News
Short updates on security, GRC, and AI developments, with enough context to be worth reading.
- Brief
Travel App Hopper to Pay $35 Million to Settle FTC Allegations It Charged Fees Without Consent and Deceived ...
Summary: The companies that operate the Hopper travel apps have agreed to pay $35 million and will be prohibited from deceiving consumers about fees to settle the Federal Trade …Read brief - Brief
SEC Publishes Updated Market Statistics, Highlighting Increase in IPOs and Proceeds Raised
Summary: The Securities and Exchange Commission’s Division of Economic and Risk Analysis (DERA) published updated statistics and data visualizations covering key segments of the …Read brief - Brief
CISA Adds One Known Exploited Vulnerability to Catalog
Summary: CISA has added one new vulnerability to its Known Exploited Vulnerabilities (KEV) Catalog, based on evidence of active exploitation. Why it matters: This matters if it …Read brief - Brief
CISA Announces New Advisory Council to Strengthen Partnerships and Secure Critical Infrastructure
Summary: CISA Announces New Advisory Council to Strengthen Partnerships and Secure Critical Infrastructure Why it matters: This matters if it changes how teams think about model …Read brief - Brief
EDPB and AMLA to develop Joint Guidelines on partnerships for information sharing
Summary: Brussels/Frankfurt, 1 July – The EDPB and the Anti-Money Laundering Authority (AMLA) are working together to bring greater clarity to a question of growing importance for …Read brief - Brief
FTC Seeks Public Comment on Policy Statement Addressing AI Accuracy
Summary: The Federal Trade Commission is seeking public comment on a proposed policy statement addressing concerns that AI companies may be manipulating the behavior of their AI …Read brief - Brief
SEC Seeks Public Comment on Novel Exchange-Traded Funds
Summary: The Securities and Exchange Commission today issued a request for public comment on exchange-traded funds (ETFs) seeking to invest in innovative asset classes or engage in …Read brief - Brief
Delta Electronics DVP12SE PLC
Summary: View CSAF Summary Successful exploitation of these vulnerabilities could allow an attacker to remotely issue commands, modify operational values, interfere with control …Read brief - Brief
Frangoteam FUXA SCADA/HMI
Summary: View CSAF Summary Successful exploitation of this vulnerability could allow an unauthenticated remote attacker to enumerate all user accounts and role assignments on a …Read brief - Brief
FTC Requires Amazon to Pay $2.25 Million to Resolve Charges It Knowingly Violated the Fair Credit Reporting ...
Summary: Amazon will pay $2.25 million in civil penalties to settle Federal Trade Commission allegations that the online retail giant knowingly violated the Fair Credit Reporting …Read brief - Brief
FTC Secures Agreement with Havas to Restore Competition in the Digital Advertising Ecosystem
Summary: Today, the Federal Trade Commission, along with a coalition of states, scored another major victory in the fight against collusive conduct in the advertising industry. Why …Read brief - Brief
Mitsubishi Electric MELSOFT Update Manager SW1DND-UDM-M
Summary: View CSAF Summary Successful exploitation of these vulnerabilities could allow a local attacker to tamper with or destroy information in the affected product, cause a …Read brief - Brief
OFFIS DCMTK Toolkit
Summary: View CSAF Summary Successful exploitation of these vulnerabilities could allow an attacker to write files, access unauthorized information, exhaust memory, or crash …Read brief - Brief
Schneider Electric EasyLogic T150 and Saitel DP RTU
Summary: View CSAF Summary Successful exploitation of these vulnerabilities can allow an attacker to cause unauthorized access and exposure of sensitive information when the …Read brief - Brief
Schneider Electric EcoStruxure IT Data Center Expert
Summary: View CSAF Summary Schneider Electric is aware of a vulnerability in its EcoStruxure™ IT Data Center Expert. Why it matters: This matters if it changes how teams think …Read brief