Category: Privacy/Governance Feed

New UK Online Crime Centre will combine expertise from a range of sources to takedown online channels cyber-scammers rely on – Read More  –  

Derrick Van Yeboah admitted he stole over $10m in romance scams as part of crime gang – Read More  –  

Billing services provider TriZetto Provider Solutions has begun notifying millions of patients about a data breach – Read More  –  

A bank, an airport, a non-profit and the Israeli branch of a US software company were among the targets of this new MuddyWater campaign – Read More  –  

Almost a quarter of the zero days detected by Google in 2025 targeted security and networking appliances – Read More  –  

Malicious insiders are using misusing AI for nefarious gain, while employees cutting corners also creates risk, warns Mimecast – Read More  –  

Critical flaw “ContextCrush” in Context7 MCP Server could allow malicious instructions into AI tools – Read More  –  

Exploit kit “Coruna” targets iPhones running iOS 13.0 to 17.2.1, focusing on financial data theft – Read More  –  

Ox Security warns that Mail2Shell could enable threat actors to hijack FreeScout systems without user interaction – Read More  –  

A global operation has resulted in the takedown of popular cybercrime forum LeakBase – Read More  –  

Two of the 48 Cisco vulnerabilities, affecting Secure Firewall Management Center, are maximum-severity flaws – Read More  –  

Nowadays, information is among the most precious resources of companies and states in the digital age. The cross-border and system-to-system… The post Why India Needs Indigenous HSMs for DPDP Act and RBI Compliance appeared first on JISA Softech Pvt Ltd.  – Read More  – JISA Softech Pvt Ltd 

A coalition of seven Western nations has launched guidelines to help integrate security-by-design principles into future 6G standards – Read More  –  

Law enforcers and industry partners have taken down notorious phishing-as-a-service platform Tycoon2FA – Read More  –  

Malware campaign uses Ukrainian email service for credibility, deploying “BadPaw” to execute attacks – Read More  –  

Increased attempts to compromise surveillance cameras linked to Iran during Middle East conflict – Read More  –  

The OpenID Foundation warns that fragmented policies on posthumous digital accounts could open the door for fraudsters to exploit AI deepfakes – Read More  –  

Espionage campaign exploits Israel-Iran conflict, distributing a trojanized Red Alert app via SMS – Read More  –  

Cloudflare Threat Report warns that AI tools enable attackers who lacked required skills to generate effective attacks rapidly and at scale – Read More  –  

Seemplicity finds US security leaders work 11 or more extra hours per week – Read More  –  

Ariomex database reveals potential sanctions evasion and capital transfers tied to Iranian actors – Read More  –  

Black Kite reveals 26,000 unnamed corporate victims linked to 136 third-party breaches – Read More  –  

Zscaler ThreatLabz assessed with medium to high confidence that an Iranian adversary targeted Iraq’s Ministry of Foreign Affairs in a new cyber-attack – Read More  –  

The Digital Personal Data Protection Act, 2023 (DPDP Act) in India is a structural change in the manner in… The post DPDP Act Phase 1: 10 Security Safeguards Every CISO Must Implement appeared first on JISA Softech Pvt Ltd.  – Read More  – JISA Softech Pvt Ltd 

John Hultquist suggests “aggressive” Iranian cyber attackers will target the US and its Gulf allies with plausibly deniable ransomware attacks, hacktivist campaigns and more – Read More  –  

Google Chrome initiates quantum-resistant measures via Merkle Tree Certificates to secure HTTPS – Read More  –  

Military strikes in the Middle East escalate cyber ops, raising spillover risks globally for firms – Read More  –  

Oasis Security reveals how a new ClawJacked vulnerability could allow attackers to silently take over a victim’s OpenClaw agent – Read More  –  

Chainalysis reveals a big surge in median ransomware payment size in 2025 despite overall drop in criminal revenue – Read More  –  

The security researchers from Zscaler ThreatLabz have also discovered five new tools deployed by the North Korean hacking group – Read More  –  

The UK government says its new Vulnerability Monitoring Service has cut unresolved security flaws by 75% and reduced cyber-attack fix times from nearly two months to just over a week – Read More  –  

International law enforcement operation led by Europol targets network of teenagers and young adults involved in ransomware attacks, extortion and other crimes – Read More  –  

New botnet Aeternum shifted C2 operations to Polygon blockchain, complicating takedown efforts – Read More  –  

2025 saw 32M phishing emails, with identity threats surpassing vulnerabilities – Read More  –  

The UK’s Information Commissioner’s Office is about to ditch single-leader model for CEO and board in a major shake-up – Read More  –  

Datadog report reveals two-fifths of services are affected by exploitable bugs – Read More  –  

UNC2814 hit 53 victims in 42 countries with novel backdoor in decade long cyber espionage operation – Read More  –  

The US and allies are urging Cisco Catalyst SD-WAN customers to hunt for signs of exploitation – Read More  –  

The Digital Personal Data Protection Act, 2023 (DPDP Act) in India has transformed the compliant dialogue into a policy-making enterprise to… The post From Policy to Practice: How Indian Companies Can Audit Their DPDP Compliance Annually appeared first on JISA Softech Pvt Ltd.  – Read More  – JISA Softech Pvt Ltd 

IBM’s 2026 X-Force report reveals 44% rise in cyber-attacks on public apps, driven by AI and flaws – Read More  –  

Malicious NuGet package mimicking Stripe’s library targeted developers – Read More  –  

A former general manager of a US defense contractor has been sentenced after selling zero days to Russia – Read More  –  

The UK’s ICO has fined Reddit over £14m for failing to use children’s personal information lawfully – Read More  –  

DTEX claims insider incidents cost $19.5m in 2025, with employee negligence most expensive – Read More  –  

Phishing attack mimicking Bitpanda targets users, harvesting credentials and personal information – Read More  –  

Ransomware Medusa linked to North Korean hackers targets US healthcare amid ongoing attacks – Read More  –  

ReliaQuest claims AI has reduced breakout and exfiltration time to under 10 minutes – Read More  –  

Anthropic accused DeepSeek, Moonshot and MiniMax of illicitly using Claude to steal some of the AI model’s capabilities – Read More  –  

CrowdStrike Global Threat Report warns how adversaries are leveraging AI to make campaigns more efficient and more effective – Read More  –  

The Digital Personal Data Protection (DPDP) Act in India has fundamentally altered the way that SaaS firms and startups… The post DPDP Act for SaaS and Startups: How to Scale Privacy-by-Design Without Slowing Product appeared first on JISA Softech Pvt Ltd.  – Read More  – JISA Softech Pvt Ltd