The Growing Threat of Cyber-Physical Risks in the Surveillance Economy, ETCISO The world’s surveillance infrastructure is undergoing a silent but profound transformation. What began as a tool for monitoring traffic junctions, securing office premises, and deterring crime has evolved into one of the most pervasive and strategically important components of modern digital infrastructure. The global CCTV camera market size is ...

ServiceNow data breach: Software bug exposed customer data to internet access https://etimg.etb2bimg.com/thumb/msid-131675065,imgsize-2031894,width-1200,height=627,overlay-etciso,resizemode-75/data-breaches/servicenow-data-breach-software-bug-exposed-customer-data-to-internet-access.jpg Cloud technology giant ServiceNow has notified some of its customers that a software bug on its platform was allowing anyone on the internet to access their data. According to a report in TechCrunch, a knowledge base article, which ServiceNow has hidden behind a login wall but has been ...

Agentjacking Attack Tricks AI Coding Agents Into Running Malicious Code Cybersecurity researchers have described what they say is a new class of attack that can trick artificial intelligence (AI) coding agents into running arbitrary code on developer machines. Called Agentjacking by Tenet Security, the attack can be triggered by means of a fake error report crafted using Sentry, an open-source ...

Forensic experts call for AI-driven playbook to counter deepfakes and digital scams AI world with AI-generated deepfakes, fake “digital arrests,” and crypto-linked fraud rings growing more complex by the day, traditional investigative methods are falling behind. At the FICCI Conference on Next-Gen Forensics: The New Age of Fraud Investigation, experts argued that tackling next-gen financial crime will require a complete ...

Has GDPR slowed Europe’s AI race or set the standard for responsible innovation? The question of whether data privacy laws and legislations like the GDPR have held Europe back in the global AI race is often framed as well as debated in the world of technology and innovation. The General Data Protection Regulation (GDPR), enacted in 2018, was designed to ...

AI-related data breaches surging Hackers are increasingly using AI to detect software vulnerabilities, which has shortened the time that targets have to respond to threats, Verizon said in an annual report tracking data breaches. Verizon said using software flaws in data surpassed stolen credentials for the first time. It said in a review of more than 31,000 incidents, 31% of ...

Attackers Use LLM Agent for Post-Exploitation After Marimo CVE-2026-39987 Exploit https://firewall.firm.in/wp-content/uploads/2026/05/marimo.png Ravie LakshmananMay 29, 2026Vulnerability / Artificial Intelligence An unknown threat actor has been observed using a large language model (LLM) agent to conduct post-compromise actions after obtaining initial access following the exploitation of a publicly-accessible Marimo network using a recently disclosed vulnerability. “The attacker compromised an internet-reachable Marimo notebook ...

Anthropic AI model finds over 10,000 critical bugs across open-source software projects https://etimg.etb2bimg.com/thumb/msid-131316898,imgsize-83812,width-1200,height=627,overlay-etciso,resizemode-75/vulnerabilities-exploits/anthropic-ai-model-finds-over-10000-critical-bugs-across-open-source-software-projects.jpg Anthropic has shared the first major results from Project Glasswing, a restricted cybersecurity initiative that gives select organisations access to its new AI model, Mythos Preview. The company said the model has already identified more than 10,000 high- or critical-severity software vulnerabilities across widely used systems. The ...

Rethinking enterprise security for a sovereign, agentic world, ETCISO In 2026, the rise of agentic AI and the growing imperative for digital sovereignty are redefining the enterprise security landscape in India. As AI adoption accelerates across the nation’s key industries, the real challenge for enterprises is not just about defending themselves against new threats but about maintaining control, resilience, and ...

NGINX CVE-2026-42945 Exploited in the Wild, Causing Worker Crashes and Possible RCE https://firewall.firm.in/wp-content/uploads/2026/05/nginx.jpg Ravie LakshmananMay 17, 2026Server Security / Vulnerability A newly disclosed security flaw impacting NGINX Plus and NGINX Open has come under active exploitation in the wild, days after its public disclosure, according to VulnCheck. The vulnerability, tracked as CVE-2026-42945 (CVSS score: 9.2), is a heap buffer overflow ...