Ivanti Release Warning on Newly Patched Cloud Appliance Vulnerability

IT management solutions provider Ivanti confirmed that a high-severity flaw patched this week in an older version of its Cloud Service Appliance (CSA) has been exploited in attacks. The vulnerability was fixed as part of the company’s September security update, which also included patches for critical and high-severity flaws in other products. Ivanti has revealed…

Read More

Prasarana confirms cybersecurity breach, public transport operations unaffected

After a social media post went viral claiming that public transportation body Prasarana was facing a ransomware attack, the firm confirmed that it was facing a cybersecurity issue. In the statement posted on RapidKL’s social media, Prasarana said that it “confirms social media reports regarding a cybersecurity incident involving part of their internal systems.” Without…

Read More

Global Checkmarx study reveals 63% of participating organisations have fallen victim to a software supply chain attack in past 2 years

As open source software grows to represent an ever-increasing percentage of enterprise application code, application security (AppSec) leaders and developers are challenged to mitigate the risk of falling victim to the weaponization of such packages by threat actors. Reporting on current open source AppSec practices and problems, Checkmarx, the industry leader in cloud-native application security for…

Read More

Sebi Comes out with new Cyber Security Framework for Regulated Entities

Markets watchdog Sebi on Tuesday issued a new cyber security framework wherein all regulated entities are required to have appropriate security monitoring mechanisms, and the fresh norms will be implemented in a graded manner starting from January 2025. Besides, a Cyber Capability Index (CCI) for market infrastructure institutions and qualified regulated entities will be introduced…

Read More

Microsoft macOS Apps Vulnerability Allows Hackers to Record Audio/Video

Cisco Talos has identified eight security vulnerabilities in Microsoft applications running on the macOS operating system, raising concerns about potential exploitation by adversaries. These vulnerabilities, if exploited, could allow attackers to hijack the permissions and entitlements of Microsoft applications, leading to unauthorized access to sensitive resources such as microphones, cameras, and user data. The vulnerabilities…

Read More

Reliance Jio, C-DOT spearhead cybersecurity push in El Salvador, Guatemala

India’s strategic foray into Central America: India is rapidly expanding its influence in Central America, particularly in the telecommunications and cybersecurity sectors. (Reuters) India is rapidly expanding its influence in Central America, particularly in the telecommunications and cybersecurity sectors. With a focus on El Salvador and Guatemala, India is set to make significant inroads, leveraging…

Read More

Quantum AI Global & Q-CTRL enter into Strategic Partnership to Advance Quantum Technology in India

Quantum AI Global (QAIG) India’s leading organization in quantum communication & technology, and Q-CTRL the global leader in quantum infrastructure software have announced a strategic partnership to work on various technology initiatives in India- one of the fastest growing technology markets in the world. Earlier this month, Q-CTRL announced a pioneering quantum workforce development initiative…

Read More

SYSTEMIC CYBER INCIDENTS REQUIRE RISK MANGEMENT SECURITY POLICIES

In July, a software update from the cybersecurity firm CrowdStrike caused Microsoft Windows operating systems to crash. The US Government Accountability Office called this event “potentially the largest IT outage in history.” The broad-based impact generated by the incident heightens the need to develop an effective risk management process to combat systemic cyber risks. The CrowdStrike incident…

Read More