Government Agencies Falling Victim to Ransomware Daily, Warns Study
Government organizations are targeted by attackers who know agencies cannot afford disruption to public services
Stay informed on government cyber security initiatives, policy changes, and threats. Your source for the latest in government infosec news and updates.
Search across headline titles and summaries.
Background for this topic.
Government encompasses public institutions and the systems used to administer services, enforce laws, manage public funds, and protect classified or otherwise sensitive information. Its distinctive assets include identity and benefits records, tax and health data, diplomatic material, election infrastructure, and operational technology supporting utilities or emergency services. Availability and integrity can be as important as confidentiality: outages or altered records may disrupt essential services, public safety, or legal processes.
Security therefore spans citizen-facing portals, internal networks, remote access, contractors, and shared infrastructure, including systems that depend on legacy technology or tightly connected suppliers. Espionage, credential compromise, exploitation of unpatched vulnerabilities, and disruptive attacks are material risks, though exposure varies by agency and system. Useful controls include strong identity management, network segmentation, encryption, privacy safeguards, prioritized vulnerability management, tested backups, and rehearsed incident response. Procurement rules, records obligations, and sector-specific compliance also shape how agencies collect, retain, share, and investigate data.
Weekly headline count for the current query.
Government organizations are targeted by attackers who know agencies cannot afford disruption to public services
US government agencies have until July 19 to patch two critical Fortinet vulnerabilities
The UK government is warning of the potential impact of catastrophic cyber-attacks
Operation First Light 2026, coordinated by Interpol and funded by the Chinese government, has led to 5,811 arrests
More than 60 organizations, including M&S, Microsoft UK and Vodafone, have signed the UK government's Cyber Resilience Pledge, a new initiative aimed at boosting cyber security and resilience across British businesses
Check Point researchers have identified a new cyber adversary targeting Israeli government and IT businesses, tracked as ‘Cavern Manticore’
OpenAI is previewing its GPT-5.6 Sol model to a vetted few at the US government's request
Public Accounts Committee (PAC) warns that museums and galleries aren’t getting enough government support on cyber
Government departments find hundreds of vulnerabilities after testing frontier models
The Department of Science, Innovation and Technology details how a combination of hands-on human advice and technology systems keeps government agencies safe
China-linked Webworm APT expands beyond Asia, targeting European government organizations and refining its cyber espionage tactics, according to ESET research
OpenAI announced its intention to expand the Trusted Access for Cyber program for cyber defenders at the federal, state and local government levels
UK government Minister confirms that breached health records of UK Biobank volunteers were up for sale on Chinese ecommerce platforms before being removed
The UK government has sanctioned Xinbi, described as “the second-largest illicit online marketplace ever”
CISA added CVE-2026-20131 to its KEV catalog as it is being used in ransomware campaigns
Dutch intelligence reveals Russian state hackers are trying to hijack the Signal and WhatsApp accounts of key targets
Zscaler ThreatLabz assessed with medium to high confidence that an Iranian adversary targeted Iraq’s Ministry of Foreign Affairs in a new cyber-attack
The UK government says its new Vulnerability Monitoring Service has cut unresolved security flaws by 75% and reduced cyber-attack fix times from nearly two months to just over a week
Google researchers found that government-backed hackers now use AI throughout the whole attack lifecycle
The European Commission and government agencies in Finland and the Netherlands have suffered potentially related breaches