Category: Privacy/Governance Feed

Suspects accused of distributing malware and selling access to stolen Roblox accounts on Russian marketplaces – Read More  –  

Deep#Door Python RAT uses tunneling and obfuscation to evade detection and steal credentials – Read More  –  

The British public education sector has faced the nation’s most dramatic increase in cyber breach prevalence over the past year – Read More  –  

A new CISA‑led guide explains how zero‑trust security can be applied to operational technology, balancing cyber defence with safety and system availability – Read More  –  

European police arrested 10 suspects after dismantling Albanian scam call centers linked to a €50m ($58m) online investment fraud operation – Read More  –  

Marsh’s 2026 People Risks survey finds cyber‑related challenges dominate, as cyber‑threat literacy tops risks and cyber and AI skills shortages rise – Read More  –  

Data has become the most regulated asset in modern enterprises. For organizations operating in tightly governed sectors, the challenge… The post Cloud HSM for Regulated Industries: Strengthening Compliance and Data Security appeared first on JISA Softech Pvt Ltd.  – Read More  – JISA Softech Pvt Ltd 

Cursor flaw lets extensions steal API keys and session tokens without user interaction, according to researchers at LayerX – Read More  –  

Researchers uncover a malicious npm dependency linked to an AI‑assisted code commit that steals sensitive data and exposes crypto wallets – Read More  –  

KELA claims infostealers remained the primary access vector for attacks in 2025 – Read More  –  

The Vect 2.0 ransomware wipes large files instead of merely encrypting them, making recovery impossible – even for the attackers – Read More  –  

RunSafe report reveals most attacks on medical devices disrupt patient care – Read More  –  

Medtronic confirms IT breach as ShinyHunters claims millions of records accesseda – Read More  –  

Ransomware groups 0APT and KryBit have doxxed each other online – Read More  –  

Extradition links alleged MSS-directed hacker to Silk Typhoon and COVID-19 espionage – Read More  –  

Arctic Wolf attributed this large-scale spear-phishing campaign to BlueNoroff, a financially motivated subgroup of the Lazarus Group – Read More  –  

The National Cyber Security Centre has warned against measuring SOCs with ticket-based metrics – Read More  –  

The cybersecurity landscape is approaching a structural shift. Encryption has traditionally been based on computational infeasible mathematical problems that… The post Post-Quantum HSM: protect keys now appeared first on JISA Softech Pvt Ltd.  – Read More  – JISA Softech Pvt Ltd 

US sanctions target Cambodian scam networks tied to crypto fraud and trafficking – Read More  –  

Dozens of browser extensions openly sell user data via privacy policy disclosures – Read More  –  

Itron confirmed a cyber incident but does not believe it is likely to have a material impact on the company – Read More  –  

A new report by global technology recruitment firm, Harvey Nash, found that three quarters of cybersecurity staff are pessimistic on pay and half are looking for a new job – Read More  –  

Researchers uncover a new data theft and extortion group dubbed “BlackFile” – Read More  –  

The “fast16” malware may have been used to target Iran’s nuclear program prior to Stuxnet – Read More  –  

UK government Minister confirms that breached health records of UK Biobank volunteers were up for sale on Chinese ecommerce platforms before being removed – Read More  –  

AI tools are not just creating new vulnerabilities, they are reviving old security failures, warned Jurgen Kutscher, VP of Mandiant Consulting – Read More  –  

Malicious npm packages spread via worm-like propagation and steal developer credentials – Read More  –  

Google Cloud’s COO advocated for combining general-purpose frontier large language models with task-specific AI agents – Read More  –  

Apple patches iOS flaw that retained deleted notifications, exposing message data – Read More  –  

Google Cloud will attribute a unique cryptographic ID every AI agent that will be tied to “traceable and auditable” authorization policies – Read More  –  

Forcepoint has found 10 new indirect prompt injection attacks targeting AI agents – Read More  –  

Quorum Cyber report finds higher and further education institutions experienced 63% increase in attacks over a year – Read More  –  

The UK’s NCSC has fully backed passkeys as consumers’ first choice for login, citing progress with FIDO and successful use across the NHS – Read More  –  

macOS LOTL techniques bypass detection using native tools and metadata abuse – Read More  –  

The UK’s cybersecurity agency said the devices will be available for purchase by organizations around the world – Read More  –  

UK unveils £90m cybersecurity funding at CYBERUK to boost SME resilience, promote Cyber Essentials and a new Cyber Resilience Pledge, sparking industry debate – Read More  –  

Null subject phishing campaigns bypass filters and target VIPs with QR code and RMM abuse – Read More  –  

A former ransomware negotiator has pleaded guilty to abusing his position by working with noted cybercrime group BlackCat – Read More  –  

Infrawatch says ProxySmart platform enables SIM farm activity at “industrial scale” – Read More  –  

The convergence of global tensions and rapid technological change is driving a new era of cyber risk, the NCSC warns – Read More  –  

NGate malware abuses HandyPay app to steal NFC card data and PINs in Brazil – Read More  –  

Russian crypto-exchange Grinex claims Western intelligence agencies were behind a $13m heist – Read More  –  

Gentlemen RaaS expands quickly with multi-platform attacks and SystemBC-linked infections – Read More  –  

Data exposure, operational disruption and financial losses among issues faced by businesses struggling with the rapid rise of AI agents, warns Cloud Security Alliance report – Read More  –  

North Korea’s Lazarus Group is pegged for a $290m crypto theft at KelpDAO – Read More  –  

Cloud app developer Vercel appears to have suffered a security breach – Read More  –  

The financing sector is on the verge of a turning point. With the development of quantum computing beyond theoretical… The post Quantum-Ready Banking Starts with CryptoBind: HSM + Vault + KMS Strategy appeared first on JISA Softech Pvt Ltd.  – Read More  – JISA Softech Pvt Ltd 

ZionSiphon malware targets OT water systems with sabotage and ICS scanning capabilities – Read More  –  

Formbook attacks use combination of DLL Side-Loading and Obfuscated JavaScript to stay hidden, researchers at WatchGuard have uncovered – Read More  –