Category: Privacy/Governance Feed

Check Point has identified a dozen attacks in September that bore the LockBit stamp, with half of them attributed to the group’s new ransomware version – Read More  –  

A spear phishing campaign dubbed PhantomCaptcha targeted Ukraine’s war relief efforts and regional government administrations for a single day in October – Read More  –  

ToolShell exploit activity surged last quarter, appearing in over 60% of Cisco Talos IR cases and driving a sharp rise in public-facing application attacks – Read More  –  

A cyber-espionage campaign by Pakistan’s TransparentTribe has been identified, targeting Indian government systems using DeskRAT – Read More  –  

Cyber-attacks by North Korea’s Lazarus Group target European defense firms in drone development – Read More  –  

Forescout researchers discovered critical and high-severity vulnerabilities in several TP-Link VPN routers – Read More  –  

Trend Micro believe security teams should anticipate increased Vidar 2.0 prevalence in campaigns through Q4 2025 – Read More  –  

The digital age has changed the way business is done and data has become the core of business development…. The post DPDP Act in Action: Real-life Cases & Lessons for CISOs appeared first on JISA Softech Pvt Ltd.  – Read More  – JISA Softech Pvt Ltd 

Group-IB has uncovered a phishing campaign by Iran-linked MuddyWater, exploiting compromised emails for foreign intelligence – Read More  –  

SentinelLABS Researchers have uncovered a new phishing campaign, PhantomCaptcha, targeting aid organizations supporting Ukraine – Read More  –  

The Cyber Monitoring Centre has classified the cyber-attack against Jaguar Land Rover as a “systemic cyber event” – Read More  –  

Scattered Lapsus$ Hunters may be preparing to launch an extortion-as-a-service model, according to Palo Alto Networks – Read More  –  

Group-IB has uncovered a scam operation impersonating Singapore officials using Google Ads and deepfakes – Read More  –  

According to ExtraHop’s latest threat landscape report, average ransomware payments surged 44% to $3.6m in 2025 despite fewer incidents – Read More  –  

A critical out-of-bounds write flaw (CVE-2025-9242) in WatchGuard Fireware OS could allow remote code execution – Read More  –  

The Coldriver hacking group reportedly shifted its operation quickly after the May 2025 public disclosure of its LostKeys malware – Read More  –  

Lumma Stealer operators allegedly exposed in underground doxxing campaign, with sensitive details leaked by rival cybercriminals, according to Trend Micro – Read More  –  

The Dutch Data Protection Authority issued Experian a €2.7m for GDPR violations including excessive collection of personal data – Read More  –  

Only one in ten IT and cybersecurity professionals feels “very prepared” to manage generative AI risks – Read More  –  

A cyber intrusion by China-linked group Salt Typhoon has been observed targeting global infrastructure via DLL sideloading – Read More  –  

Several suspects have been arrested over links with a network running a “sophisticated” cybercrime-enabling service – Read More  –  

Microsoft has revoked over 200 fraudulent code-signing certificates used in a ransomware campaign involving fake Teams installers by threat group Vanilla Tempest – Read More  –  

Dutch prosecutors suspect three teens of aiding a foreign power, with one allegedly linked to a Russian-affiliated hacker group – Read More  –  

Google reveals North Korean hackers are using EtherHiding, a blockchain-based technique, to deliver malware and steal cryptocurrency – Read More  –  

The US lending platform said early investigations found no evidence of unauthorized account access or fund theft – Read More  –  

At ISACA Europe 2025, cybersecurity consultant Tony Gee shared some technical measures security teams could implement to fight against the infostealer scourge – Read More  –  

Trend Micro have reported a campaign exploiting a flaw in Cisco SNMP to install Linux rootkits on devices – Read More  –  

Microsoft systems analyze over 100 trillion daily signals, suggesting dramatically increasing AI-driven cyber-threats – Read More  –  

LastPass warns customers it has not been breached, after phishing emails falsely claim a hack and urge users to update their desktop app – Read More  –  

Data from the Identity Theft Resource Center reveals 23 million individuals victimized by breaches in Q3 2025 – Read More  –  

F5 has admitted a nation state actor has stolen source code and information on undisclosed vulnerabilities – Read More  –  

With the increase in digital ecosystems, cyber threats are growing in complexity and magnitude. Instead of just planning against… The post Quantum-Agile Architectures: The Future of Cybersecurity appeared first on JISA Softech Pvt Ltd.  – Read More  – JISA Softech Pvt Ltd 

A flaw in the Slider Revolution plugin has exposed millions of WordPress sites to unauthorized file access – Read More  –  

Whisper 2FA is now one of the most active PhaaS tools alongside Tycoon and EvilProxy, responsible for one million attacks since July 2025 – Read More  –  

Microsoft has fixed over 170 CVEs in October’s Patch Tuesday, including six zero-day vulnerabilities – Read More  –  

Outsourcing giant Capita has been fined £14m by the ICO after a major data breach in 2023 – Read More  –  

Investigations found that the network operates scam centers in Cambodia, Myanmar and across Southeast Asia – Read More  –  

The Digital Personal Data Protection (DPDP) Act 2025 represents a necessary change in the data privacy of India, which… The post DPDP Act 2025: Key Compliance Challenges and How CryptoBind Solves Them appeared first on JISA Softech Pvt Ltd.  – Read More  – JISA Softech Pvt Ltd 

Legacy Windows protocols are still exposing organizations to credential theft, Resecurity found – Read More  –  

A newly identified cybercrime group TA585 is running an advanced cyber operation distributing MonsterV2 malware – Read More  –  

In a joint warning letter, UK ministers urged FTSE 350 CEOs to bolster cyber defenses – Read More  –  

ReliaQuest report reveals Flax Typhoon attackers maintained year-long access to an ArcGIS system – Read More  –  

In the digitalized, hyper connected economy that the modern world has become, cybersecurity is no longer a back office… The post The Business Case for Investing in Cybersecurity is Now appeared first on JISA Softech Pvt Ltd.  – Read More  – JISA Softech Pvt Ltd 

A new EY report claims unmanaged AI risk is causing millions of pounds’ worth of losses for UK organizations – Read More  –  

The UK cybersecurity agency reported 204 cyber incidents of “national significance” between September 2024 and August 2025 – an all-time high – Read More  –  

A rise in attacks exploiting RMM tools like ScreenConnect enables system control via phishing tactics – Read More  –  

Spanish authorities have arrested a 25-year-old Brazilian accused of leading the GXC Team and selling malware and AI tools to cybercriminals – Read More  –  

A new campaign distributing the Stealit infostealer employs previously unknown malware delivery techniques and infrastructure – Read More  –  

Apple has doubled its top bug bounty reward to $2m but with bonuses it could reach $5m – Read More  –  

The infamous BreachForums site has been taken offline again to disrupt Scattered Lapsus$ Hunters – Read More  –