Transparent Tribe Launches New RAT Attacks Against Indian Government and Academia https://firewalls.firm.in/wp-content/uploads/2026/01/india.jpg The threat actor known as Transparent Tribe has been attributed to a fresh set of attacks targeting Indian governmental, academic, and strategic entities with a remote access trojan (RAT) that grants them persistent control over compromised hosts. “The campaign employs deceptive delivery techniques, including a weaponized Windows shortcut ...

My prediction for 2026: The shift to “Machine-Speed Defense” https://etimg.etb2bimg.com/thumb/msid-126304236,imgsize-357760,width-1200,height=627,overlay-etciso,resizemode-75/ciso-movement/2026-the-emergence-of-machine-speed-defense-in-cybersecurity.jpg For years, “Human-in-the-Loop” (HITL) has been the mantra of responsible AI. We envisioned a future where artificial intelligence would augment our capabilities, but a human would always retain the final say — the ultimate “kill switch.” In cybersecurity, this model has served us reasonably well, allowing human analysts to review, ...

The Future of Security in 2026, ETCISO Organizations’ perspectives on security are rapidly changing. Building robust barriers and hoping that attackers stayed out were the main approaches to security a few years ago. Today, however, people work remotely, threats move too rapidly and applications are spread across cloud, data centre and edge locations. The outdated “trust but verify” approach just ...

Microsoft, Meta, Google and Apple warned over AI outputs by US attorneys general https://etimg.etb2bimg.com/thumb/msid-125902911,imgsize-24128,width-1200,height=627,overlay-etciso,resizemode-75/data-breaches/us-attorneys-general-warn-tech-giants-like-microsoft-and-apple-over-ai-risks.jpg Microsoft, Meta, Google and Apple were among the 13 companies that received a warning from a bipartisan group of state attorneys general, according to a letter from the state leaders, who said their chatbots’ “delusional outputs” could be violating state laws. The letter was made public ...

Cybercriminals Abuse Google Cloud Email Feature in Multi-Stage Phishing Campaign https://firewalls.firm.in/wp-content/uploads/2026/01/phishing-email.jpg Jan 02, 2026Ravie LakshmananCloud Security / Email Security Cybersecurity researchers have disclosed details of a phishing campaign that involves the attackers impersonating legitimate Google-generated messages by abusing Google Cloud’s Application Integration service to distribute emails. The activity, Check Point said, takes advantage of the trust associated with Google Cloud ...

European Space Agency confirms cyberattack on some its systems https://etimg.etb2bimg.com/thumb/msid-126298138,imgsize-105962,width-1200,height=627,overlay-etciso,resizemode-75/data-breaches/european-space-agency-confirms-cyberattack-on-some-its-systems.jpg The European Space Agency (ESA) has confirmed a cyberattack on some of its systems after a hacker offered to sell data allegedly stolen from the organisation. The agency’s forensic investigation has revealed that servers located outside the ESA corporate network have been compromised. According to ESA, only a very small ...

Policy debate or execution challenge?, ETCISO For any Indian enterprise, the latest set of policy directives around DPDP is akin to a hard reset. It’s a bold set of reforms with reports indicating an escalation in compliance costs – some indicating a 15% rise in operational expenses for advertising agencies. In comparison, another estimate predicts a 30% jump in compliance ...

Global cyberattacks rise as GenAI introduces new data exposure risks: CPR November 2025 findings https://etimg.etb2bimg.com/thumb/msid-125909289,imgsize-149288,width-1200,height=627,overlay-etciso,resizemode-75/data-breaches/surge-in-global-cyberattacks-genai-data-exposure-risks-highlighted-by-cpr-november-2025-report.jpg Check Point Research, the threat intelligence arm of Check Point Software Technologies, released its Global Threat Intelligence insights for November 2025, reporting that organizations worldwide faced an average of 2,003 cyberattacks per week. This reflects a 3% increase from October and a 4% rise year-over-year, ...

New MongoDB Flaw Lets Unauthenticated Attackers Read Uninitialized Memory https://firewalls.firm.in/wp-content/uploads/2025/12/mongodb.jpg Dec 27, 2025Ravie LakshmananDatabase Security / Vulnerability A high-severity security flaw has been disclosed in MongoDB that could allow unauthenticated users to read uninitialized heap memory. The vulnerability, tracked as CVE-2025-14847 (CVSS score: 8.7), has been described as a case of improper handling of length parameter inconsistency, which arises when ...

The year the cloud went dark: Inside 2025’s biggest tech outages https://etimg.etb2bimg.com/thumb/msid-126199542,imgsize-2412700,width-1200,height=627,overlay-etciso,resizemode-75/cybercrime-fraud/the-year-the-cloud-went-dark-inside-2025s-biggest-tech-outages.jpg The year 2025 highlighted the internet’s vulnerability. Major cloud providers like AWS, Microsoft Azure, and Google Cloud experienced significant outages. For a world that lives online, 2025 was a reminder of just how fragile the internet’s backbone can be. From payment systems and airlines to messaging apps and ...