Threat actors are actively exploiting a high-severity vulnerability in Ivanti’s Cloud Service Appliance (CSA) CVE-2024-8190, allowing for remote code execution and unauthorized access to affected systems.
Major tech companies, including Adobe, Microsoft, and OpenAI, partner with the US government to address image-based sexual abuse, such as non-consensual intimate images and AI deepfakes.
Meta Platforms will scrape public Facebook and Instagram user posts in the UK to train generative AI models, sparking concerns about privacy and data protection.
Google patched a critical security flaw in its Cloud Composer service, known as CloudImposer, which could have allowed threat actors to execute remote code on Google Cloud Platform servers.
A data breach at 23andMe in April 2023 exposed the personal information of 6.9 million customers, leading to a class-action lawsuit and a $30 million settlement.
Apple withdraws legal action against NSO Group, citing risks of exposing critical threat intelligence information related to Pegasus spyware.
