be misinformation, phishing, impersonation, and attacks on public trust rather than direct ballot tampering.
| UN Human Rights Office | OHCHR | May 29, 2026
The UN Human Rights Office said online harms to children are often the result of business practices and design choices, calling for safety measures that also protect privacy and rights.
| Ina Fried | Axios | May 27, 2026
OpenAI announced election-related cybersecurity and misinformation defenses, including support for transparency legislation and tools for officials facing AI-enabled threats.
| Emma Fletcher | Federal Trade Commission | May 7, 2026
FTC data showed imposter scams remained the top reported scam category, with rising losses and evolving tactics that exploit trust in government, businesses, and familiar contacts.
| Federal Trade Commission | FTC | June 15, 2026
The FTC reported that people lost $3.5 billion to imposter scams in 2025, highlighting the need for better detection, public education, and enforcement against impersonation fraud.
| Colleen Tressler | Federal Trade Commission | April 27, 2026
The FTC explains how social media scams work, including fake shopping ads, investment pitches, romance scams, and impersonation schemes that begin inside familiar platforms.
| Federal Trade Commission | FTC | April 27, 2026
FTC data showed that social media was the costliest fraud contact method in 2025, with reported losses reaching $2.1 billion.
| Division of Consumer Response and Operations Staff | Federal Trade Commission | April 27, 2026
This FTC data spotlight shows reported losses from social media scams rose eightfold since 2020, making platform-based fraud a major digital safety issue.
| Gema de las Heras | Federal Trade Commission | April 16, 2026
The FTC warns that investment scams use promises of high returns, fake advisers, social media groups, and cryptocurrency pitches to steal large sums from victims.
| Forbes Technology Council | Forbes | April 2, 2026
This article frames healthcare ransomware as a patient safety issue because attacks can disrupt records, procedures, diagnostics, scheduling, and emergency care.
| Daniel Castro | Information Technology and Innovation Foundation | March 30, 2026
ITIF argues that new healthcare cybersecurity efforts should become a model for other critical sectors that depend on reliable digital systems.
| Federal Trade Commission | FTC | March 25, 2026
The FTC told Congress that consumer fraud losses continue to rise, reinforcing the need for scam detection, enforcement, education, and stronger platform accountability.
| Michael Kello | King’s College London | March 2026
This report argues that ransomware is a major threat to the NHS and outlines leadership, preparedness, and resilience strategies for healthcare systems.
| Sergiu Gatlan | BleepingComputer | March 4, 2026
The University of Mississippi Medical Center reopened clinics after a ransomware attack disrupted electronic medical records and forced temporary closures.
| Sergiu Gatlan | BleepingComputer | March 3, 2026
The University of Hawaii Cancer Center disclosed that a ransomware gang stole data affecting nearly 1.2 million people, showing the privacy risks of healthcare breaches.
| Sergiu Gatlan | BleepingComputer | February 20, 2026
A ransomware attack forced Mississippi’s academic medical center to close clinics, demonstrating how cyber incidents can quickly become public service disruptions.
| Alexander Martin | Recorded Future News | February 17, 2026
Polish authorities detained an alleged cybercriminal linked to Phobos ransomware, a group accused of targeting hospitals, schools, governments, and other organizations.
| European Data Protection Board | EDPB | January 28, 2026
The European Data Protection Board used Data Protection Day to teach children about privacy, data protection, and digital rights in age-appropriate ways.
| Reed Smith | Technology Law Dispatch | January 29, 2026
This overview explains expected 2026 developments in children’s privacy and online safety, including regulatory attention on platform design and data protection.
| Dan Milmo | The Guardian | January 22, 2026
Experts warned that AI bot swarms could manipulate online communities, distort political debate, and undermine democratic trust if detection tools do not keep pace.
| World Economic Forum | World Economic Forum | January 17, 2026
The Global Cybersecurity Outlook highlights cyber-enabled fraud, ransomware, AI vulnerabilities, supply-chain risks, and widening gaps between well-resourced and under-resourced organizations.
| Alexander Martin | Recorded Future News | January 14, 2026
Uganda imposed an internet shutdown before a national election, illustrating how digital access, election integrity, and democratic rights can collide.
| Etienne Casanova and R. Michael Alvarez | arXiv | January 8, 2026
Researchers studied election rumors on Truth Social and used large language models to detect rumor dynamics and misinformation spread during the 2024 election.
| Canadian Centre for Cyber Security | Government of Canada | 2026
Canada’s cyber threat assessment warns that ransomware, cybercrime, critical infrastructure attacks, and state-sponsored activity remain persistent risks.
| European Parliamentary Research Service | European Parliament | 2026
This briefing explains how VPNs complicate child protection online by allowing users to bypass age-verification systems while also serving legitimate privacy and access needs.
| Martin et al. | Trauma Surgery & Acute Care Open | 2026
A review of ransomware attacks on trauma centers emphasizes preparedness, downtime procedures, institutional resilience, and cybersecurity as part of emergency healthcare planning.
| K. Madhavan et al. | NDSS Symposium | 2026
Researchers present E-MANTRA, a framework for helping election security teams detect manipulative content tactics rather than only labeling claims true or false.
| Suzanne Smalley | Recorded Future News | December 17, 2025
Privacy advocates warned that AI-powered ad targeting could increase scam exposure by helping bad actors reach vulnerable users with more precision.
| Federal Trade Commission | FTC | December 1, 2025
The FTC’s annual report on older adults shows how fraud, impersonation, investment scams, and romance scams increasingly threaten people’s savings.
| Jonathan Greig | Recorded Future News | November 13, 2025
U.S. officials said the Akira ransomware gang received nearly $250 million, underscoring the financial scale of ransomware affecting hospitals, schools, and businesses.
| Emma Fletcher | Federal Trade Commission | August 7, 2025
The FTC describes scams that use fake emergencies, government impersonation, and financial panic to pressure older adults into sending life savings.
| Federal Trade Commission | FTC | August 7, 2025
FTC data showed a sharp increase in older adults reporting large losses to impersonation scams involving fake government, business, or security claims.
| David Jones | Cybersecurity Dive | June 6, 2025
AI voice cloning and deepfakes are increasing digital threats to corporate executives, showing how impersonation scams are becoming more convincing and targeted.
| Daryna Antoniuk | Recorded Future News | May 19, 2025
Poland and Romania reported Russia-linked disinformation activity around presidential elections, showing how influence operations can target voters across borders.
| Bill Toulas | BleepingComputer | April 24, 2025
Frederick Health reported a breach affecting nearly one million patients, showing how healthcare cybersecurity failures can expose sensitive medical information.
| Colleen Tressler | Federal Trade Commission | April 4, 2025
The FTC explains how people can help fight impersonation scams by reporting fake websites, fake agencies, and fraudulent business impersonators.
| Federal Trade Commission | FTC | March 10, 2025
FTC data showed reported fraud losses reached $12.5 billion in 2024, with investment and imposter scams producing especially high losses.
| Alexander Martin | Recorded Future News | February 21, 2025
German security officials warned that fake videos about ballot manipulation were part of a Russian disinformation campaign targeting election trust.
| Sergiu Gatlan | BleepingComputer | January 31, 2025
A Connecticut healthcare provider disclosed a breach affecting more than one million patients, demonstrating the privacy stakes of healthcare cybersecurity.
| Suzanne Smalley | Recorded Future News | January 16, 2025
The FTC updated the Children’s Online Privacy Protection Rule to strengthen limits on how businesses collect, monetize, and retain children’s data.
| Alexander Martin | Recorded Future News | January 13, 2025
The UK proposed banning public-sector ransomware payments and requiring incident reporting, aiming to reduce incentives for attacks on hospitals, schools, and government bodies.
| Bill Toulas | BleepingComputer | November 20, 2024
A French hospital breach exposed medical records for hundreds of thousands of patients, showing how cyber intrusions can become major privacy failures.
| Derek B. Johnson | Recorded Future News | November 3, 2024
Rep. Yvette Clarke warned that AI deepfakes and disinformation were spreading faster than election protections, calling for stronger safeguards.
| Derek B. Johnson | Recorded Future News | July 25, 2024
Kansas Secretary of State Scott Schwab discussed election cybersecurity, misinformation, ransomware, and the need for ongoing coordination between state and federal officials.
| Jonathan Greig | Recorded Future News | August 10, 2024
Ransomware attacks on local governments in Texas and Florida show how cyber incidents disrupt services and expose sensitive community information.
| Sergiu Gatlan | BleepingComputer | June 4, 2024
A ransomware attack against Synnovis disrupted pathology services at major London hospitals, causing delays and showing the fragility of healthcare supply chains.
| Bill Toulas | BleepingComputer | May 14, 2024
Singing River Health System said nearly 895,000 people were affected by a ransomware attack that caused operational disruptions and possible data theft.
| Alexander Martin | Recorded Future News | February 26, 2024
Meta created special teams to respond to election disinformation and AI abuse ahead of European Parliament elections, showing platform responsibility during voting periods.
| Bill Toulas | BleepingComputer | March 7, 2024
Switzerland confirmed that Play ransomware leaked thousands of government documents, including sensitive personal, technical, and classified information.
| Bill Toulas | BleepingComputer | December 20, 2023
ESO Solutions disclosed a ransomware-related breach affecting 2.7 million patients, showing how vendors can create large-scale healthcare privacy risks.
| Bill Toulas | BleepingComputer | November 7, 2023
A ransomware attack against a shared hospital services provider affected Canadian hospitals and exposed data tied to hundreds of thousands of patients.
| Jonathan Greig | Recorded Future News | October 31, 2023
The White House convened international partners to coordinate counter-ransomware measures, emphasizing global cooperation against cyber extortion networks.
| Jonathan Greig | Recorded Future News | September 18, 2023
DHS officials warned that ransomware profits remained high, reinforcing the need for incident reporting, law enforcement coordination, and defensive preparation.
| Jonathan Greig | Recorded Future News | August 14, 2023
CISA described how incident reporting and pre-ransomware notifications can help hospitals, schools, and public agencies stop attacks before encryption begins.
| Jonathan Greig | Recorded Future News | August 7, 2023
DHS announced major grants to improve state and local cybersecurity, responding to ransomware and infrastructure risks facing public agencies.
| Derek B. Johnson | Recorded Future News | July 5, 2023
A federal court ruling limited some government communications with platforms about misinformation, raising difficult questions about election security and free speech.
| Jonathan Greig | Recorded Future News | January 2, 2023
A report found that more than 200 U.S. local governments, schools, universities, and healthcare providers were hit by ransomware in 2022.
| Cybersecurity and Infrastructure Security Agency | CISA | 2023
CISA’s Secure by Design initiative urges technology manufacturers to build security into products from the start rather than shifting the burden to users.
| Cybersecurity and Infrastructure Security Agency | CISA | 2023
StopRansomware centralizes federal ransomware guidance, alerts, reporting resources, and defensive practices for organizations facing cyber extortion threats.
| Cybersecurity and Infrastructure Security Agency | CISA | 2023
CISA’s ransomware guide explains prevention, response, backup planning, incident communication, and recovery steps for organizations under threat.
| Cybersecurity and Infrastructure Security Agency | CISA | March 2, 2023
This advisory details Royal ransomware activity and gives defenders indicators of compromise and mitigation steps to protect networks.
| Cybersecurity and Infrastructure Security Agency | CISA | May 16, 2023
Federal agencies warned about BianLian ransomware and provided technical indicators, tactics, and mitigation guidance for network defenders.
| Cybersecurity and Infrastructure Security Agency | CISA | June 14, 2023
CISA and partners released guidance on LockBit ransomware, including attacker behaviors, indicators, and defensive steps for organizations.
| Cybersecurity and Infrastructure Security Agency | CISA | October 5, 2023
This joint advisory covers AvosLocker ransomware tactics and provides mitigation guidance for reducing exposure to known attack methods.
| Cybersecurity and Infrastructure Security Agency | CISA | November 16, 2023
CISA and partners warned about Rhysida ransomware and shared indicators and recommendations to help organizations reduce risk.
| Cybersecurity and Infrastructure Security Agency | CISA | December 18, 2023
This advisory describes Play ransomware activity and provides technical guidance for detecting and mitigating attacks.
| Cybersecurity and Infrastructure Security Agency | CISA | February 29, 2024
CISA and partners released updated guidance on Phobos ransomware, including tactics, indicators, and mitigation steps.
| Cybersecurity and Infrastructure Security Agency | CISA | April 18, 2024
Federal agencies warned about Akira ransomware and provided technical indicators and recommended defenses for vulnerable organizations.
| Cybersecurity and Infrastructure Security Agency | CISA | August 28, 2024
This advisory describes RansomHub ransomware activity and offers mitigation steps to help organizations harden systems and respond to incidents.
| Cybersecurity and Infrastructure Security Agency | CISA | May 10, 2024
CISA and partners warned about Black Basta ransomware, including tactics used against healthcare and critical infrastructure targets.
| Cybersecurity and Infrastructure Security Agency | CISA | September 5, 2024
This advisory covers North Korean cyber actors using social engineering, showing how targeted manipulation can compromise organizations and individuals.
| Cybersecurity and Infrastructure Security Agency | CISA | November 21, 2024
CISA and partners warned about Iranian cyber actors using credential theft and network exploitation, reinforcing the need for identity security.
| Cybersecurity and Infrastructure Security Agency | CISA | 2024
CISA explains how multifactor authentication can reduce account takeover risk and protect public systems, businesses, and individuals from credential theft.
| Cybersecurity and Infrastructure Security Agency | CISA | 2024
Secure Our World offers public cybersecurity education on strong passwords, MFA, software updates, and phishing awareness.
| Cybersecurity and Infrastructure Security Agency | CISA | 2024
CISA’s election security resources support state and local officials with cybersecurity, physical security, incident response, and public communication guidance.
| Cybersecurity and Infrastructure Security Agency | CISA | 2024
CISA’s Rumor vs. Reality resource helps election officials and voters respond to misinformation about voting systems and election processes.
| Cybersecurity and Infrastructure Security Agency | CISA | 2024
CISA’s cybersecurity performance goals provide baseline practices that help critical infrastructure organizations improve defense against common attacks.
| Cybersecurity and Infrastructure Security Agency | CISA | 2024
The Known Exploited Vulnerabilities Catalog helps organizations prioritize patching of flaws that attackers are actively using.
| Cybersecurity and Infrastructure Security Agency | CISA | 2024
CISA’s cyber hygiene services help public and private organizations identify internet-facing vulnerabilities before attackers exploit them.
| National Institute of Standards and Technology | NIST | 2024
The NIST Cybersecurity Framework helps organizations manage cyber risk through governance, identification, protection, detection, response, and recovery.
| National Institute of Standards and Technology | NIST | February 26, 2024
NIST Cybersecurity Framework 2.0 expands cyber risk management guidance and places stronger emphasis on governance and organizational decision-making.
| National Institute of Standards and Technology | NIST | 2024
The NIST Privacy Framework helps organizations identify and manage privacy risks in systems, data practices, and digital services.
| National Institute of Standards and Technology | NIST | 2020
NIST SP 800-53 provides security and privacy controls widely used to protect government systems, public infrastructure, and sensitive information.
| National Institute of Standards and Technology | NIST | 2017
NIST’s digital identity guidelines explain identity proofing, authentication, and federation practices that help secure online accounts and public services.
| National Institute of Standards and Technology | NIST | 2012
NIST’s computer security incident handling guide remains a foundational resource for preparing, detecting, analyzing, containing, and recovering from cyber incidents.
| National Institute of Standards and Technology | NIST | July 2024
NIST’s generative AI profile describes information security, privacy, misinformation, and abuse risks linked to generative AI systems.
| Apostol Vassilev et al. | NIST | January 2025
NIST’s adversarial machine learning report defines threats, attacker goals, and defensive concepts for AI systems vulnerable to manipulation.
| Federal Trade Commission | FTC Consumer Advice | 2024
The FTC explains how phishing scams impersonate trusted organizations, use urgent messages, and trick people into giving up passwords or financial data.
| Federal Trade Commission | FTC Consumer Advice | 2024
The FTC’s scam hub offers plain-language guidance on common fraud types, warning signs, reporting, and prevention.
| Federal Trade Commission | FTC Consumer Advice | 2024
This FTC guide explains practical scam-avoidance steps such as verifying requests, resisting urgency, and avoiding suspicious payment methods.
| Federal Trade Commission | FTC Consumer Advice | 2024
The FTC explains how romance scams build trust online, isolate victims, and often turn into requests for money, cryptocurrency, or gift cards.
| Federal Trade Commission | FTC Consumer Advice | 2024
The FTC warns that job scams often use fake listings, upfront fees, fake checks, and remote-work promises to steal money or personal information.
| Federal Trade Commission | FTC Consumer Advice | 2024
The FTC describes cryptocurrency scams that use fake investment platforms, impersonation, romance, and payment pressure to steal funds.
| Federal Trade Commission | FTC Consumer Advice | 2024
The FTC explains how government impersonator scams use fear, fake authority, and urgent payment demands to trick people.
| Federal Trade Commission | FTC Consumer Advice | 2024
This guide helps people spot business impersonation scams that pretend to be well-known companies, banks, delivery services, or technical support.
| Federal Trade Commission | FTC Consumer Advice | 2024
The FTC explains how tech support scams use fake pop-ups, warning calls, and remote-access requests to steal money or compromise devices.
| Federal Trade Commission | FTC Consumer Advice | 2024
The FTC provides guidance on identity theft prevention, warning signs, recovery steps, and how to report stolen personal information.
| Federal Trade Commission | IdentityTheft.gov | 2024
IdentityTheft.gov helps victims create recovery plans, report identity theft, and take steps to protect accounts and credit.
| Federal Bureau of Investigation | Internet Crime Complaint Center | 2024
The FBI’s Internet Crime Complaint Center gives the public a central place to report cybercrime, scams, ransomware, and online fraud.
| Federal Bureau of Investigation | FBI | 2024
The FBI explains common online crimes, including phishing, elder fraud, business email compromise, ransomware, and romance scams.
| Federal Bureau of Investigation | FBI | 2024
The FBI’s business email compromise guidance describes how attackers trick organizations into sending money through fake invoices, spoofed accounts, and compromised email.
| Federal Bureau of Investigation | FBI | 2024
The FBI explains ransomware prevention, response, reporting, and why victims should involve law enforcement during cyber extortion incidents.
| Cybersecurity and Infrastructure Security Agency | CISA | 2024
CISA explains how phishing and social engineering attacks manipulate people into opening malicious links, sharing credentials, or installing malware.
| Cybersecurity and Infrastructure Security Agency | CISA | 2024
CISA’s browser security guidance explains how safer browser settings, updates, and cautious downloading reduce exposure to malicious websites.
| Cybersecurity and Infrastructure Security Agency | CISA | 2024
CISA explains how malicious code spreads and how updates, antivirus tools, backups, and cautious behavior can reduce infection risk.
| Cybersecurity and Infrastructure Security Agency | CISA | 2024
CISA warns that email attachments remain a common malware delivery method and recommends caution, verification, and updated security tools.
| Cybersecurity and Infrastructure Security Agency | CISA | 2024
CISA explains how strong passwords, password managers, and unique credentials help prevent account compromise.
| Cybersecurity and Infrastructure Security Agency | CISA | 2024
CISA explains why timely software updates are one of the most important defenses against known vulnerabilities.
| Cybersecurity and Infrastructure Security Agency | CISA | 2024
CISA explains how physical protection of laptops, phones, and portable devices helps prevent data loss and unauthorized access.
| Cybersecurity and Infrastructure Security Agency | CISA | 2024
CISA’s wireless network guidance explains safer router settings, encryption, passwords, and network segmentation for homes and organizations.
| Cybersecurity and Infrastructure Security Agency | CISA | 2024
CISA explains how mobile apps collect data and how users can reduce privacy risks through permissions, updates, and careful installation.
| Electronic Frontier Foundation | EFF | 2024
EFF’s privacy resources explain how surveillance, data brokers, tracking, and weak privacy laws affect people’s digital rights.
| Electronic Frontier Foundation | Surveillance Self-Defense | 2024
Surveillance Self-Defense provides practical guides for safer communication, threat modeling, secure messaging, passwords, and device protection.
| Electronic Frontier Foundation | Surveillance Self-Defense | 2024
EFF’s basic digital security guides teach users how to assess risk, protect accounts, use encryption, and reduce exposure to surveillance.
| Electronic Frontier Foundation | Surveillance Self-Defense | 2024
EFF explains safer communication practices, including secure messaging, encrypted email concepts, and privacy-aware conversations.
| Electronic Frontier Foundation | Surveillance Self-Defense | 2024
EFF explains how two-factor authentication protects accounts from password theft and reduces the risk of unauthorized access.
| Electronic Frontier Foundation | Surveillance Self-Defense | 2024
EFF’s password guide explains how password managers and long unique passwords help defend against credential attacks.
| Electronic Frontier Foundation | Surveillance Self-Defense | 2024
EFF explains practical steps for keeping personal data safer, including backups, encryption, updates, and secure device habits.
| Electronic Frontier Foundation | Surveillance Self-Defense | 2024
EFF describes privacy and safety risks on social networks and explains how users can reduce tracking, harassment, and account compromise.
| Common Sense Media | Common Sense Media | 2024
Common Sense Media provides parent-friendly guidance on online safety, privacy, screen time, cyberbullying, and safer digital habits for children.
| ConnectSafely | ConnectSafely | 2024
ConnectSafely offers practical online safety guides for families, schools, and communities covering privacy, scams, cyberbullying, and youth digital wellbeing.
| National Center for Missing & Exploited Children | NetSmartz | 2024
NetSmartz provides child online safety education on privacy, sextortion, cyberbullying, gaming, social media, and reporting suspicious behavior.
| National Center for Missing & Exploited Children | NCMEC | 2024
NCMEC explains sextortion risks and provides prevention and reporting information for children, families, schools, and communities.
| U.S. Department of Health and Human Services | StopBullying.gov | 2024
StopBullying.gov explains cyberbullying, warning signs, prevention strategies, and how adults can support children experiencing online harassment.
| Get Safe Online | Get Safe Online | 2024
Get Safe Online offers public guidance on scam prevention, privacy, passwords, device security, online shopping, and safer internet use.
| National Cyber Security Centre | NCSC | 2024
The UK NCSC’s top tips explain practical steps for staying secure online, including backups, passwords, software updates, and phishing awareness.
| National Cyber Security Centre | NCSC | 2024
The NCSC’s ransomware guidance helps organizations prepare for attacks, protect backups, respond to incidents, and recover safely.
| National Cyber Security Centre | NCSC | 2024
The NCSC explains how phishing works, how to report suspicious messages, and how organizations can reduce phishing-related compromise.
| National Cyber Security Centre | NCSC | 2024
The NCSC board toolkit helps senior leaders understand cybersecurity risk, governance, resilience, and organizational accountability.
| National Cyber Security Centre | NCSC | 2024
The NCSC small business guide gives practical steps for backups, malware protection, passwords, mobile devices, and incident preparation.
| National Cyber Security Centre | NCSC | 2024
The NCSC’s election security resources help democratic institutions manage cyber risks, protect data, and prepare for disinformation-linked threats.
| Center for Strategic and International Studies | CSIS | 2026
CSIS tracks significant cyber incidents worldwide, including ransomware, espionage, election interference, government breaches, and attacks on critical infrastructure.
| Council on Foreign Relations | CFR Cyber Operations Tracker | 2024
CFR’s Cyber Operations Tracker documents state-linked cyber operations, giving researchers a tool for understanding digital conflict and international security.
| Center for Election Innovation & Research | Election Security | 2024
Election security resources explain how paper ballots, audits, cybersecurity practices, and transparent procedures help protect public trust in elections.
| Verified Voting | Verified Voting | 2024
Verified Voting provides research and advocacy on paper ballots, risk-limiting audits, voting technology, and resilient election systems.
| Verified Voting | Verifier | 2024
The Verifier tool helps the public see voting equipment and post-election audit practices used across U.S. jurisdictions.
| Brennan Center for Justice | Brennan Center | 2024
The Brennan Center explains election security challenges and reforms, including paper records, audits, disinformation response, and protection for election workers.
| Darrell M. West | Brookings Institution | 2024
Brookings explains the election risks posed by AI-generated deepfakes and discusses disclosure, authentication, media literacy, and enforcement approaches.
| RAND Corporation | RAND | 2024
RAND’s cybersecurity research covers cyber defense, critical infrastructure, information operations, privacy, military cyber policy, and public resilience.
| RAND Corporation | RAND | 2024
RAND’s misinformation research explores how false information spreads, how it affects institutions, and how detection and resilience strategies can respond.
Mandiant’s M-Trends report analyzes real-world incident response cases, attacker behavior, dwell time, ransomware, and defensive lessons.
| Verizon | Data Breach Investigations Report | 2024
Verizon’s DBIR uses incident and breach data to identify common attack patterns, including credential abuse, phishing, ransomware, and human error.
| IBM Security | Cost of a Data Breach Report | 2024
IBM’s breach cost report tracks the financial impact of data breaches and highlights the value of detection, response, encryption, and security automation.
| Microsoft | Digital Defense Report | 2024
Microsoft’s Digital Defense Report covers cybercrime, nation-state activity, ransomware, identity attacks, AI risks, and defensive trends across global systems.
| Cybersecurity and Infrastructure Security Agency | CISA | 2024
U.S. agencies warned that Chinese state-sponsored actors were maintaining access to critical infrastructure, highlighting the importance of public-sector resilience.
| Cybersecurity and Infrastructure Security Agency | CISA | 2024
CISA explains how managed service providers and customers can reduce supply-chain cyber risk through contracts, access controls, monitoring, and incident planning.
| Cybersecurity and Infrastructure Security Agency | CISA | 2024
CISA and partners released guidance on securing remote access software, a common entry point for ransomware and data theft.
| Cybersecurity and Infrastructure Security Agency | CISA | 2024
CISA guidance for water and wastewater systems shows how cybersecurity protects public health infrastructure and essential community services.
| Cybersecurity and Infrastructure Security Agency | CISA | 2024
CISA explains cybersecurity risks facing chemical facilities and provides guidance for protecting industrial systems and sensitive information.
| Cybersecurity and Infrastructure Security Agency | CISA | 2024
CISA’s industrial control systems resources help protect operational technology used in water, energy, manufacturing, transportation, and other essential services.
| Cybersecurity and Infrastructure Security Agency | CISA | 2024
CISA’s cyber threats and advisories hub provides alerts, vulnerability information, and guidance for organizations tracking active digital threats.
| Cybersecurity and Infrastructure Security Agency | CISA | 2024
CISA’s cybersecurity advisories give defenders timely technical information about vulnerabilities, malware, ransomware, and threat actor behavior.
| Cybersecurity and Infrastructure Security Agency | CISA | 2024
CISA’s reporting portal helps organizations and individuals report cyber incidents, phishing, malware, vulnerabilities, and ransomware activity.
| Cybersecurity and Infrastructure Security Agency | CISA | 2024
CISA’s vulnerability scanning service helps eligible organizations identify exposed systems and reduce the chance of compromise.
| Cybersecurity and Infrastructure Security Agency | CISA | 2024
CISA’s remote penetration testing service helps public-sector and critical infrastructure partners evaluate security weaknesses before attackers exploit them.
| Cybersecurity and Infrastructure Security Agency | CISA | 2024
CISA’s phishing campaign assessment helps organizations measure employee susceptibility and improve training against social engineering.
| Cybersecurity and Infrastructure Security Agency | CISA | 2024
CISA risk and vulnerability assessments help critical infrastructure organizations understand security gaps and prioritize improvements.
| Cybersecurity and Infrastructure Security Agency | CISA | 2024
CISA’s catalog of free cybersecurity services and tools helps organizations find no-cost resources for assessment, monitoring, training, and defense.
| Cybersecurity and Infrastructure Security Agency | CISA | 2024
CISA’s SCuBA guidance helps organizations secure cloud business applications used for email, collaboration, identity, and document storage.
| Cybersecurity and Infrastructure Security Agency | CISA | 2024
CISA’s cloud security architecture guidance helps agencies and organizations design safer cloud environments with identity, logging, and zero-trust practices.
| Cybersecurity and Infrastructure Security Agency | CISA | 2024
CISA’s Zero Trust Maturity Model helps organizations move toward identity-centered, segmented, monitored, and resilient security architectures.
| Cybersecurity and Infrastructure Security Agency | CISA | 2024
CISA’s cybersecurity best practices collect practical recommendations for reducing risk across people, processes, technology, and organizational governance.