Researchers warn of malicious attacks exploiting a recently patched critical vulnerability in Apache Struts 2 leading to remote code execution (RCE).
The post Exploitation of Recent Critical Apache Struts 2 Flaw Begins appeared first on SecurityWeek.
SecurityWeek – Read More
While the challenges are significant, organizations have an opportunity to build scalable AI governance frameworks that ensure compliance while enabling responsible AI innovation.
The post AI Regulation Gets Serious in 2025 – Is Your Organization Ready? appeared first on SecurityWeek.
SecurityWeek – Read More
INTERPOL is calling for a linguistic shift that aims to put to an end to the term “pig butchering,” instead advocating for the use of “romance baiting” to refer to online scams where victims are duped into investing in bogus cryptocurrency schemes under the pretext of a romantic relationship.
“The term ‘pig butchering’ dehumanizes and shames victims of such frauds, deterring people from coming
The Hacker News – Read More
IntelBroker has leaked 2.9 Gb of data stolen recently from a Cisco DevHub instance, but claims it’s only a fraction of the total.
The post Hacker Leaks Cisco Data appeared first on SecurityWeek.
SecurityWeek – Read More
Meta Platforms, the parent company of Facebook, Instagram, WhatsApp, and Threads, has been fined €251 million (around $263 million) for a 2018 data breach that impacted millions of users in the bloc, in what’s the latest financial hit the company has taken for flouting stringent privacy laws.
The Irish Data Protection Commission (DPC) said the data breach impacted approximately 29 million
The Hacker News – Read More
Threat actors are attempting to exploit a recently disclosed security flaw impacting Apache Struts that could pave the way for remote code execution.
The issue, tracked as CVE-2024-53677, carries a CVSS score of 9.5 out of 10.0, indicating critical severity. The vulnerability shares similarities with another critical bug the project maintainers addressed in December 2023 (CVE-2023-50164, CVSS
The Hacker News – Read More
Hackers are abusing legitimate Windows utilities to target Thai law enforcement with a novel malware that is a mix of sophistication and amateurishness.
darkreading – Read More
The Cybersecurity and Infrastructure Security Agency (CISA) issued a binding directive on Tuesday giving federal agencies a series of deadlines to identify cloud systems, implement assessment tools and abide by the agency’s Secure Cloud Business Applications (SCuBA) secure configuration baselines.
The Record from Recorded Future News – Read More
EU privacy watchdogs hit Facebook owner Meta with fines totaling 251 million euros after an investigation into a 2018 data breach that exposed millions of accounts.
The post Facebook Owner Hit With 251 Million Euros in Fines for 2018 Data Breach appeared first on SecurityWeek.
SecurityWeek – Read More
Ideally, generative AI should augment, not replace, cybersecurity workers. But ROI still proves a challenge.
Security | TechRepublic – Read More