Category: Privacy/Governance Feed

Sysdig details how threat actors exploited a critical CVE in Langflow in less than a day – Read More  –  

The National Crime Agency’s director general warns that technology is rapidly reshaping crime – Read More  –  

Hastalamuerte leaks The Gentlemen RaaS ops: FortiGate exploits, BYOVD evasion, Qilin split tactics – Read More  –  

Mobile banking malware targets over 1200 financial apps globally, shifting fraud to user devices – Read More  –  

Notorious ransomware group Interlock has been exploiting a Cisco zero-day bug since January, AWS says – Read More  –  

The UK’s financial regulator has issued new rules to make incident and third-party reporting clearer – Read More  –  

35% of security leaders working in the UK’s critical infrastructure said regulatory requirements are the primary influence on their security programs – Read More  –  

CVE-2026-3888 Ubuntu snap flaw lets local users escalate to root via timing-based exploit – Read More  –  

ShieldGuard Chrome extension posed as a crypto security tool but stole wallets and drained user data – Read More  –  

Rapid7 says median time from publication to CISA KEV inclusion dropped to five days – Read More  –  

The Vidar 2.0 infostealers is deployed through fake free game cheats on GitHub and Reddit – Read More  –  

Gartner has urged security teams to get involved in AI projects from the start to avoid costly incident response – Read More  –  

With organizations more and more becoming data-driven, databases have become the cornerstone of the current digital ecosystem. There are financial records, healthcare… The post Database Activity Monitoring (DAM) for DPDP & SOC Alignment: Strengthening Data Protection and Insider Threat Detection appeared first on JISA Softech Pvt Ltd.  – Read More  – JISA Softech Pvt Ltd 

Android’s LSPosed-based attack hijacks payment apps via runtime manipulation and SIM-binding bypass – Read More  –  

CursorJack shows how malicious MCP deeplinks in Cursor IDE can trigger user-approved code execution – Read More  –  

Armis reveals that “mutually assured disruption” is no longer preventing state-backed attacks – Read More  –  

The US Cyber Monitoring Center should be operational in 2027, said the UK CMC leadership – Read More  –  

Akamai says 87% of organizations suffered an API-related security incident last year – Read More  –  

The healthcare ecosystem is currently experiencing a fast-paced shift toward digital technology. The healthcare system now depends on electronic… The post Protecting PHI: Architecture Blueprint for Hospitals & Healthtech appeared first on JISA Softech Pvt Ltd.  – Read More  – JISA Softech Pvt Ltd 

Some of these campaigns are linked to Darcula, a Chinese-language phishing-as-a-service platform – Read More  –  

CrackArmor AppArmor flaws let local Linux users gain root, break containers and enable DoS attacks – Read More  –  

DNS-based attack in AWS Bedrock AgentCore lets AI sandboxes exfiltrate cloud data – Read More  –  

The FBI wants to hear from gamers who have downloaded Steam titles containing malware – Read More  –  

An issue with the Companies House website has put the personal and corporate information of millions at risk – Read More  –  

A new law enforcement operation against phishing and ransomware operators led to the takedown of 45,000 malicious IP addresses – Read More  –  

Operation Lightning sees international law enforcement partners shut down ‘SocksEscort,’ a major malicious proxy service used by cybercriminals worldwide – Read More  –  

The critical vulnerability affecting both cloud and self-hosted n8n instances requires no authentication or even n8n account to be exploited – Read More  –  

PixRevolution Android trojan hijacks Brazil’s PIX payments in real time using accessibility abuse – Read More  –  

CISA issued urgent directive as attackers exploit Cisco SD-WAN flaw granting admin access to networks – Read More  –  

The ICO has fined Police Scotland after it shared the entire contents of a victim’s phone with her alleged attacker – Read More  –  

The pro-Iran Handala group claims to have wiped 200,000 systems in destructive wiper malware attack on US firm Stryker – Read More  –  

Since the digital economy of India grows, organizations must process more personal and sensitive data than ever before. The introduction… The post Implementing Key Management Best Practices Under the DPDP Act appeared first on JISA Softech Pvt Ltd.  – Read More  – JISA Softech Pvt Ltd 

French small and medium businesses remained the organizations most targeted by ransomware in 2025 – Read More  –  

LeakyLooker flaws in Google Looker Studio let attackers run cross-tenant SQL attacks on cloud data – Read More  –  

Infosecurity Europe 2026 reveals its keynote line-up, featuring Jason Fox, Shlomo Kramer, Cynthia Kaiser and more, with sessions on AI, cloud security and post quantum threats – Read More  –  

BlackSanta malware targets HR staff with fake resumes, kills EDR and steals system data – Read More  –  

Over 250 legitimate websites, including news outlets and a US Senate candidate’s official webpage, been compromised to infect visitors with infostealers, warn Rapid7 researchers – Read More  –  

Palo Alto Networks’ Unit 42 has developed a successful attack to bypass safety guardrails in popular generative AI tools – Read More  –  

Check Point data shows attack volumes are growing much faster in the UK than worldwide – Read More  –  

March Patch Tuesday sees Microsoft release updates for 79 flaws – Read More  –  

OpenAI’s latest acquisition addresses a security need Jamieson O’Reilly, security advisor at OpenClaw, raised during an exclusive interview with Infosecurity – Read More  –  

Only 24% of organizations test identity disaster recovery plans every 6 months, Quest Software said – Read More  –  

Ericsson data breach affects 15k employees/customers after third-party service provider compromise – Read More  –  

Google Cloud report details a sharp rise in attackers exploiting software vulnerabilities, including React2Shell – Read More  –  

Dutch intelligence reveals Russian state hackers are trying to hijack the Signal and WhatsApp accounts of key targets – Read More  –  

Prolific ShinyHunters group claims to have stolen data from nearly 400 websites in Experience Cloud attacks – Read More  –  

The financial ecosystem in India is changing radically. As digital banking, fintech networks, UPI-based applications and API-driven financial services… The post Designing a DPDP-Ready Crypto Architecture for BFSI & Fintech appeared first on JISA Softech Pvt Ltd.  – Read More  – JISA Softech Pvt Ltd 

Huntress researchers uncover campaign exploiting vulnerabilities to steal data using Elastic Cloud as a data hub – Read More  –  

US national cyber strategy focuses on stronger defenses, countering threats, fostering innovation – Read More  –  

Over one in five winners of IT-Harvest’s 2026 Cyber 150 are AI security companies – Read More  –