Comcast to pay $1.5 million US fine after vendor data breach https://etimg.etb2bimg.com/thumb/msid-125554889,imgsize-65124,width-1200,height=627,overlay-etciso,resizemode-75/data-breaches/comcast-to-pay-1-5-million-us-fine-after-vendor-data-breach.jpg Comcast will pay a $1.5 million fine after a vendor breach exposed personal data from 237,000 current and former customers, the Federal Communications Commission said on Monday. The FCC said a debt collector used by Comcast until 2022, Financial Business and Consumer Solutions, suffered a 2024 data breach ...

JackFix Uses Fake Windows Update Pop-Ups on Adult Sites to Deliver Multiple Stealers https://firewalls.firm.in/wp-content/uploads/2025/11/update-windows.jpg Cybersecurity researchers are calling attention to a new campaign that’s leveraging a combination of ClickFix lures and fake adult websites to deceive users into running malicious commands under the guise of a “critical” Windows security update. “Campaign leverages fake adult websites (xHamster, PornHub clones) as its ...

Above and Beyond the Browser : Why It’s Now Your Security Perimeter https://etimg.etb2bimg.com/thumb/msid-125556921,imgsize-58244,width-1200,height=627,overlay-etciso,resizemode-75/brand-solution/transforming-browsers-into-security-perimeters-the-future-of-enterprise-security.jpg In today’s hyperconnected workplace, the biggest threat to your organization might already be inside your network. Hybrid work, SaaS adoption, AI and LLM tools have blurred the boundaries of security, making the humble browser a high-stakes frontline. The data tells a clear story. A Ponemon Institute study ...

Mahindra First Choice Wheels Transforms Used Vehicle Pricing with AI, ETCISO This ETCIO DeepTalks conversation with Chandra Shekhar Prasad, Head – AI Products & Solutions, Mahindra Group, explores how Mahindra First Choice Wheels turned messy, inconsistent used-vehicle data into a strategic asset. Prasad explains how a unified pricing engine, Indian Blue Book, and AI-driven vehicle inspections created real business impact, ...

Clearview AI faces criminal complaint in Austria for suspected privacy violations https://etimg.etb2bimg.com/thumb/msid-124886388,imgsize-24704,width-1200,height=627,overlay-etciso,resizemode-75/data-breaches/clearview-ai-faces-criminal-complaint-in-austria-for-suspected-privacy-violations.jpg An Austrian privacy group has filed a criminal complaint against Clearview AI. Austrian privacy group noyb said on Tuesday it has filed a criminal complaint in Austria, accusing US-based Clearview AI of illegally collecting photos and videos of European Union residents to build its facial-recognition database. Noyb said ...

New Fluent Bit Flaws Expose Cloud to RCE and Stealthy Infrastructure Intrusions https://firewalls.firm.in/wp-content/uploads/2025/11/bit-main.jpg Nov 24, 2025Ravie LakshmananVulnerability / Container Security Cybersecurity researchers have discovered five vulnerabilities in Fluent Bit, an open-source and lightweight telemetry agent, that could be chained to compromise and take over cloud infrastructures. The security defects “allow attackers to bypass authentication, perform path traversal, achieve remote code ...

Navigating data breach challenges in DPDP era: Retrospective risks & regulatory strains https://etimg.etb2bimg.com/thumb/msid-125499084,imgsize-14220,width-1200,height=627,overlay-etciso,resizemode-75/data-breaches/navigating-data-breach-challenges-in-dpdp-era-retrospective-risks-regulatory-strains.jpg DPDP rules mark significant milestone in India’s ongoing data protection journey India’s digital ecosystem has undergone a seismic shift with the notification of the Digital Personal Data Protection (DPDP) Rules, 2025, on November 13, 2025. As the country’s first comprehensive data privacy framework, the DPDP Act, 2023, ...

The one threat CISOs can’t patch, ETCISO In today’s world, companies are investing heavily in advanced cybersecurity tools, AI-driven monitoring, automated SOCs, zero-trust frameworks and more. Yet, in many major cyber incidents, one detail keeps repeating: a human being made a mistake. Sometimes it’s a rushed click on a link, a quick approval given under pressure, or a moment where ...

Festive deals or digital traps? How cybercriminals are mimicking brands to dupe shoppers https://etimg.etb2bimg.com/thumb/msid-124976178,imgsize-29752,width-1200,height=627,overlay-etciso,resizemode-75/data-breaches/festive-deals-or-digital-traps-how-cybercriminals-are-mimicking-brands-to-dupe-shoppers.jpg Cybercrime (Representative Image) As India’s festive shopping peaks during this quarter of the year across digital and omnichannel retail, cybercriminals are finding new ways to exploit shoppers’ excitement and urgency. Fake QR codes, malicious payment links, and AI-generated brand impersonations are becoming increasingly common. Karthik Krishnan, ...

Grafana Patches CVSS 10.0 SCIM Flaw Enabling Impersonation and Privilege Escalation https://firewalls.firm.in/wp-content/uploads/2025/11/grafana.jpg Nov 21, 2025Ravie LakshmananVulnerability / Threat Mitigation Grafana has released security updates to address a maximum severity security flaw that could allow privilege escalation or user impersonation under certain configurations. The vulnerability, tracked as CVE-2025-41115, carries a CVSS score of 10.0. It resides in the System for Cross-domain ...