DPDP rules are here: What technology leaders must do now to build data-safe, AI-ready enterprises https://etimg.etb2bimg.com/thumb/msid-126055911,imgsize-23452,width-1200,height=627,overlay-etciso,resizemode-75/data-breaches/navigating-indias-digital-personal-data-protection-act-strategies-for-technology-leaders.jpg India’s Digital Personal Data Protection (DPDP) Act and newly released Rules signal one of the most consequential shifts in the country’s digital landscape. For technology leaders—CIOs, CDOs, CISOs, CTOs, and GCC heads—the act is far more than a compliance milestone. It demands a fundamental ...

Two Chrome Extensions Caught Secretly Stealing Credentials from Over 170 Sites https://firewall.firm.in/wp-content/uploads/2025/12/chrome-passwords.jpg Cybersecurity researchers have discovered two malicious Google Chrome extensions with the same name and published by the same developer that come with capabilities to intercept traffic and capture user credentials. The extensions are advertised as a “multi-location network speed test plug-in” for developers and foreign trade personnel. Both ...

Why businesses can no longer treat cybersecurity as an IT problem https://etimg.etb2bimg.com/thumb/msid-126132900,imgsize-77028,width-1200,height=627,overlay-etciso,resizemode-75/cybercrime-fraud/why-businesses-can-no-longer-treat-cybersecurity-as-an-it-problem.jpg For many years, cybersecurity teams prioritised developing impregnable defenses like firewalls, intrusion prevention systems, and antivirus software to prevent intruders. However, the most perilous cyberattacks now do not involve unauthorised entry. They are receiving an invitation. “The Downloads folder has quietly become one of the hottest pieces of ...

A Growing Threat to Digital Security, ETCISO Amid a rise in Telegram-based scams affecting users across India, cybersecurity researchers have identified several concerning patterns. Fraud actors are increasingly using the platform’s encrypted channels to circulate fake investment opportunities, lottery claims, and job offers. These schemes often lead to financial losses, identity theft, and malware infections through phishing links and malicious ...

No breach in Aadhaar database till date, govt tells Parliament https://etimg.etb2bimg.com/thumb/msid-126049947,imgsize-37458,width-1200,height=627,overlay-etciso,resizemode-75/data-breaches/no-breach-in-aadhaar-database-till-date-govt-tells-parliament.jpg There has been no breach of Aadhaar cardholders’ data from the UIDAI database to date, the government said on Wednesday. A multi-layered security infrastructure and Aadhar’s status as a nationally protected system shield it from threats, minister of state for electronics and information technology Jitin Prasada told Parliament. Aadhaar ...

Compromised IAM Credentials Power a Large AWS Crypto Mining Campaign https://firewall.firm.in/wp-content/uploads/2025/12/aws.jpg Dec 16, 2025Ravie LakshmananMalware / Threat Detection An ongoing campaign has been observed targeting Amazon Web Services (AWS) customers using compromised Identity and Access Management (IAM) credentials to enable cryptocurrency mining. The activity, first detected by Amazon’s GuardDuty managed threat detection service and its automated security monitoring systems on ...

Cyber resilience core to sovereignty: Satya Nadella https://etimg.etb2bimg.com/thumb/msid-125933775,imgsize-407925,width-1200,height=627,overlay-etciso,resizemode-75/vulnerabilities-exploits/satya-nadella-cyber-resilience-key-to-national-sovereignty-and-ai-innovation.jpg Microsoft CEO Satya Nadella has insisted that cyber resilience must be an essential pillar of any strategy surrounding sovereignty. He cautioned that autonomy without access to global threat intelligence can create vulnerabilities. While countries are increasingly building sovereign data infrastructure, and mandating that local data remains within the country’s borders, Nadella noted ...

Personal Data, Responsibility, and the Role of CISOs at ET CISO Data Protection & Privacy Summit 2025, ETCISO At the ET CISO Data Protection & Privacy Summit 2025, Hon’ble Justice (Retd.) B. N. Srikrishna—the architect of India’s foundational data protection framework—delivered a sweeping keynote on the evolving philosophy of personal data and the responsibilities it places on enterprises and their ...

Enterprises move from securing data to proving trust: Leaders unpack the new competitive advantage at ETCISO DP&P Summit 2025 https://etimg.etb2bimg.com/thumb/msid-125930618,imgsize-88480,width-1200,height=627,overlay-etciso,resizemode-75/data-breaches/enterprises-move-from-securing-data-to-proving-trust-leaders-unpack-the-new-competitive-advantage-at-etciso-dpp-summit-2025.jpg At the ET CISO Data Protection & Privacy Summit 2025, senior leaders from fintech, insurance, banking, market infrastructure and digital identity platforms examined how trust is shifting from a moral position to a measurable business strategy. Moderated by Sneha Jha, ...

New React RSC Vulnerabilities Enable DoS and Source Code Exposure https://firewall.firm.in/wp-content/uploads/2025/12/react-flaws.jpg Dec 12, 2025Ravie LakshmananSoftware Security / Vulnerability The React team has released fixes for two new types of flaws in React Server Components (RSC) that, if successfully exploited, could result in denial-of-service (DoS) or source code exposure. The team said the issues were found by the security community while ...