Critical Flaw in Microchip ASF Exposes IoT Devices to Remote Code Execution Risk https://firewall.firm.in/wp-content/uploads/2024/09/chip-hacking.png Sep 23, 2024Ravie LakshmananIoT Security / Vulnerability A critical security flaw has been disclosed in the Microchip Advanced Software Framework (ASF) that, if successfully exploited, could lead to remote code execution. The vulnerability, tracked as CVE-2024-7490, carries a CVSS score of 9.5 out of a maximum ...

CISOs decode return on security investment and cyber risk governance – ET CISO https://etimg.etb2bimg.com/thumb/msid-113519576,imgsize-33392,width-1200,height=765,overlay-etciso/ciso-strategies/cisos-decode-return-on-security-investment-and-cyber-risk-governance.jpg Rajesh Thapar, CISO of NSE, emphasized the evolving role of CISOs as business enablers. “CISOs need to be business enablers with knowledge of compliance and financial management. Skills have changed, and negotiation is needed. You need to be an influencer and convince stakeholders,” he said. Thapar ...

Why ‘Never Expire’ Passwords Can Be a Risky Decision https://firewall.firm.in/wp-content/uploads/2024/09/password.png Sep 23, 2024The Hacker NewsPassword Management / Data Breach Password resets can be frustrating for end users. Nobody likes being interrupted by the ‘time to change your password’ notification – and they like it even less when the new passwords they create are rejected by their organization’s password policy. IT ...

Star Health hacked:Data of 31 million customers available for free on Telegram – ET CISO https://etimg.etb2bimg.com/thumb/msid-113587699,imgsize-24152,width-1200,height=765,overlay-etciso/cybercrime-fraud/star-health-hacked-name-address-phone-numbers-medical-reports-and-other-data-of-31-million-customers-available-for-free-on-telegram.jpg A massive hacking at one of India’s largest health insurers, Star Health, has exposed the private details of over 31 million customers. The stolen data, including sensitive medical reports, has been made publicly accessible through chatbots on the messaging app, Telegram. According to a ...

Seoul summit, IT Security News, ET CISO Speakers including Dr. Radha Plumb, Chief Digital and Artificial Intelligence Officer, U.S. Department of Defense (third from left), discuss responsible AI use in a plenary session at the Responsible AI in the Military domain (REAIM) summit in Seoul, South Korea, September 9, 2024. Yonhap via REUTERS Humans not artificial intelligence should make the ...

THN Cybersecurity Recap: Last Week’s Top Threats and Trends (September 16-22) https://firewall.firm.in/wp-content/uploads/2024/09/recap.png Sep 23, 2024Ravie LakshmananCybersecurity / Cyber Threat Hold on tight, folks, because last week’s cybersecurity landscape was a rollercoaster! We witnessed everything from North Korean hackers dangling “dream jobs” to expose a new malware, to a surprising twist in the Apple vs. NSO Group saga. Even the seemingly ...

Ukraine bans use of Telegram on these devices on ‘spying concerns’ – ET CISO https://etimg.etb2bimg.com/thumb/msid-113587759,imgsize-16756,width-1200,height=765,overlay-etciso/ot-security/ukraine-bans-use-of-telegram-on-these-devices-on-spying-concerns.jpg Ukraine has banned the use of Telegram on government-issued devices due to concerns that Russia can use the app to spy on communications and track users, a report has said. The ban was announced by the National Security and Defence Council after the head of ...

Cyber resilience pays off, breached organizations increase spending, ET CISO Commvault, a leading provider of cyber resilience and data protection solutions for hybrid cloud organizations, today released new critical insights from its 2024 Cyber Recovery Readiness Report. This global survey of 1,000 security and IT professionals across 11 countries, reveals interesting behavior changes for organizations that have been breached versus ...

Hacktivist Group Twelve Targets Russian Entities with Destructive Cyber Attacks https://firewall.firm.in/wp-content/uploads/2024/09/malware.png A hacktivist group known as Twelve has been observed using an arsenal of publicly available tools to conduct destructive cyber attacks against Russian targets. “Rather than demand a ransom for decrypting data, Twelve prefers to encrypt victims’ data and then destroy their infrastructure with a wiper to prevent recovery,” ...

Unraveling emerging cyber risks: A proactive approach to defense – ET CISO https://etimg.etb2bimg.com/thumb/msid-113554210,imgsize-195754,width-1200,height=765,overlay-etciso/ciso-strategies/unraveling-emerging-cyber-risks-a-proactive-approach-to-defense.jpg Cyberattacks are now ranked as the fifth global risk, a threat more significant than supply chain disruptions or armed conflict. In this era of growing cyber threats, organizations must safeguard their crown jewels—critical data and assets. Rahul Modgil, CISO of EPFO, stressed the importance of a defined ...