Transparent Tribe Launches New RAT Attacks Against Indian Government and Academia https://firewall.firm.in/wp-content/uploads/2026/01/india.jpg The threat actor known as Transparent Tribe has been attributed to a fresh set of attacks targeting Indian governmental, academic, and strategic entities with a remote access trojan (RAT) that grants them persistent control over compromised hosts. “The campaign employs deceptive delivery techniques, including a weaponized Windows shortcut ...

My prediction for 2026: The shift to “Machine-Speed Defense” https://etimg.etb2bimg.com/thumb/msid-126304236,imgsize-357760,width-1200,height=627,overlay-etciso,resizemode-75/ciso-movement/2026-the-emergence-of-machine-speed-defense-in-cybersecurity.jpg For years, “Human-in-the-Loop” (HITL) has been the mantra of responsible AI. We envisioned a future where artificial intelligence would augment our capabilities, but a human would always retain the final say — the ultimate “kill switch.” In cybersecurity, this model has served us reasonably well, allowing human analysts to review, ...

Smart devices, smarter threats, ETCISO Remember when the biggest security risk was your colleague writing their password on a sticky note. Those were simpler times. As we head into 2026, eScan (MicroWorld Technologies Inc.) has analyzed emerging threat patterns, and frankly, sticky notes are starting to look old-world and charming. The cybersecurity landscape in 2026 won’t just be about protecting ...

Trust will be the new competitive edge in the digital economy: Axis Bank’s Damini Marwah https://etimg.etb2bimg.com/thumb/msid-125931349,imgsize-76338,width-1200,height=627,overlay-etciso,resizemode-75/data-breaches/trust-as-the-competitive-edge-in-indias-digital-economy-insights-from-axis-banks-damini-marwah.jpg Delivering the special address at the ETCISO Data Protection & Privacy Summit 2025, Damini Marwah, President and Group Head – Legal, Axis Bank, highlighted how India’s accelerating digital transformation has elevated data privacy from a regulatory obligation to a strategic business imperative. Acknowledging the ...

MongoDB Vulnerability CVE-2025-14847 Under Active Exploitation Worldwide https://firewall.firm.in/wp-content/uploads/2025/12/mongodb-exploit.jpg Dec 29, 2026Ravie LakshmananDatabase Security / Vulnerability A recently disclosed security vulnerability in MongoDB has come under active exploitation in the wild, with over 87,000 potentially susceptible instances identified across the world. The vulnerability in question is CVE-2025-14847 (CVSS score: 8.7), which allows an unauthenticated attacker to remotely leak sensitive data from ...

The year the cloud went dark: Inside 2025’s biggest tech outages https://etimg.etb2bimg.com/thumb/msid-126199542,imgsize-2412700,width-1200,height=627,overlay-etciso,resizemode-75/cybercrime-fraud/the-year-the-cloud-went-dark-inside-2025s-biggest-tech-outages.jpg The year 2025 highlighted the internet’s vulnerability. Major cloud providers like AWS, Microsoft Azure, and Google Cloud experienced significant outages. For a world that lives online, 2025 was a reminder of just how fragile the internet’s backbone can be. From payment systems and airlines to messaging apps and ...

The New Iframe Phishing Kit Behind Over One Million Attacks, ETCISO A newly identified phishing-as-a-service (PhaaS) kit, tracked since September 2025, has been linked to more than one million phishing attacks. The kit, referred to by researchers as GhostFrame, represents a notable shift in phishing infrastructure by building an entire attack framework around the use of web page iframes to ...

‘Data is the soil of the enterprise’: Insurance leaders unpack readiness, ownership and the rising enterprise risk of privacy at ETCISO DP&P Summit 2025 https://etimg.etb2bimg.com/thumb/msid-125931517,imgsize-65770,width-1200,height=627,overlay-etciso,resizemode-75/data-breaches/data-is-the-soil-of-the-enterprise-insights-from-leading-insurance-executives-on-privacy-and-risk-management.jpg At the ET CISO Data Protection & Privacy Summit 2025, top technology, risk and privacy leaders from India’s largest life insurers examined how enterprises must redesign their operating models to meet the Digital Personal Data ...

New MacSync macOS Stealer Uses Signed App to Bypass Apple Gatekeeper https://firewall.firm.in/wp-content/uploads/2025/12/apple-macos.jpg Dec 24, 2025Ravie LakshmananMalware / Endpoint Security Cybersecurity researchers have discovered a new variant of a macOS information stealer called MacSync that’s delivered by means of a digitally signed, notarized Swift application masquerading as a messaging app installer to bypass Apple’s Gatekeeper checks. “Unlike earlier MacSync Stealer variants ...

Noida International Airport partners with Tech Mahindra for network, cybersecurity operations https://etimg.etb2bimg.com/thumb/msid-126152388,imgsize-513557,width-1200,height=627,overlay-etciso,resizemode-75/next-gen-tech/noida-international-airport-partners-with-tech-mahindra-for-network-cybersecurity-operations.jpg Noida International Airport (NIA) and IT services firm Tech Mahindra on Tuesday announced their partnership to establish and operate an integrated Network and Security Operations Centre (NOC-SOC) for the airport. Tech Mahindra will collaborate with NIA to establish a robust, process-driven ecosystem that places cybersecurity at the heart ...