Category: Privacy/Governance Feed

The European Commission and government agencies in Finland and the Netherlands have suffered potentially related breaches – Read More  –  

The Digital Personal Data Protection (DPDP) Act in India transforms the privacy compliance documentation of companies to user experience… The post Designing DPDP Compliant Consent and Notice Flows appeared first on JISA Softech Pvt Ltd.  – Read More  – JISA Softech Pvt Ltd 

Security researchers from LayerX identified a new flaw in 50 Claude Desktop Extensions that could lead to unauthorized remote code execution – Read More  –  

VoidLink, a Linux-based C2 framework, facilitates credential theft, data exfiltration across clouds – Read More  –  

Two Connecticut men face federal charges for a $3m scheme targeting online gambling platforms – Read More  –  

Revolut claims social media sites make £3.8bn annually from scam ads targeting European users – Read More  –  

The services of Florida-based payments platform BridgePay are offline due to a ransomware attack – Read More  –  

SecurityScorecard has identified over 40,000 OpenClaw deployments exposed to potential attack – Read More  –  

CISA has issued a new directive requiring federal agencies to decommission all end of support edge devices within 12 months to reduce ongoing exploitation risks – Read More  –  

Substack did not specify the number of users affected by the data breach – Read More  –  

DKnife is a Chinese made malware framework that targets Chinese-based users – Read More  –  

Infosecurity Europe 2026 will debut a new Cyber Startup Programme, featuring a dedicated show-floor zone for early-stage cybersecurity companies to showcase innovations, connect with investors and highlight emerging technologies – Read More  –  

Cryptography has become the invisible infrastructure of the digital economy. Every payment, every identity, every medical record, and every… The post Industry-Aligned Cryptography by CryptoBind appeared first on JISA Softech Pvt Ltd.  – Read More  – JISA Softech Pvt Ltd 

Cellebrite data confirms digital evidence is now central to almost all cases – Read More  –  

Flaws in GitHub Codespaces allow RCE via crafted repositories or pull requests – Read More  –  

Researchers at Check Point link ‘Amarath-Dragon’ attacks to prolific Chinese cyber-espionage operation – Read More  –  

Pindrop warns of 1210% increase in AI-powered fraud last year – Read More  –  

The Digital Personal Data Protection (DPDP) Act, 2023 in India has been a pivot in the privacy debate moving it… The post Are You a Data Fiduciary or a Significant Data Fiduciary? Here’s How to Classify Yourself  appeared first on JISA Softech Pvt Ltd.  – Read More  – JISA Softech Pvt Ltd 

SystemBC malware linked to 10,000 infected IPs, posing risks to sensitive government infrastructure – Read More  –  

ShadowSyndicate cluster expands with new SSH fingerprints connecting servers to other ransomware ops – Read More  –  

Cofense claims AI is making phishing emails more personalized and sophisticated – Read More  –  

Pillar Security discovered two new critical vulnerabilities in n8n that could lead to supply chain compromise, credential harvesting and complete takeover attacks – Read More  –  

CISA has added a critical CVE in SolarWinds Web Help Desk to its KEV Catalog – Read More  –  

40,000 WordPress sites are vulnerable to SQL injection in Quiz and Survey Master plugin – Read More  –  

A security researcher found 386 malicious ‘skills’ published on ClawHub, a skill repository for the popular OpenClaw AI assistant project – Read More  –  

UK Data Protection Watchdog has “serious concerns” over data privacy on Elon Musk’s social platform – Read More  –  

DockerDash vulnerability allows RCE and data exfiltration via unverified metadata in Ask Gordon – Read More  –  

A new ransomware-as-a-service operation dubbed “Vect” features custom malware – Read More  –  

Elon Musk and X’s former CEO were summoned for voluntary interviews in Paris on April 20, 2026 – Read More  –  

Multi-stage attack begins with fake message relating to business requests and evades detection with link hidden in a PDF – Read More  –  

Wiz Security claims Moltbook misconfiguration allowed full read and write access – Read More  –  

The Digital Personal Data Protection (DPDP) Act of India is one of the most significant regulatory changes in the… The post 90-Day DPDP Readiness Plan for Indian Enterprises appeared first on JISA Softech Pvt Ltd.  – Read More  – JISA Softech Pvt Ltd 

NSA released new guidelines to help organizations achieve target-level Zero Trust maturity – Read More  –  

A supply chain attack on Notepad++ update process was linked to compromised hosting infrastructure – Read More  –  

Russia-linked hacking group Fancy Bear is exploiting a brand-new vulnerability in Microsoft Office, CERT-UA says – Read More  –  

Bitdefender has discovered a new Android malware campaign that uses Hugging Face – Read More  –  

Linwei Ding, a former Google engineer, has been found guilty of stealing trade secrets for China – Read More  –  

Ransomware victims surged in Q4 2025 despite fewer active extortion groups, with data leaks rising 50%, ReliaQuest researchers report – Read More  –  

CrowdStrike assessed that two new threat actor groups have spun off from North Korean Labyrinth Chollima hackers – Read More  –  

Non-profit ITRC says the number of data breaches increased 5% annually to reach a record total in 2025 – Read More  –  

The RedKitten campaign distributes lures designed to target people seeking information about missing persons or political dissidents in Iran – Read More  –  

Cyber fraudsters targeting corporate finance departments costs businesses millions a year – Read More  –  

The Middle East and Africa (MEA) region is experiencing a rapid industrial change. The use of Operational Technology (OT)… The post OT & IoT Security in MEA: Why Industrial Cyber Risks Are Surging appeared first on JISA Softech Pvt Ltd.  – Read More  – JISA Softech Pvt Ltd 

The French data protection regulator said that France Travail’s response to a 2024 data breach violated GDPR – Read More  –  

The FBI outlines ten actions which organizations can take to defend networks against cybercriminal and nation-state threats – Read More  –  

Google has taken coordinated action against the massive IPIDEA residential proxy network, enhancing customer protections and disrupting cybercrime operations – Read More  –  

CISA urges action against insider threats with publication of a new infographic offering strategies to manage risks – Read More  –  

The dark web forum administrator confirmed the takedown and said they had “no plans to rebuild” – Read More  –  

Despite the seemingly widespread adoption of AI for security operations, security leaders primarily use it for “relatively basic use cases,” said a Sumo Logic study – Read More  –