Banks up tech hiring with RBI pushing for enhanced risk management, ET CISO As India’s central bank steps up the emphasis on financial sector stability, banks are beefing up their technology teams and enhancing IT spending, as cybersecurity concerns and the need for AI-led services are increasingly becoming core to the sector. Even as overall hiring remains tepid, demand for ...

Microsoft informs customers that Russian hackers spied on emails – ET CISO https://etimg.etb2bimg.com/thumb/msid-111356087,imgsize-62402,width-1200,height=765,overlay-etciso/data-breaches/microsoft-informs-customers-that-russian-hackers-spied-on-emails.jpg Russian hackers who broke into Microsoft’s systems and spied on staff inboxes earlier this year also stole emails from its customers, the tech giant said on Thursday, around six months after it first disclosed the intrusion. The disclosure underscores the breadth of the breach as Microsoft faces ...

SonicWall Issues Critical Patch for Firewall Vulnerability Allowing Unauthorized Access https://firewall.firm.in/wp-content/uploads/2024/08/sonic.jpg Aug 26, 2024Ravie LakshmananVulnerability / Enterprise Security SonicWall has released security updates to address a critical flaw impacting its firewalls that, if successfully exploited, could grant malicious actors unauthorized access to the devices. The vulnerability, tracked as CVE-2024-40766 (CVSS score: 9.3), has been described as an improper access control ...

This malware poses as GTA IV and Adobe tool to steal data from MacBooks – ET CISO https://etimg.etb2bimg.com/thumb/msid-112755597,imgsize-8724,width-1200,height=765,overlay-etciso/ot-security/this-malware-poses-as-gta-iv-and-adobe-tool-to-steal-data-from-macbooks.jpg Security researchers have uncovered a new malware threat targeting macOS users. Dubbed “Cthulhu Stealer,” the malware impersonates popular apps to steal sensitive information such as system passwords, iCloud Keychain credentials, and cryptocurrency wallet data. According to a report by The Hacker News, ...

Halliburton probes impact of cyber attack with law enforcement, ET CISO Top U.S. oilfield services firm Halliburton said on Friday it was working with law enforcement to determine the extent of a computer systems breach and was yet to determine if the incident would have a material impact on its business. The $23-billion company became aware of the cyber attack ...

EU vs Big Tech: the cases keep mounting – ET CISO https://etimg.etb2bimg.com/thumb/msid-111558319,imgsize-163662,width-1200,height=765,overlay-etciso/data-breaches/eu-vs-big-tech-the-cases-keep-mounting.jpg The European Union (EU) has launched multiple probes and complaints against Big Tech and their handling of user data and maintaining privacy. Let’s take a look at the latest tiffs: AmazonOn Friday, the European Commission (EC) asked Amazon to provide detailed information by July 26 on the measures ...

CISA Urges Federal Agencies to Patch Versa Director Vulnerability by September https://firewall.firm.in/wp-content/uploads/2024/08/cisa.png Aug 24, 2024Ravie LakshmananVulnerability / Government Security The U.S. Cybersecurity and Infrastructure Security Agency (CISA) has placed a security flaw impacting Versa Director to its Known Exploited Vulnerabilities (KEV) catalog based on evidence of active exploitation. The medium-severity vulnerability, tracked as CVE-2024-39717 (CVSS score: 6.6), is case of ...

Hackers use McDonald’s Instagram account to steal $700,000 in cryptocurrency scam – ET CISO https://etimg.etb2bimg.com/thumb/msid-112728896,imgsize-1273550,width-1200,height=765,overlay-etciso/cybercrime-fraud/hackers-use-mcdonalds-instagram-account-to-steal-700000-in-cryptocurrency-scam.jpg McDonald’s official Instagram account was hacked recently. According to a report by the New York Post, the official Instagram account of the fast-food giant was hacked and the scammers used the account to lead a crypto scam which enabled them to make $700,000. What exactly ...

Data security experts urge govt to set up nodal body to confirm breaches – ET CISO https://etimg.etb2bimg.com/thumb/msid-111557082,imgsize-12516,width-1200,height=765,overlay-etciso/data-breaches/data-security-experts-urge-govt-to-set-up-nodal-body-to-confirm-breaches.jpg In light of alleged claims of hacking of Airtel data, security researchers have asked the govt to implement the data protection Act as under it the responsibility of informing/ confirming such breaches would be with the data protection authority, which, however, has not ...

The Facts About Continuous Penetration Testing and Why It’s Important https://firewall.firm.in/wp-content/uploads/2024/08/code.png What is Continuous Attack Surface Penetration Testing or CASPT? Continuous Penetration Testing or Continuous Attack Surface Penetration Testing (CASPT) is an advanced security practice that involves the continuous, automated, and ongoing penetration testing services of an organization’s digital assets to identify and mitigate security vulnerabilities. CASPT is designed for ...