DPB’s ₹10-crore FY27 allocation: What Budget 2026–27 really signals for enterprise DPDP readiness https://etimg.etb2bimg.com/thumb/msid-127875101,imgsize-21770,width-1200,height=627,overlay-etciso,resizemode-75/data-breaches/dpb-allocates-10-crore-in-fy27-a-game-changer-for-digital-data-protection.jpg The FY2026–27 Budget documents allocate ₹10.00 crore for the DPB compared with ₹2.00 crore in FY26 (revised), with a ₹9.50/₹0.50 revenue–capital split. The ministry note adds that this provision is towards “salary and other establishment expenses” of the Board—useful context for interpreting early capacity building. For ...

APT28 Uses Microsoft Office CVE-2026-21509 in Espionage-Focused Malware Attacks https://firewalls.firm.in/wp-content/uploads/2026/02/office.jpg Ravie LakshmananFeb 03, 2026Vulnerability / Malware The Russia-linked state-sponsored threat actor known as APT28 (aka UAC-0001) has been attributed to attacks exploiting a newly disclosed security flaw in Microsoft Office as part of a campaign codenamed Operation Neusploit. Zscaler ThreatLabz said it observed the hacking group weaponizing the shortcoming on ...

50% of organizations may adopt zero-trust data governance by 2028 as unverified AI data grows: Gartner https://etimg.etb2bimg.com/thumb/msid-127600739,imgsize-69912,width-1200,height=627,overlay-etciso,resizemode-75/data-breaches/gartner-predicts-50-of-organizations-to-embrace-zero-trust-data-governance-by-2028-amid-ai-data-challenges.jpg Gartner predicts that by 2028, half of organizations will adopt a zero-trust posture for data governance as unverified AI-generated data becomes more widespread. The shift reflects the growing difficulty of distinguishing AI-generated data from human-created data, increasing the need for stronger authentication and ...

Iran-Linked RedKitten Cyber Campaign Targets Human Rights NGOs and Activists https://firewalls.firm.in/wp-content/uploads/2026/02/iran-hackers.jpg A Farsi-speaking threat actor aligned with Iranian state interests is suspected to be behind a new campaign targeting non-governmental organizations and individuals involved in documenting recent human rights abuses. The activity, observed by HarfangLab in January 2026, has been codenamed RedKitten. It’s said to coincide with the nationwide unrest ...

Google defeats bid for billions of dollars of new penalties in US privacy class action https://etimg.etb2bimg.com/thumb/msid-127813525,imgsize-35046,width-1200,height=627,overlay-etciso,resizemode-75/data-breaches/google-wins-legal-battle-against-2-billion-penalty-over-privacy-violations.jpg Alphabet’s Google persuaded a federal judge in San Francisco on Friday to ‍reject a bid by consumers for more than $2 billion in penalties over the company’s past collection ⁠of data from users who had switched off a key privacy setting. Chief US District ...

CERT Polska Details Coordinated Cyber Attacks on 30+ Wind and Solar Farms https://firewalls.firm.in/wp-content/uploads/2026/01/energy.jpg Ravie LakshmananJan 31, 2026Network Security / SCADA CERT Polska, the Polish computer emergency response team, revealed that coordinated cyber attacks targeted more than 30 wind and photovoltaic farms, a private company from the manufacturing sector, and a large combined heat and power plant (CHP) supplying heat to ...

Open-source AI models vulnerable to criminal misuse, researchers warn https://etimg.etb2bimg.com/thumb/msid-127790309,imgsize-95726,width-1200,height=627,overlay-etciso,resizemode-75/data-breaches/open-source-ai-models-vulnerable-to-criminal-misuse-researchers-warn.jpg Hackers and other criminals can easily commandeer ⁠computers operating open-source large language models outside the guardrails and constraints of the major artificial-intelligence platforms, creating security risks and vulnerabilities, researchers said on Thursday. Hackers could target the computers running the LLMs and direct them to carry out spam operations, phishing content ...

China-Linked UAT-8099 Targets IIS Servers in Asia with BadIIS SEO Malware https://firewalls.firm.in/wp-content/uploads/2026/01/chinese-hackers.jpg Cybersecurity researchers have discovered a new campaign attributed to a China-linked threat actor known as UAT-8099 that took place between late 2025 and early 2026. The activity, discovered by Cisco Talos, has targeted vulnerable Internet Information Services (IIS) servers located across Asia, but with a specific focus on ...

Data Privacy day: Protect people, data, and trust https://etimg.etb2bimg.com/thumb/msid-127358114,imgsize-40022,width-1200,height=627,overlay-etciso,resizemode-75/data-breaches/data-privacy-day-empowering-organizations-to-protect-personal-information.jpg Observed globally on January 28, Data Privacy Day highlights the growing importance of protecting personal information in today’s digitally dependent world. Across more than 45 countries, Data Privacy Day brings together governments, organizations, educators, and individuals to promote data privacy and responsible digital practices. To explore how organizations are marking Data ...

Fake Moltbot AI Coding Assistant on VS Code Marketplace Drops Malware https://firewalls.firm.in/wp-content/uploads/2026/01/moltbot.jpg Cybersecurity researchers have flagged a new malicious Microsoft Visual Studio Code (VS Code) extension for Moltbot (formerly Clawdbot) on the official Extension Marketplace that claims to be a free artificial intelligence (AI) coding assistant, but stealthily drops a malicious payload on compromised hosts. The extension, named “ClawdBot Agent ...