Here are some if the items covered in our Security Briefs this week:

• Adopting a unified security platform approach can reduce incidents by 31%.
• Attackers are exploiting gaps in security, targeting unprotected applications and legacy authentication systems.
• AI is presenting new attack surfaces and being weaponized for phishing.
• A critical vulnerability in Apache Struts2 allows for remote code execution.
• Tenable Security Center and IBM Cognos Analytics also have multiple vulnerabilities.
• Hard-coded credentials are being exploited in Acclaim Systems USAHERDS.
• NetApp products have a vulnerability that risks data confidentiality.

Overall, the risk landscape is high. Immediate actions are needed to mitigate these issues, such as:

• Patching vulnerable systems: Apache Struts2, Tenable Security Center, IBM Cognos Analytics, NetApp products, and Acclaim Systems USAHERDS.
• Implementing mitigations for vulnerabilities in industrial control systems (ICS).
• Auditing all systems, focusing on those with public-facing interfaces.
• Reviewing and strengthening access controls, configurations, and monitoring.

These updates highlight the need for constant vigilance and a proactive approach to cybersecurity.

For more information in the SecureResearch Daily Cyber Intelligence Brief, email [email protected]