The US Cybersecurity and Infrastructure Security Agency has warned manufacturing companies of significant vulnerabilities in Rockwell Automation and Mitsubishi Electric’s industrial control systems, which could lead to unauthorized access and denial-of-service attacks.
Sophos has been engaged in a prolonged conflict with Chinese state-sponsored hacking groups, including Volt Typhoon and APT31, which have exploited vulnerabilities in its firewall appliances to target critical infrastructure and high-value organizations worldwide.
The Iranian state-sponsored threat actor Cotton Sandstorm, also known as Emennet Pasargad, is utilizing advanced AI tactics to broaden its cyber operations beyond Israeli organizations to include targets in the US, France, and Sweden, while preparing for influence operations related to the upcoming US Presidential Election and the 2024 Paris Olympics.
Microsoft has postponed the launch of its AI-powered Recall tool for Copilot Plus PCs to December 2024, citing significant privacy and data security issues raised by critics.
The cybersecurity industry in Europe is experiencing critical staffing shortages, worsened by layoffs and budget cuts, which hinder its ability to combat increasing cyber threats effectively.
Organizations face significant security challenges with SaaS applications like Salesforce, primarily due to misconfigurations that can lead to unauthorized access and data breaches.
