Russian APT28 Runs Credential-Stealing Campaign Targeting Energy and Policy Organizations https://firewall.firm.in/wp-content/uploads/2026/01/cyberattack.jpg Jan 09, 2026Ravie LakshmananEmail Security / Threat Intelligence Russian state-sponsored threat actors have been linked to a fresh set of credential harvesting attacks targeting individuals associated with a Turkish energy and nuclear research agency, as well as staff affiliated with a European think tank and organizations in North Macedonia ...

2026 Will Redefine Cyber Defense: What the 2025 Threat Landscape Is Telling Us https://etimg.etb2bimg.com/thumb/msid-126411345,imgsize-1365076,width-1200,height=627,overlay-etciso,resizemode-75/brand-solution/redefining-cyber-defense-the-imperative-shift-towards-intelligence-led-security-in-2026.jpg The cyber-threat landscape of 2025 is a reminder that today’s attackers are operating with more sophistication, more collaboration, and more automation than ever before — often faster than traditional security architectures can respond. For enterprise security teams, the second half of 2025 has made one thing ...

How AI is Transforming Credit Risk, Compliance, and Fraud Detection, ETCISO Risk management has always been the cornerstone of banking and financial services. For the longest time, banks managed credit, compliance, and fraud risks through manual assessments, strict rule-based systems, and historical data analysis. While these methods helped protect banks, the processes had their own constraints, including limited data visibility, ...

European Space Agency confirms cyberattack on some its systems https://etimg.etb2bimg.com/thumb/msid-126298138,imgsize-105962,width-1200,height=627,overlay-etciso,resizemode-75/data-breaches/european-space-agency-confirms-cyberattack-on-some-its-systems.jpg The European Space Agency (ESA) has confirmed a cyberattack on some of its systems after a hacker offered to sell data allegedly stolen from the organisation. The agency’s forensic investigation has revealed that servers located outside the ESA corporate network have been compromised. According to ESA, only a very small ...

Transparent Tribe Launches New RAT Attacks Against Indian Government and Academia https://firewall.firm.in/wp-content/uploads/2026/01/india.jpg The threat actor known as Transparent Tribe has been attributed to a fresh set of attacks targeting Indian governmental, academic, and strategic entities with a remote access trojan (RAT) that grants them persistent control over compromised hosts. “The campaign employs deceptive delivery techniques, including a weaponized Windows shortcut ...

My prediction for 2026: The shift to “Machine-Speed Defense” https://etimg.etb2bimg.com/thumb/msid-126304236,imgsize-357760,width-1200,height=627,overlay-etciso,resizemode-75/ciso-movement/2026-the-emergence-of-machine-speed-defense-in-cybersecurity.jpg For years, “Human-in-the-Loop” (HITL) has been the mantra of responsible AI. We envisioned a future where artificial intelligence would augment our capabilities, but a human would always retain the final say — the ultimate “kill switch.” In cybersecurity, this model has served us reasonably well, allowing human analysts to review, ...

Smart devices, smarter threats, ETCISO Remember when the biggest security risk was your colleague writing their password on a sticky note. Those were simpler times. As we head into 2026, eScan (MicroWorld Technologies Inc.) has analyzed emerging threat patterns, and frankly, sticky notes are starting to look old-world and charming. The cybersecurity landscape in 2026 won’t just be about protecting ...

Trust will be the new competitive edge in the digital economy: Axis Bank’s Damini Marwah https://etimg.etb2bimg.com/thumb/msid-125931349,imgsize-76338,width-1200,height=627,overlay-etciso,resizemode-75/data-breaches/trust-as-the-competitive-edge-in-indias-digital-economy-insights-from-axis-banks-damini-marwah.jpg Delivering the special address at the ETCISO Data Protection & Privacy Summit 2025, Damini Marwah, President and Group Head – Legal, Axis Bank, highlighted how India’s accelerating digital transformation has elevated data privacy from a regulatory obligation to a strategic business imperative. Acknowledging the ...

MongoDB Vulnerability CVE-2025-14847 Under Active Exploitation Worldwide https://firewall.firm.in/wp-content/uploads/2025/12/mongodb-exploit.jpg Dec 29, 2026Ravie LakshmananDatabase Security / Vulnerability A recently disclosed security vulnerability in MongoDB has come under active exploitation in the wild, with over 87,000 potentially susceptible instances identified across the world. The vulnerability in question is CVE-2025-14847 (CVSS score: 8.7), which allows an unauthenticated attacker to remotely leak sensitive data from ...

The year the cloud went dark: Inside 2025’s biggest tech outages https://etimg.etb2bimg.com/thumb/msid-126199542,imgsize-2412700,width-1200,height=627,overlay-etciso,resizemode-75/cybercrime-fraud/the-year-the-cloud-went-dark-inside-2025s-biggest-tech-outages.jpg The year 2025 highlighted the internet’s vulnerability. Major cloud providers like AWS, Microsoft Azure, and Google Cloud experienced significant outages. For a world that lives online, 2025 was a reminder of just how fragile the internet’s backbone can be. From payment systems and airlines to messaging apps and ...