Category: Privacy/Governance Feed

The FBI has warned that Iranian hacking group Handala has been targeting opponents of the regime since 2023 – Read More  –  

The FBI has warned that Iranian hacking group Handala has been targeting opponents of the regime since 2023 – Read More  –  

Cryptographic architecture has emerged as a characteristic of platform trust as SaaS platforms keep scaling across these domains, geographies… The post Building Multi-Tenant Crypto for SaaS Platforms appeared first on JISA Softech Pvt Ltd.  – Read More  – JISA Softech Pvt Ltd 

Tycoon2FA phishing platform resumes activity post-takedown, leveraging AITM techniques to bypass MFA – Read More  –  

ISACA survey found that confusion over responsibility and lack of understanding around AI cyber-attacks makes containing them difficult – Read More  –  

New Trivy Docker images 0.69.5 and 0.69.6 compromised with TeamPCP infostealer, impacting CI/CD scans – Read More  –  

High tech was the most frequently targeted industry in Mandiant investigations in 2025, overtaking financial services which led in 2023 and 2024 – Read More  –  

CISA added CVE-2026-20131 to its KEV catalog as it is being used in ransomware campaigns – Read More  –  

German-led policing effort against fraud operation disrupts countless CSAM and cybercrime sites – Read More  –  

Sysdig details how threat actors exploited a critical CVE in Langflow in less than a day – Read More  –  

The National Crime Agency’s director general warns that technology is rapidly reshaping crime – Read More  –  

Hastalamuerte leaks The Gentlemen RaaS ops: FortiGate exploits, BYOVD evasion, Qilin split tactics – Read More  –  

Mobile banking malware targets over 1200 financial apps globally, shifting fraud to user devices – Read More  –  

Notorious ransomware group Interlock has been exploiting a Cisco zero-day bug since January, AWS says – Read More  –  

The UK’s financial regulator has issued new rules to make incident and third-party reporting clearer – Read More  –  

35% of security leaders working in the UK’s critical infrastructure said regulatory requirements are the primary influence on their security programs – Read More  –  

CVE-2026-3888 Ubuntu snap flaw lets local users escalate to root via timing-based exploit – Read More  –  

ShieldGuard Chrome extension posed as a crypto security tool but stole wallets and drained user data – Read More  –  

Rapid7 says median time from publication to CISA KEV inclusion dropped to five days – Read More  –  

The Vidar 2.0 infostealers is deployed through fake free game cheats on GitHub and Reddit – Read More  –  

Gartner has urged security teams to get involved in AI projects from the start to avoid costly incident response – Read More  –  

With organizations more and more becoming data-driven, databases have become the cornerstone of the current digital ecosystem. There are financial records, healthcare… The post Database Activity Monitoring (DAM) for DPDP & SOC Alignment: Strengthening Data Protection and Insider Threat Detection appeared first on JISA Softech Pvt Ltd.  – Read More  – JISA Softech Pvt Ltd 

Android’s LSPosed-based attack hijacks payment apps via runtime manipulation and SIM-binding bypass – Read More  –  

CursorJack shows how malicious MCP deeplinks in Cursor IDE can trigger user-approved code execution – Read More  –  

Armis reveals that “mutually assured disruption” is no longer preventing state-backed attacks – Read More  –  

The US Cyber Monitoring Center should be operational in 2027, said the UK CMC leadership – Read More  –  

Akamai says 87% of organizations suffered an API-related security incident last year – Read More  –  

The healthcare ecosystem is currently experiencing a fast-paced shift toward digital technology. The healthcare system now depends on electronic… The post Protecting PHI: Architecture Blueprint for Hospitals & Healthtech appeared first on JISA Softech Pvt Ltd.  – Read More  – JISA Softech Pvt Ltd 

Some of these campaigns are linked to Darcula, a Chinese-language phishing-as-a-service platform – Read More  –  

CrackArmor AppArmor flaws let local Linux users gain root, break containers and enable DoS attacks – Read More  –  

DNS-based attack in AWS Bedrock AgentCore lets AI sandboxes exfiltrate cloud data – Read More  –  

The FBI wants to hear from gamers who have downloaded Steam titles containing malware – Read More  –  

An issue with the Companies House website has put the personal and corporate information of millions at risk – Read More  –  

A new law enforcement operation against phishing and ransomware operators led to the takedown of 45,000 malicious IP addresses – Read More  –  

Operation Lightning sees international law enforcement partners shut down ‘SocksEscort,’ a major malicious proxy service used by cybercriminals worldwide – Read More  –  

The critical vulnerability affecting both cloud and self-hosted n8n instances requires no authentication or even n8n account to be exploited – Read More  –  

PixRevolution Android trojan hijacks Brazil’s PIX payments in real time using accessibility abuse – Read More  –  

CISA issued urgent directive as attackers exploit Cisco SD-WAN flaw granting admin access to networks – Read More  –  

The ICO has fined Police Scotland after it shared the entire contents of a victim’s phone with her alleged attacker – Read More  –  

The pro-Iran Handala group claims to have wiped 200,000 systems in destructive wiper malware attack on US firm Stryker – Read More  –  

Since the digital economy of India grows, organizations must process more personal and sensitive data than ever before. The introduction… The post Implementing Key Management Best Practices Under the DPDP Act appeared first on JISA Softech Pvt Ltd.  – Read More  – JISA Softech Pvt Ltd 

French small and medium businesses remained the organizations most targeted by ransomware in 2025 – Read More  –  

LeakyLooker flaws in Google Looker Studio let attackers run cross-tenant SQL attacks on cloud data – Read More  –  

Infosecurity Europe 2026 reveals its keynote line-up, featuring Jason Fox, Shlomo Kramer, Cynthia Kaiser and more, with sessions on AI, cloud security and post quantum threats – Read More  –  

BlackSanta malware targets HR staff with fake resumes, kills EDR and steals system data – Read More  –  

Over 250 legitimate websites, including news outlets and a US Senate candidate’s official webpage, been compromised to infect visitors with infostealers, warn Rapid7 researchers – Read More  –  

Palo Alto Networks’ Unit 42 has developed a successful attack to bypass safety guardrails in popular generative AI tools – Read More  –  

Check Point data shows attack volumes are growing much faster in the UK than worldwide – Read More  –  

March Patch Tuesday sees Microsoft release updates for 79 flaws – Read More  –  

OpenAI’s latest acquisition addresses a security need Jamieson O’Reilly, security advisor at OpenClaw, raised during an exclusive interview with Infosecurity – Read More  –