Tag: india
-
8 biggest cybersecurity threats manufacturers face
by
in SecurityNews
Tags: access, ai, apt, attack, authentication, automation, awareness, business, china, cloud, computer, control, cyber, cyberattack, cybercrime, cybersecurity, data, data-breach, ddos, detection, email, encryption, exploit, extortion, firmware, framework, group, Hardware, india, infrastructure, intelligence, international, Internet, iot, iran, lazarus, leak, malicious, malware, monitoring, network, nis-2, north-korea, open-source, password, phishing, ransom, ransomware, regulation, risk, risk-analysis, risk-assessment, russia, service, software, strategy, supply-chain, technology, threat, update, vulnerability, windowsThe manufacturing sector’s rapid digital transformation, complex supply chains, and reliance on third-party vendors make for a challenging cyber threat environment for CISOs.Manufacturers, often prime targets for state-sponsored malicious actors and ransomware gangs, face the difficult task of maintaining cost-effective operations while modernizing their network infrastructure.”Many manufacturing systems rely on outdated technology that lacks modern…
-
Russian state hackers hijacked rival servers to spy on targets in India, Afghanistan
by
in SecurityNewsFirst seen on therecord.media Jump to article: therecord.media/russian-turla-secret-blizzard-hackers-hijack-rival-servers-targeting-south-asia
-
AI chatbot startup WotNot leaks 346,000 files, including passports and medical records
by
in SecurityNewsWotnot, An Indian AI startup that helps businesses build custom chatbots, has leaked almost 350,000 sensitive files after the data was left unsecured on the web. First seen on bitdefender.com Jump to article: www.bitdefender.com/en-us/blog/hotforsecurity/ai-chatbot-startup-wotnot-leaks-346-000-files-including-passports-and-medical-records
-
Russia-Linked Turla Exploits Pakistani Hackers’ Servers to Target Afghan and Indian Entities
The Russia-linked advanced persistent threat (APT) group known as Turla has been linked to a previously undocumented campaign that involved infiltrating the command-and-control (C2) servers of a Pakistan-based hacking group named Storm-0156 to conduct its own operations since 2022.The activity, first observed in December 2022, is the latest instance of the nation-state adversary “embedding First…
-
Russian-linked Turla caught using Pakistani APT infrastructure for espionage
by
in SecurityNewsBoth Microsoft and Lumen’s BlackLotus Labs found Turla spying on Afghanistan and India via Pakistani infrastructure. First seen on cyberscoop.com Jump to article: cyberscoop.com/turla-infiltrates-pakistani-apt-networks-microsoft-lumen/
-
Spy v Spy: Russian APT Turla Caught Stealing from Pakistani APT
Russia’s Turla hackers hijacked 33 command servers operated by Pakistani hackers who had themselves breached Afghanistan and Indian targets. The post Spy v Spy: Russian APT Turla Caught Stealing from Pakistani APT appeared first on SecurityWeek. First seen on securityweek.com Jump to article: www.securityweek.com/spy-v-spy-russian-apt-turla-caught-stealing-from-pakistani-apt/
-
CERT-In Alerts Multiple Vulnerabilities in Drupal Expose Systems
by
in SecurityNewsThe Indian Computer Emergency Response Team (CERT-In) issued a Vulnerability Note CIVN-2024-0353 highlighting several critical vulnerabilities within the widely used content management system (CMS), Drupal. The Drupal vulnerabilities, spanning versions from 7 to 11, have been First seen on thecyberexpress.com Jump to article: thecyberexpress.com/cert-in-alerts-drupal-vulnerabilities/
-
ElizaRAT Exploits Google, Telegram, Slack Services For C2 Communications
by
in SecurityNewsAPT36, a Pakistani cyber-espionage group, has recently upgraded its arsenal with ElizaRAT, a sophisticated Windows RAT that, initially detected in 2023, employs advanced evasion tactics and robust C2 capabilities to target Indian government agencies, diplomatic personnel, and military installations. The group leverages multiple platforms, including Windows, Linux, and Android, to broaden its attack surface as…
-
Why identity security is your best companion for uncharted compliance challenges
by
in SecurityNews
Tags: access, ai, attack, authentication, automation, business, cloud, compliance, control, cyberattack, cybersecurity, data, detection, exploit, finance, framework, GDPR, governance, government, healthcare, HIPAA, identity, india, law, least-privilege, mitigation, monitoring, privacy, regulation, risk, risk-management, service, strategy, supply-chain, technology, threat, tool, zero-trustIn today’s rapidly evolving global regulatory landscape, new technologies, environments, and threats are heightening cybersecurity and data privacy concerns. In the last year, governing bodies have taken significant steps to enact stricter compliance measures”, and more than ever, they are focusing on identity-related threats.Some notable changes include: The National Institute of Standards and Technology (NIST)…
-
Indian online ID verification firm Signzy confirms security incident
by
in SecurityNewsThe Indian identity verification service, used by millions of customners, has confirmed a cybersecurity incident. First seen on techcrunch.com Jump to article: techcrunch.com/2024/12/02/indian-online-id-verification-firm-signzy-confirms-security-incident/
-
Canada spy agency says India is using cyber tech to track separatists abroad
by
in SecurityNewsCSE report says India is also stepping up cyber-attacks against Canada government networksA Canadian spy agency has warned that India is using cyber t… First seen on theguardian.com Jump to article: www.theguardian.com/world/2024/oct/30/canada-india-sikh-cyber-technology
-
Cloudy With a Chance of RATs: Unveiling APT36 and the Evolution of ElizaRAT
by
in SecurityNewsntroduction APT36, also known as Transparent Tribe, is a Pakistan-basedthreat actor notorious for persistently targeting Indian government organizatio… First seen on research.checkpoint.com Jump to article: research.checkpoint.com/2024/the-evolution-of-transparent-tribes-new-malware/
-
Disgomoji Malware: A New Threat Targeting the Indian Government
by
in SecurityNewssgomoji Malware: A New Threat Targeting the Indian Government]]>www.thefinalhop.com/untitled/666d… First seen on thefinalhop.com Jump to article: www.thefinalhop.com/untitled/
-
PII Belonging to Indian Citizens, Including their Aadhaar IDs, Offered for Sale on the Dark Web
by
in SecurityNewsFirst seen on resecurity.com Jump to article: www.resecurity.com/blog/article/pii-belonging-to-indian-citizens-including-their-aadhaar-ids-offered-for-sale-on-the-dark-web
-
Privacy Vendor Market Moves From Point to Platform Solutions
by
in SecurityNewsPwC’s Anirban Sengupta Details Privacy Landscape, Growing Awareness in India Market. The privacy vendor market in India is evolving rapidly, as many vendors move from offering point solutions to embracing more integrated, platform solutions that can handle a broader range of privacy requirements, said Anirban Sengupta, partner, risk consulting practice with PwC. First seen on…
-
The CSO guide to top security conferences
by
in SecurityNews
Tags: access, cio, cloud, compliance, conference, cyber, cybersecurity, email, germany, guide, identity, india, intelligence, international, jobs, law, resilience, risk, risk-management, threat, tool, training, updateThere is nothing like attending a face-to-face event for career networking and knowledge gathering, and we don’t have to tell you how helpful it can be to get a hands-on demo of a new tool or to have your questions answered by experts. Fortunately, plenty of great conferences are coming up in the months ahead.…
-
India’s new cyber rules for telecoms come with big privacy risks, experts say
by
in SecurityNewsFirst seen on therecord.media Jump to article: therecord.media/india-telecom-act-cyber-regulations-privacy-concerns
-
Earth Kasha Upgraded Their Arsenal With New Tactics To Attack Organizations
by
in SecurityNewsEarth Kasha, a threat actor linked to APT10, has expanded its targeting scope to India, Taiwan, and Japan, leveraging spear-phishing and exploiting vulnerabilities in public-facing applications like SSL-VPN and file storage services. The group has deployed various backdoors, including Cobalt Strike, LODEINFO, and the newly discovered NOOPDOOR, to maintain persistent access to compromised networks, which…
-
CERT-In Flags Critical Vulnerabilities in Zoom: Update Your Apps Now
by
in SecurityNewsThe Indian Computer Emergency Response Team (CERT-In) has issued a detailed security advisory about multiple vulnerabilities found in the popular video conferencing application, Zoom. First seen on thecyberexpress.com Jump to article: thecyberexpress.com/cert-in-advisory-for-zoom-vulnerabilities/
-
Warning: Over 2,000 Palo Alto Networks Devices Hacked in Ongoing Attack Campaign
As many as 2,000 Palo Alto Networks devices are estimated to have been compromised as part of a campaign abusing the newly disclosed security flaws that have come under active exploitation in the wild.According to statistics shared by the Shadowserver Foundation, a majority of the infections have been reported in the U.S. (554) and India…
-
India Fines WhatsApp $25M, Bans Data Sharing for 5 Years
by
in SecurityNewsCompetition Regulator Says WhatsApp Users Could Not Opt Out of Data Sharing. India’s Competition Commission has fined social media conglomerate Meta over $25 million for forcing WhatsApp users to agree to a sweeping data sharing policy with other Meta platforms. The agency ordered the company to stop using users’ data for online advertising on other…
-
Indian police arrest suspect in $230 million WazirX crypto exchange hack
by
in SecurityNewsFirst seen on therecord.media Jump to article: therecord.media/wazirx-crypto-exchange-hack-suspect-arrested-india
-
These Guys Hacked AirPods to Give Their Grandmas Hearing Aids
by
in SecurityNewsThree technologists in India used a homemade Faraday cage and a microwave oven to get around Apple’s location blocks. First seen on wired.com Jump to article: www.wired.com/story/apple-airpods-hearing-aid-hack/
-
APT36 Refines Tools in Attacks on Indian Targets
The Pakistan-based advanced persistent threat actor has been carrying on a cyber-espionage campaign targeting organizations on the subcontinent for mo… First seen on darkreading.com Jump to article: www.darkreading.com/cyberattacks-data-breaches/apt36-refines-tools-attacks-indian-targets
-
IBM acquires Indian SaaS startup Prescinto to shine a light on renewable energy assets
by
in SecurityNewsFirst seen on theregister.com Jump to article: www.theregister.com/2024/10/16/ibm_aquires_prescinto/
-
AI amplifies systemic risk to financial sector, says India’s Reserve Bank boss
by
in SecurityNewsFirst seen on theregister.com Jump to article: www.theregister.com/2024/10/15/india_rbi_ai_risks/
-
Google Chrome Users at Risk: CERT-In Advises Urgent Update to Fix Security Flaws
The Indian Computer Emergency Response Team (CERT-In) has issued a warning about newly discovered First seen on thecyberexpress.com Jump to article: thecyberexpress.com/vulnerabilities-in-google-chrome/
-
Pakistani Hackers Targeted High-Profile Indian Entities using Custom RAT
by
in SecurityNewsFirst seen on infosecurity-magazine.com Jump to article: www.infosecurity-magazine.com/news/pakistan-hackers-high-profile/
-
IcePeony and Transparent Tribe Target Indian Entities with Cloud-Based Tools
by
in SecurityNewsHigh-profile entities in India have become the target of malicious campaigns orchestrated by the Pakistan-based Transparent Tribe threat actor and a previously unknown China-nexus cyber espionage group dubbed IcePeony.The intrusions linked to Transparent Tribe involve the use of a malware called ElizaRAT and a new stealer payload dubbed ApoloStealer on specific victims of interest, Check…
-
APT36 Hackers Attacking Windows Deevices With ElizaRAT
APT36, a sophisticated threat actor, has been actively targeting Indian entities with advanced malware like ElizaRAT, which is designed for espionage…. First seen on gbhackers.com Jump to article: gbhackers.com/apt36-elizarat-windows-attacks/