Grafana Patches CVSS 10.0 SCIM Flaw Enabling Impersonation and Privilege Escalation https://firewall.firm.in/wp-content/uploads/2025/11/grafana.jpg Nov 21, 2025Ravie LakshmananVulnerability / Threat Mitigation Grafana has released security updates to address a maximum severity security flaw that could allow privilege escalation or user impersonation under certain configurations. The vulnerability, tracked as CVE-2025-41115, carries a CVSS score of 10.0. It resides in the System for Cross-domain ...

Kyndryl wins deal to modernise Vodafone Idea’s IT operations, cybersecurity https://etimg.etb2bimg.com/thumb/msid-125476619,imgsize-47186,width-1200,height=627,overlay-etciso,resizemode-75/corporate/kyndryl-wins-deal-to-modernise-vodafone-ideas-it-operations-cybersecurity.jpg US enterprise technology services firm Kyndryl has expanded its partnership with India’s Vodafone Idea (Vi) with a new three-year deal to modernise the telecom carrier’s IT operations and delivery, streamline application operations management, and provide a unified integrated cyber resilience framework. Vi and Kyndryl did not disclose financial terms ...

AI Leads Indian Firms’ Cybersecurity Budgets Amid Talent Shortage, Reveals PwC Survey, ETCISO Among AI-linked capabilities, 60% of security leaders are prioritising AI threat-hunting tools, while nearly 47% are focusing on agentic AI. AI has emerged as the top agenda item for cybersecurity leaders in India when it comes to budget allocation, addressing cyber talent shortages, and strengthening defence capabilities ...

Spain to investigate Meta for alleged Android privacy breaches https://etimg.etb2bimg.com/thumb/msid-125452475,imgsize-19560,width-1200,height=627,overlay-etciso,resizemode-75/data-breaches/spain-to-investigate-meta-for-alleged-android-privacy-breaches.jpg Spain’s parliament will investigate Meta for possible privacy violations of its Facebook and Instagram users, Spanish Prime Minister Pedro Sanchez said on Wednesday. “In Spain, the law is above any algorithm or any large technology platform. And anyone who violates our rights will pay the consequences,” Sanchez said in a ...

Iran-Linked Hackers Mapped Ship AIS Data Days Before Real-World Missile Strike Attempt https://firewall.firm.in/wp-content/uploads/2025/11/iran-hackers.jpg Nov 20, 2025Ravie LakshmananCyber Warfare / Threat Intelligence Threat actors with ties to Iran engaged in cyber warfare as part of efforts to facilitate and enhance physical, real-world attacks, a trend that Amazon has called cyber-enabled kinetic targeting. The development is a sign that the lines between ...

Cloud Innovation Without the Bill Shock: How Organizations Can Rein in Costs While Scaling Fast https://etimg.etb2bimg.com/thumb/msid-125410116,imgsize-7970,width-1200,height=627,overlay-etciso,resizemode-75/brand-solution/cloud-innovation-without-the-bill-shock-how-organizations-can-rein-in-costs-while-scaling-fast.jpg The promise of cloud technologies to organizations today is irresistible. Think speed, agility, scalability, and the ability to innovate at a pace that traditional IT infrastructures simply cannot match. It’s no wonder that enterprises are embracing cloud like never before. But here’s the problem: ...

Turning India’s DPDP act into a competitive advantage, ETCISO India’s Digital Personal Data Protection (DPDP) Act, 2023, has rightly prompted a sense of urgency across boardrooms. For many, the initial reaction is one of dread—a new set of rules, potential penalties, and operational hurdles. However, a seasoned IT leader would see an opportunity to transform a regulatory mandate into a ...

Breach reporting, big penalties: Will DPDP act transform data safety? https://etimg.etb2bimg.com/thumb/msid-125375609,imgsize-7784,width-1200,height=627,overlay-etciso,resizemode-75/data-breaches/dpdp-act-a-game-changer-for-data-safety-in-india.jpg When the government notified the final rules of the Data Privacy and Protection Act (DPDP Act) yesterday, it did more than activate a long-anticipated law. It marked India’s most assertive step yet toward tackling the nation’s fastest-rising digital threat: data-driven cybercrime. India now registers one of the sharpest increases ...

Researchers Find Serious AI Bugs Exposing Meta, Nvidia, and Microsoft Inference Frameworks https://firewall.firm.in/wp-content/uploads/2025/11/1000033960.jpg Cybersecurity researchers have uncovered critical remote code execution vulnerabilities impacting major artificial intelligence (AI) inference engines, including those from Meta, Nvidia, Microsoft, and open-source PyTorch projects such as vLLM and SGLang. “These vulnerabilities all traced back to the same root cause: the overlooked unsafe use of ZeroMQ ...

DPDP rules explained: Are Indian enterprises prepared to comply? https://etimg.etb2bimg.com/thumb/msid-125327347,imgsize-9816,width-1200,height=627,overlay-etciso,resizemode-75/corporate/dpdp-rules-explained-are-indian-enterprises-prepared-to-comply.jpg India has notified detailed rules to implement its Digital Personal Data Protection Act, introducing phased compliance timelines and new obligations for companies to collect, process and secure personal data. Under the Digital Personal Data Protection Rules, 2025, some provisions will take effect immediately; some key operational requirements will come into ...