Category: Privacy/Governance Feed

In February 2025, Sophos completed the Secureworks deal and SolarWinds went private – Read More  –  

Four in ten flaws exploited by threat actors in 2024 were from 2020 or earlier, with some dating back to the 1990s, according to a GreyNoise report – Read More  –  

A joint operation between the Thai and Singapore police has resulted in the arrest of a man allegedly responsible for over 90 data extortion attacks worldwide – Read More  –  

In today’s digital era, cashless transactions have become the norm. With the convenience of online payments, more people are… The post Exploring the Benefits of Payment HSM: Enhancing Security in a Cashless World  appeared first on JISA Softech Pvt Ltd.  – Read More  – JISA Softech Pvt Ltd 

DragonForce ransomware attacks Saudi firms stealing 6TB data, escalating cyber threats in real estate – Read More  –  

Winos 4.0 malware uses phishing emails to target organizations in Taiwan, Fortinet experts warn – Read More  –  

Veracode found a 47% increase in the average time taken to patch software vulnerabilities, driven by growing reliance on third-party code – Read More  –  

In its 2025 Global Threat Report, CrowdStrike observed a significant escalation in Chinese cyber espionage activities – Read More  –  

OpenSSF has released new baseline security best practices to improve open source software quality – Read More  –  

FBI confirms North Korea’s Lazarus Group responsible for Bybit crypto heist – Read More  –  

99% of organizations report API-related security issues, highlighting risks from API growth – Read More  –  

DISA Global Solutions confirms data breach affecting 3.3M people, exposing sensitive personal info – Read More  –  

Meredith Whittaker, Signal’s CEO, has threatened to pull the company out of Sweden if a proposed government bill requiring encryption backdoors becomes law – Read More  –  

HaveIBeenPwned has added over 500 million new passwords and email addresses lifted via infostealers – Read More  –  

IVF clinic Genea has confirmed that stolen patient data has been published online, with the Termite ransomware group appearing to be the perpetrators – Read More  –  

Europe is hit hard as geopolitics drives increase in state-backed APT and hacktivist activity – Read More  –  

In today’s digital landscape, securing Aadhaar data is a top priority for organizations that rely on identity verification and… The post How to Choose the Right Aadhaar Data Vault Solution appeared first on JISA Softech Pvt Ltd.  – Read More  – JISA Softech Pvt Ltd 

61% of hackers use new exploit code within 48 hours, ransomware remains top threat in 2024 – Read More  –  

Ghostwriter cyber-attack targets Ukrainian, Belarusian opposition using weaponized Excel documents – Read More  –  

Forescout observed the recently identified Chinese hacking group using medical imaging software applications to deliver malware – Read More  –  

ReliaQuest claims 80% of ransomware attacks now focus solely on exfiltrating data as it is faster – Read More  –  

SecurityScorecard revealed that the large-scale password spraying campaign can bypass MFA and security access policies by utilizing Non-interactive sign-ins – Read More  –  

New Hiya data finds 26% of UK consumers encountered a deepfake scam call in Q4 2024 – Read More  –  

Elementor plugin flaw puts 2m WordPress websites at risk, allowing XSS attacks via malicious scripts – Read More  –  

In today’s data-driven world, encryption serves as the backbone of security, safeguarding sensitive information across industries. At the heart… The post Differentiating Enterprise Key Management System (EKMS) from Key Management System (KMS) appeared first on JISA Softech Pvt Ltd.  – Read More  – JISA Softech Pvt Ltd 

Michigan man indicted for dark web credential fraud, purchased 2,500 logins from Genesis Market – Read More  –  

Google Cloud’s Key Management Service now features quantum-safe digital signatures to strengthen data integrity and prepare for emerging quantum computing challenges – Read More  –  

Telstra found that 75% of cyber incidents impacting manufacturing firms originated from the targeting of IT systems connected to OT environments – Read More  –  

Experts argue Britons are now less secure after their government effectively forced Apple to abandon end-to-end encryption – Read More  –  

Following the largest-ever crypto theft, Bybit is offering researchers up to 10% of recovered funds – Read More  –  

The Digital Personal Data Protection Act (DPDPA) 2023 marks a monumental shift in how businesses in India handle data… The post Impact of the Digital Personal Data Protection Act 2023 on Businesses in India appeared first on JISA Softech Pvt Ltd.  – Read More  – JISA Softech Pvt Ltd 

Chinese threat actor Salt Typhoon used JumbledPath, a custom-built utility, to gain access to a remote Cisco device, said the network provider – Read More  –  

Health Net Federal Services has agreed to pay over $11m over alleged false cybersecurity reporting – Read More  –  

BlackBasta’s internal chatlogs are “highly useful from a threat intelligence perspective,” said Prodaft, the firm that revealed the leak – Read More  –  

Microsoft has developed the first ever quantum chip, shortening the timeframe for when quantum computers will break exiting encryption – Read More  –  

As we move into the era of quantum computing, businesses and governments worldwide are grappling with its implications for… The post Data Privacy in the Age of Quantum Computing: Is India Ready?  appeared first on JISA Softech Pvt Ltd.  – Read More  – JISA Softech Pvt Ltd 

Fake job ads target freelance developers, spreading malware via GitHub – Read More  –  

Mobile phishing attacks surged in 2024, with 16% of all incidents occurring in the US, according to a new Zimperium report – Read More  –  

A survey by IANS and Artico found significant regional variation in cybersecurity salary levels across North America – Read More  –  

Kela researchers 330 million compromised credentials to infostealer activity on over four million machines in 2024 – Read More  –  

CISA and the FBI have released a joint advisory detailing the activity of China’s Ghost ransomware – Read More  –  

A flaw in the Jupiter X Core plugin has been identified, allowing upload of malicious SVG files and remote code execution on vulnerable servers – Read More  –  

Finastra notifies customers of data breach that took place more than three months ago, impacting sensitive financial information – Read More  –  

Australia-based Genea said it is investigating the cyber incident to determine whether any personal data was accessed by an unauthorized third party – Read More  –  

The head of the Australian Security Intelligence Organisation gave his Annual Threat Assessment for the year ahead – Read More  –  

Venture capital firm Insight Partners, which counts Recorded Future, SentinelOne and Wiz in its portfolio, confirmed an intrusion into its systems via a social engineering attack – Read More  –  

Google has warned that Russian state-backed hackers are targeting Signal to eavesdrop on persons of interest in Ukraine – Read More  –  

Hudson Rock has found evidence that infostealers have compromised hundreds of US military and defense contractor credentials – Read More  –  

Significant OpenSSH flaws are exposing systems to man-in-the-middle and denial-of service attacks – Read More  –