Forg365 PhaaS Targets Microsoft 365 with Device Code and AitM Session Theft https://firewalls.firm.in/wp-content/uploads/2026/07/ms-device-code1.jpg A new phishing-as-a-service (PhaaS) operation called Forg365 is using a combination of device code phishing, adversary-in-the-middle (AitM) tactics, antibot evasion, artificial intelligence (AI)-assisted lure creation, and post-compromise mailbox operations targeting Microsoft 365 accounts. Distributed via Telegram and costing $400 a month (or $3,800 per year), attack chains ...
Read More »Cyber Security News
Studying Tata Electronics’ cyber breach issue; entities involved say not much lost
Studying Tata Electronics’ cyber breach issue; entities involved say not much lost https://etimg.etb2bimg.com/thumb/msid-132362691,imgsize-10804,width-1200,height=627,overlay-etciso,resizemode-75/cybercrime-fraud/studying-tata-electronics-cyber-breach-issue-entities-involved-say-not-much-lost.jpg The issue of an alleged data breach at Tata Electronics that reportedly exposed sensitive information related to Apple’s unreleased iPhone model is currently under examination, and both entities are satisfied they haven’t lost much on commercial parameters, a senior IT Ministry official said on Monday. The government ...
Read More »The expanding API attack surface in the age of AI, ETCISO
The expanding API attack surface in the age of AI, ETCISO Application programming interfaces (APIs) have quietly emerged as one of the fastest-growing attack surfaces in enterprise environments. They power modern user experiences across web and mobile channels while forming the backbone of integration and automation strategies. With the rapid expansion of AI, their importance has grown even further. Large ...
Read More »Govt investigating reported Tata Electronics data leak
Govt investigating reported Tata Electronics data leak https://etimg.etb2bimg.com/thumb/msid-132159400,imgsize-236570,width-1200,height=627,overlay-etciso,resizemode-75/data-breaches/govt-investigating-reported-tata-electronics-data-leak.jpg The government has sought an explanation from WhatsApp over its username feature, saying it could facilitate cybercrime, while also investigating the reported data leak allegations involving Tata Electronics, Secretary, Ministry of Electronics and Information Technology (MeitY), S. Krishnan said on Friday. Speaking on the sidelines of a CII Conference, Krishnan responded to ...
Read More »North Korea-Linked npm Packages Mimic Rollup Polyfills to Steal Developer Secrets
North Korea-Linked npm Packages Mimic Rollup Polyfills to Steal Developer Secrets https://firewalls.firm.in/wp-content/uploads/2026/07/npms-malware.jpg Threat actors with ties to North Korea have been linked to a fresh set of malicious npm packages that masquerade as Rollup polyfill tooling to facilitate remote access and data theft. According to JFrog, the packages “rollup-packages-polyfill-core” and “rollup-runtime-polyfill-core” mimic the legitimate “rollup-plugin-polyfill-node” project, down to the description, ...
Read More »HDFC Bank develops own AI platform, fraud monitoring system
HDFC Bank develops own AI platform, fraud monitoring system https://etimg.etb2bimg.com/thumb/msid-132152103,imgsize-19335,width-1200,height=627,overlay-etciso,resizemode-75/cybercrime-fraud/hdfc-bank-develops-own-ai-platform-fraud-monitoring-system.jpg HDFC Bank, once hobbled by tech issues, has built its own AI platform and fraud-monitoring system that go beyond what fintech platforms offer. The latest platforms will help the lender overcome the challenges posed by proliferation of frauds in the banking system as a whole, Ramesh Lakshminarayanan, group head of ...
Read More »Apple Accelerates Security Updates Amid Rising AI Cybersecurity Threats, ETCISO
Apple Accelerates Security Updates Amid Rising AI Cybersecurity Threats, ETCISO Apple has announced that it is releasing a series of critical security updates early, essentially breaking away from its longstanding practice of waiting to bundle fixes with major operating system rollouts. The tech giant revealed to news agency Reuters that the decision is a direct response to the rising threat ...
Read More »AI Agent Exploits Langflow RCE to Automate Database Ransomware Attack
AI Agent Exploits Langflow RCE to Automate Database Ransomware Attack https://firewalls.firm.in/wp-content/uploads/2026/07/ai-agent-ransomware.jpg Security firm Sysdig says it has found what it believes is the first ransomware attack run from start to finish by an AI agent. Its Threat Research Team calls the operator JADEPUFFER and says a large language model handled the whole job: breaking in, stealing credentials, moving deeper into the network, ...
Read More »Silent Mobile Verification (SMV): A Strategic Advancement in Digital Identity Management
Silent Mobile Verification (SMV): A Strategic Advancement in Digital Identity Management https://etimg.etb2bimg.com/thumb/msid-132108449,imgsize-3228383,width-1200,height=627,overlay-etciso,resizemode-75/brand-solution/silent-mobile-verification-smv-a-strategic-advancement-in-digital-identity-management.jpg In the hyper-connected architecture of today’s global economy, the mobile application has evolved from a secondary convenience into the primary gateway for commerce, banking, and identity. However, as digital adoption reaches unprecedented heights, the foundational security protocols protecting these interactions are being challenged. For over a decade, the ...
Read More »BIS Warns of Financial Risks Amid AI Investment Surge, ETCISO
BIS Warns of Financial Risks Amid AI Investment Surge, ETCISO The Bank for International Settlements (BIS) has flagged financial vulnerabilities associated with AI-related financing, warning that the race to capture market share may have led to overinvestment, sowing the seeds of a sector-wide bust if returns disappoint. “This is one of the pressure points we see facing the global economy,” ...
Read More »
Firewall Security Company India Complete Firewall Security Solutions Provider Company in India











