サイバーヴィッシュ テクノロジーなどに関する最新の洞察とトレンド サイバーセキュリティ
サイバーセキュリティ

CDSL services down due to cyber attacks

CDSL services down due to cyber attacks Settlement services at Central Depository Services (India), the country’s largest depository by way of active demat accounts, were affected on Friday due to cyber attacks. Brokers said services such as pay-in, pay-out, pledge, or unpledged securities for margin were down due to system failure at the CDSL. However, trading was not affected, they added. CDSL, in a press release, said it has detected malware in a few of its internal machines. “As a matter of abundant caution, the company immediately isolated the machines and disconnected itself from other constituents of the capital market,” CDSL said. A malware attack is a cyberattack where malicious […]

続きを読む
サイバーセキュリティ

Chinese Hackers Using 42,000 Imposter Domains in Massive Phishing Attack Campaign

The threat actor have registered over 42,000 imposter domains A China-based financially motivated group is leveraging the trust associated with popular international brands to orchestrate a large-scale phishing campaign dating back as far as 2019. The threat actor, dubbed Fangxiao by Cyjax, is said to have registered over 42,000 imposter domains, with initial activity observed in 2017. “It targets businesses in multiple verticals including retail, banking, travel, and energy,” researchers Emily Dennison and Alana Witten said. “Promised financial or physical incentives are used to trick victims into further spreading the campaign via WhatsApp.” The Users are sent a message with a link and on clicking the link, they are directed to an actor-controlled site, which, […]

続きを読む
サイバーセキュリティ

DSCI CEO: National security, building cybersecurity products on our agenda

‘Tremendous amount’ of data will be flowing into India, says DSCI The Data Security Council of India (DSCI), a group set up by IT services lobby group NASSCOM, has appointed Vinayak Godse as its chief executive officer (CEO) from October 1. Godse, in an interview with Sourabh Lele, spoke about cybersecurity for small businesses, the data protection bill, and data localisation. Godse was asked about the projects related to cybersecurity that the DSCI is working on. As a reply to the question, Godse replied that there are three key areas of work for the DSCI. One is cybersecurity, which includes the preparedness of the industry. Another is to contribute to […]

続きを読む
サイバーセキュリティ

Critical RCE Flaw Reported in Spotify’s Backstage Software Catalog and Developer Platform

Music Platform Spotify couldn’t stop from being a prey in the hands of cyberattack. Spotify’s Backstage has been discovered as vulnerable to a severe security flaw that could be exploited to gain remote code execution by leveraging a recently disclosed bug in a third-party module. The vulnerability (CVSS score: 9.8), at its core, takes advantage of a critical sandbox escape in vm2, a popular JavaScript sandbox library (CVE-2022-36067 aka Sandbreak), that came to light last month. “An unauthenticated threat actor can execute arbitrary system commands on a Backstage application by exploiting a vm2 sandbox escape in the Scaffolder core plugin,” application security firm Oxeye said in a report shared with […]

続きを読む
サイバーセキュリティ

Cybersecurity company Utimaco acquires PWS provider Celltick

Utimaco has announced the acquisition of global Public Warning Systems (PWS) provider Celltick. Utimaco claimed that it plans to launch its Public Warning Systems in India by forming alliances with telecom providers and state governments to send out alerts and safety messages to subscribers’ mobile phones in real time. The company is aiming to provide services for Indian governments and customers in the telecommunications and enterprise markets after the acquisition of Celltick’s expertise and Utimaco’s global network in these areas. The MAGEN (Mass Alert Geo Emergency Notification) System is a cell broadcast solution for PWS and is already deployed in multiple countries around the globe and its MAGEN CBC has […]

続きを読む
サイバーセキュリティ

Over 15,000 WordPress Sites Compromised in Malicious SEO Campaign

A new malicious campaign has compromised over 15,000 WordPress websites A new malicious campaign in an attempt to redirect visitors to bogus Q&A portals has compromised over 15000 WordPress websites.”These malicious redirects appear to be designed to increase the authority of the attacker’s sites for search engines,” Sucuri researcher Ben Martin said in a report published last week, calling it a “clever black hat SEO trick.” The threat actor operates a handful of fake low quality Q&A sites. The search engine poisoning technique is designed to promote the fake sites that share similar website-building templates. A notable aspect of the campaign is the ability of the hackers to modify over […]

続きを読む
サイバーセキュリティ

Rise in cybersecurity budgets seen by over 82% of biz executives polled in India

India witnesses rise in Cybersecurity budgets According to a PwC report, more than 82 per cent of business executives surveyed in India anticipate an increase in cybersecurity budgets in the coming year, The survey highlights that of all the risks affecting organizations, India respondents consider a catastrophic cyberattack, a resurgence of COVID-19 or a new health crisis, and a new geopolitical conflict among the top three risks.“Over 82 per cent of business executives in India foresee an increase in cybersecurity budgets in 2023,” said the PwC survey. According to the survey, 89 per cent of Indian business executives say their organizations’ cybersecurity team detected a significant cyberthreat to business and […]

続きを読む
記事

Medibank Refuses to Pay Ransom After 9.7 Million Customers Exposed in Ransomware Hack

Medibank suffered a severe cyberattack leading to the leakage of personal data Australian health insurer Medibank today confirmed that personal data belonging to around 9.7 million of its current and former customers were accessed following a ransomware incident. According to the company, the attack was detected in its IT network on October 12 in a manner that it said was “consistent with the precursors to a ransomware event,” prompting it to isolate its systems, but not before the attackers exfiltrated the data. “This figure represents around 5.1 million Medibank customers, around 2.8 million ahm customers, and around 1.8 million international customers,” the Melbourne-based firm noted. Compromised details include names, dates […]

続きを読む
サイバーセキュリティ

Maple Leaf Foods Confirms System Outage Linked to Cybersecurity Incident

Maple Leaf Foods took immediate action upon confirmation of system outage Maple Leaf Foods Inc. today confirmed that it is currently experiencing a system outage linked to a cybersecurity incident. Upon learning about the outage, Maple Leaf Foods took immediate action and engaged cybersecurity and recovery experts. Its team of information systems professionals and third-party experts are working diligently with all available resources to investigate the outage and resolve the situation. The Company is executing its business continuity plans as it works to restore the impacted systems. It expects that full resolution of the outage will take time and result in some operational and service disruptions. The Company will continue […]

続きを読む
サイバーセキュリティ

Facebook Recently Became the Number 1 “Surprise Package” Box

Facebook Tool Lets Users Remove Their Email or Phone Number Shared by Others Facebook, the widely used social app , appears to have silently rolled out a tool that allows users to remove their contact information, such as phone numbers and email addresses, uploaded by others. Facebook has Recently gifted a “Surprise package” by rolling out a new tool. The existence of the tool, which is buried inside a Help Center page about “Friending,” was first reported by Business Insider last week. It’s offered as a way for “Non-users” to “exercise their rights under applicable laws”. An Internet Archive search via the Wayback Machine shows that the option has been […]

続きを読む