Companies are putting "AI" in just about all of their products, which opens up new security holes. LLM SecOps and ML SecOps are becoming must-have skills.
Автор: Dark Reading Staff
Marriot & Starwood Face $52M Settlement After Security Breaches
The hotel giant will be held to higher security standards in a series of proposed requirements, including implementing a new annually reviewed security program.
American Water Reconnects Its Network Taps After Cyber Incident
The company is beginning to bring its systems back online, though the investigation wages on.
Critical Mozilla Firefox Zero-Day Allows Code Execution
The bug is already being exploited in the wild, but Firefox has provided patches for those who may be vulnerable.
Fidelity Notifies 77K Customers of Data Breach
The third-party actor had access for two days, in the financial services company’s second major breach of the year.
Google Launches Data-Sharing Initiative to Fight Fraud
Global Signal Exchange will act as a global clearing house for online scams and fraud signals.
Australia Intros Its First National Cyber Legislation
The bill is broken up into several pieces, including ransomware reporting and securing smart devices, among other objectives.
3 More Ivanti Cloud Vulns Exploited in the Wild
The security bugs were found susceptible to exploitation in connection to the previously disclosed, critical CVE-2024-8963 vulnerability in the security vendor’s Cloud Services Appliance (CSA).
CISA Adds High-Severity Ivanti Vulnerability to KEV Catalog
Ivanti reports that the bug is being actively exploited in the wild for select customers.
China-Backed APT Group Culling Thai Government Data
CeranaKeeper is bombarding Southeast Asia with data exfiltration attacks via file-sharing services such as Pastebin, OneDrive, and GitHub, researchers say.