Category: Privacy/Governance Feed

Spanish police have arrested the suspected administrator of German dark web marketplace Crimenetwork – Read More  –  

ACSC warns over a campaign targeting organizations which uses ClickFix to deliver Vidar infostealer malware – Read More  –  

SentinelOne believes the PCPJack campaign may be the brainchild of a former TeamPCP member – Read More  –  

Oasis Security finds critical Cline kanban WebSocket flaw exposing AI coding agents to hijack – Read More  –  

Traditional network security tools are undermining data protection, with Forrester and Capital One Software research warning AI adoption is impossible without rethinking data security – Read More  –  

Sophos finds fake Claude site spreading DonutLoader and a new Beagle backdoor via DLL sideloading – Read More  –  

Commercial AI models were used to help plan and conduct cyber-attack against operational technology of a water and drainage facility, say researchers – Read More  –  

The Digital Personal Data Protection (DPDP) Act, 2023, represents a major paradigm shift to how the handling of personal… The post DPDP Compliance for Healthcare and Pharma: Securing Patient Data with CryptoBind Encryption appeared first on JISA Softech Pvt Ltd.  – Read More  – JISA Softech Pvt Ltd 

A China-linked threat actor backdoored a version of Daemon Tools to infect thousands – Read More  –  

Cofense has warned of a “significant” increase in phishing campaigns abusing Vercel platform – Read More  –  

Cisco Talos uncovers CloudZ RAT and Pheno plugin abusing Microsoft Phone Link to intercept SMS OTPs – Read More  –  

Rapid7 reveals an Iranian false flag operation masquerading as a Chaos ransomware attack – Read More  –  

CISA’s CI Fortify initiative aim for critical infrastructure operators to build isolation & recovery – Read More  –  

The Digital Personal Data Protection (DPDP) Act of India is a decisive move in the direction of making the… The post The CISO’s DPDP Framework: Security Controls to Board-Level Accountability appeared first on JISA Softech Pvt Ltd.  – Read More  – JISA Softech Pvt Ltd 

Cifas says that 13% of employees admit selling company credentials to a former colleague – Read More  –  

Microsoft researchers warn of a large-scale phishing campaign using fake compliance emails to steal credentials, targeting 35,000 users across 13,000 organizations worldwide – Read More  –  

ESET warns that North Korean hackers compromised a Yanbian gaming site in a supply‑chain attack, trojanizing Windows and Android software to spy on users – Read More  –  

Venomous#Helper attackers impersonate the US Social Security Administration to deploy signed RMM software and maintain persistent access across US networks – Read More  –  

ISACA report warns that while AI has become the norm, many organizations are yet to formally apply safety or security policies around its use – Read More  –  

The UK’s National Cyber Security Centre is urging organizations to prepare for glut of new software updates – Read More  –  

Security vendor Trellix has suffered a breach involving unauthorized access – Read More  –  

India’s Digital Personal Data Protection (DPDP) Act, 2023 is no longer a distant legislative horizon.As enforcement provisions are actively… The post How CryptoBind’s Encryption Suite Addresses DPDP Act Requirements appeared first on JISA Softech Pvt Ltd.  – Read More  – JISA Softech Pvt Ltd 

The Digital Personal Data Protection (DPDP) Act 2023 of India is a watershed moment in the history of regulatory… The post The DPDP Act 2023: A Complete Compliance Guide for Indian Enterprises appeared first on JISA Softech Pvt Ltd.  – Read More  – JISA Softech Pvt Ltd 

OpenAI announced its intention to expand the Trusted Access for Cyber program for cyber defenders at the federal, state and local government levels – Read More  –  

Team Cymru’s Stephen Campbell warned that small US defense contractors are not well prepared to face cyber intrusions through edge devices – Read More  –  

Claude Security enters public beta, giving enterprises AI driven code scanning with no API integration or custom agents required – Read More  –  

A researcher from offensive security firm Theori has found a nine-year-old flaw in the Linux kernel with the help of AI – Read More  –  

The cybersecurity workers used their knowledge and skills to conduct ransomware attacks for notorious gang, rather than protect victims against them – Read More  –  

Suspects accused of distributing malware and selling access to stolen Roblox accounts on Russian marketplaces – Read More  –  

Deep#Door Python RAT uses tunneling and obfuscation to evade detection and steal credentials – Read More  –  

The British public education sector has faced the nation’s most dramatic increase in cyber breach prevalence over the past year – Read More  –  

A new CISA‑led guide explains how zero‑trust security can be applied to operational technology, balancing cyber defence with safety and system availability – Read More  –  

European police arrested 10 suspects after dismantling Albanian scam call centers linked to a €50m ($58m) online investment fraud operation – Read More  –  

Marsh’s 2026 People Risks survey finds cyber‑related challenges dominate, as cyber‑threat literacy tops risks and cyber and AI skills shortages rise – Read More  –  

Data has become the most regulated asset in modern enterprises. For organizations operating in tightly governed sectors, the challenge… The post Cloud HSM for Regulated Industries: Strengthening Compliance and Data Security appeared first on JISA Softech Pvt Ltd.  – Read More  – JISA Softech Pvt Ltd 

Cursor flaw lets extensions steal API keys and session tokens without user interaction, according to researchers at LayerX – Read More  –  

Researchers uncover a malicious npm dependency linked to an AI‑assisted code commit that steals sensitive data and exposes crypto wallets – Read More  –  

KELA claims infostealers remained the primary access vector for attacks in 2025 – Read More  –  

The Vect 2.0 ransomware wipes large files instead of merely encrypting them, making recovery impossible – even for the attackers – Read More  –  

RunSafe report reveals most attacks on medical devices disrupt patient care – Read More  –  

Medtronic confirms IT breach as ShinyHunters claims millions of records accesseda – Read More  –  

Ransomware groups 0APT and KryBit have doxxed each other online – Read More  –  

Extradition links alleged MSS-directed hacker to Silk Typhoon and COVID-19 espionage – Read More  –  

Arctic Wolf attributed this large-scale spear-phishing campaign to BlueNoroff, a financially motivated subgroup of the Lazarus Group – Read More  –  

The National Cyber Security Centre has warned against measuring SOCs with ticket-based metrics – Read More  –  

The cybersecurity landscape is approaching a structural shift. Encryption has traditionally been based on computational infeasible mathematical problems that… The post Post-Quantum HSM: protect keys now appeared first on JISA Softech Pvt Ltd.  – Read More  – JISA Softech Pvt Ltd 

US sanctions target Cambodian scam networks tied to crypto fraud and trafficking – Read More  –  

Dozens of browser extensions openly sell user data via privacy policy disclosures – Read More  –  

Itron confirmed a cyber incident but does not believe it is likely to have a material impact on the company – Read More  –  

A new report by global technology recruitment firm, Harvey Nash, found that three quarters of cybersecurity staff are pessimistic on pay and half are looking for a new job – Read More  –