Data Privacy Day 2026: What data privacy means for citizens and enterprises https://etimg.etb2bimg.com/thumb/msid-127616763,imgsize-31558,width-1200,height=627,overlay-etciso,resizemode-75/data-breaches/data-privacy-day-2026-strengthening-digital-privacy-for-citizens-and-enterprises-in-india.jpg With the notification of Digital Personal Data Protection (DPDP) Rules, India has taken a major step toward robust digital privacy governance. This framework comes into force at a time when nearly a billion Indians engage in online services, ranging from social media and e-commerce to banking and ...

Fortinet Patches CVE-2026-24858 After Active FortiOS SSO Exploitation Detected https://firewalls.firm.in/wp-content/uploads/2026/01/1769595147_26_fortinet.jpg Ravie LakshmananJan 28, 2026Network Security / Zero-Day Fortinet has begun releasing security updates to address a critical flaw impacting FortiOS that has come under active exploitation in the wild. The vulnerability, assigned the CVE identifier CVE-2026-24858 (CVSS score: 9.4), has been described as an authentication bypass related to FortiOS single ...

Nike says it is investigating possible data breach https://etimg.etb2bimg.com/thumb/msid-127593377,imgsize-35110,width-1200,height=627,overlay-etciso,resizemode-75/data-breaches/nike-investigates-potential-data-breach-amid-cyber-attack-claims.jpg Nike says it is investigating a potential data breach, after a group ⁠known for cyber attacks reportedly claimed to have leaked a trove of data related to its business operations. “We always take consumer privacy and data ‌security very seriously,” ‌Nike said in a statement. “We are investigating a potential cyber ...

Indian Users Targeted in Tax Phishing Campaign Delivering Blackmoon Malware https://firewalls.firm.in/wp-content/uploads/2026/01/itd.jpg Ravie LakshmananJan 26, 2026Cyber Espionage / Malware Cybersecurity researchers have discovered an ongoing campaign that’s targeting Indian users with a multi-stage backdoor as part of a suspected cyber espionage campaign. The activity, per the eSentire Threat Response Unit (TRU), involves using phishing emails impersonating the Income Tax Department of ...

PSU banks counting on QR-based payments to breach a fintech fort https://etimg.etb2bimg.com/thumb/msid-127096944,imgsize-2682554,width-1200,height=627,overlay-etciso,resizemode-75/data-breaches/psu-banks-counting-on-qr-based-payments-to-breach-a-fintech-fort.jpg Public sector banks, refusing to be outdone by their privately owned peers, are increasingly getting into QR-code led merchant payments, finally breaching the citadel of fintechs such as BharatPe, PhonePe and Paytm. Industry insiders told ET that over the past one year, private banks such as ICICI Bank, ...

Automated FortiGate Attacks Exploit FortiCloud SSO to Alter Firewall Configurations https://firewalls.firm.in/wp-content/uploads/2026/01/fortinet.jpg Ravie LakshmananJan 22, 2026Network Security / Vulnerability Cybersecurity company Arctic Wolf has warned of a “new cluster of automated malicious activity” that involves unauthorized firewall configuration changes on Fortinet FortiGate devices. The activity, it said, commenced on January 15, 2026, adding it shares similarities with a December 2025 campaign ...

Telcos back SIM-binding order, dismisses privacy concerns https://etimg.etb2bimg.com/thumb/msid-125902046,imgsize-126570,width-1200,height=627,overlay-etciso,resizemode-75/data-breaches/telcos-back-sim-binding-order-dismisses-privacy-concerns.jpg Mumbai: The telecom operators have reiterated their support for Department of Telecommunications (DoT) directive on SIM-binding for messaging apps like Whatsapp, Telegram etc, dismissing concerns about user convenience and privacy as “misplaced narratives.” The DoT in its November 28 order, directed app-based communication services including WhatsApp, Telegram, and Signal to ensure continuous ...

Zoom and GitLab Release Security Updates Fixing RCE, DoS, and 2FA Bypass Flaws https://firewalls.firm.in/wp-content/uploads/2026/01/zoom-gitlab.jpg Ravie LakshmananJan 21, 2026Vulnerability / Network Security Zoom and GitLab have released security updates to resolve a number of security vulnerabilities that could result in denial-of-service (DoS) and remote code execution. The most severe of the lot is a critical security flaw impacting Zoom Node Multimedia ...

Instagram data breach scare: Over 17 million users hit by sudden and unexpected password reset emails https://etimg.etb2bimg.com/thumb/msid-126474672,imgsize-26842,width-1200,height=627,overlay-etciso,resizemode-75/data-breaches/instagram-data-breach-scare-over-17-million-users-hit-by-sudden-and-unexpected-password-reset-emails.jpg Were 17 million Instagram accounts compromised in a recent security incident? Concerns surfaced last week after several users reported receiving unexpected password reset emails, triggering fears of a possible data breach. Cybersecurity firm Malwarebytes suggested the activity was connected to an incident that ...

North Korean PurpleBravo Campaign Targeted 3,136 IP Addresses via Fake Job Interviews https://firewalls.firm.in/wp-content/uploads/2026/01/hackers.jpg As many as 3,136 individual IP addresses linked to likely targets of the Contagious Interview activity have been identified, with the campaign claiming 20 potential victim organizations spanning artificial intelligence (AI), cryptocurrency, financial services, IT services, marketing, and software development sectors in Europe, South Asia, the Middle ...