Italian politicians express alarm at latest data breach allegedly affecting 800,000 citizens – ET CISO https://etimg.etb2bimg.com/thumb/msid-114715707,imgsize-112418,width-1200,height=765,overlay-etciso/data-breaches/italian-politicians-express-alarm-at-latest-data-breach-allegedly-affecting-800000-citizens.jpg Italian politicians called Monday for better protection of citizens’ online data following a probe into a hacking scheme that allegedly breached law enforcement, tax authority and other sensitive public data. According to prosecutors in Milan, the data of at least 800,000 Italians was compromised ...

U.S. Government Issues New TLP Guidance for Cross-Sector Threat Intelligence Sharing https://firewall.firm.in/wp-content/uploads/2024/10/white-house.png Oct 29, 2024Ravie LakshmananDigital Security / Data Privacy The U.S. government (USG) has issued new guidance governing the use of the Traffic Light Protocol (TLP) to handle the threat intelligence information shared between the private sector, individual researchers, and Federal Departments and Agencies. “The USG follows TLP markings ...

US finalizes rules to curb AI investments in China, impose other restrictions – ET CISO https://etimg.etb2bimg.com/thumb/msid-114715895,imgsize-63802,width-1200,height=765,overlay-etciso/ot-security/us-finalizes-rules-to-curb-ai-investments-in-china-impose-other-restrictions.jpg The Biden administration said on Monday it is finalizing rules that will limit U.S. investments in artificial intelligence and other technology sectors in China that could threaten U.S. national security. The rules, which were proposed in June by the U.S. Treasury, were directed by ...

Star Health, IT Security News, ET CISO A forensic investigation by an independent firm that went into the allegations made by a hacker against Star Health Insurance’s chief information security officer (CISO) has revealed that there was no evidence of any wrongdoing by the CISO. Earlier, the hacker, whom the company refers to as a threat actor (an unknown person ...

Chinese Hackers Use CloudScout Toolset to Steal Session Cookies from Cloud Services https://firewall.firm.in/wp-content/uploads/2024/10/machine.png Oct 28, 2024Ravie LakshmananCloud Security / Cyber Attack A government entity and a religious organization in Taiwan were the target of a China-linked threat actor known as Evasive Panda that infected them with a previously undocumented post-compromise toolset codenamed CloudScout. “The CloudScout toolset is capable of retrieving ...

Insurance admin services company data breach exposes details about 8 lakh US users – ET CISO https://etimg.etb2bimg.com/thumb/msid-114610856,imgsize-42686,width-1200,height=765,overlay-etciso/data-breaches/insurance-admin-services-company-data-breach-exposes-details-about-8-lakh-us-users.jpg Insurance administrative services company Landmark Admin has disclosed a data breach. The company confirmed that a cyberattack in May affected over 8 lakh people. The company, which provides back-office services for major insurance carriers, said that it asked a third-party cybersecurity company to ...

IRDAI tightens fraud rules post hacking incidents, IT Security News, ET CISO The Insurance Regulatory and Development Authority of India (IRDAI) has proposed stricter guidelines in an effort to stem online fraud after recent high-profile cases at insurers like Star Health Insurance Company. The Insurance Fraud Monitoring Framework Guidelines, 2024 requires insurers to adopt strict measures, including board-approved anti-fraud policies, ...

FIR filed over suspected data breach on Manav Sampada portal – ET CISO https://etimg.etb2bimg.com/thumb/msid-114611079,imgsize-75886,width-1200,height=765,overlay-etciso/data-breaches/fir-filed-over-suspected-data-breach-on-manav-sampada-portal.jpg Concerns have emerged over a potential security breach involving the Uttar Pradesh government’s Manav Sampada portal, leading to the filing of an FIR. The alert was raised by Rajeev Kumar Mishra, deputy registrar of the Institute of Engineering and Technology (IET), through an official email dated ...

Researchers Discover Command Injection Flaw in Wi-Fi Alliance’s Test Suite https://firewall.firm.in/wp-content/uploads/2024/10/wifi.png Oct 25, 2024Ravie LakshmananVulnerability / Wi-Fi Security A security flaw impacting the Wi-Fi Test Suite could enable unauthenticated local attackers to execute arbitrary code with elevated privileges. The CERT Coordination Center (CERT/CC) said the vulnerability, tracked as CVE-2024-41992, said the susceptible code from the Wi-Fi Alliance has been found ...

Mathan Babu Kasilingam bids farewell to Vodafone – ET CISO https://etimg.etb2bimg.com/thumb/msid-114577874,imgsize-10688,width-1200,height=765,overlay-etciso/ciso-movement/mathan-babu-kasilingam-bids-farewell-to-vodafone.jpg Mathan Babu Kasilingam With heartfelt gratitude, Mathan Babu Kasilingam bids adieu to Vodafone Idea after an impactful tenure as CISO. As he closes this chapter, he eagerly embraces new challenges and opportunities on the horizon. Prior to this appointment, he was with NPCI and HDFC Bank. “It has been ...