The Indian government has unveiled a draft of the much-anticipated Digital Personal Data Protection Bill, marking the fourth attempt to establish comprehensive data protection legislation since its initial proposal in July 2018. This draft aims to enhance personal data security while emphasizing user consent through clear and straightforward language regarding…
Governance & Risk Management, Patch Management Significant Vulnerability in Windows Server Update Services Exposed Akshaya Asokan (asokan_akshaya) • October 28, 2025 Image: bluestork/Shutterstock Concerns are mounting over the exploitation of a flaw in Windows Server Update Services (WSUS), especially after Microsoft expedited a patch addressing an issue that permits unauthenticated…
In a recent development, Google has dismissed assertions of a widespread hack affecting millions of Gmail accounts, clarifying that the actual number of impacted users is significantly lower and that media coverage has exaggerated the situation. The company attributes these claims to misinformation propagated by sources lacking a comprehensive understanding…
Synology Addresses Critical Vulnerability in NAS Devices Synology, a Taiwanese manufacturer of network-attached storage (NAS) appliances, has recently patched a significant security flaw affecting its DiskStation and BeePhotos products. This vulnerability, tracked as CVE-2024-10443 and named RISK:STATION by the cybersecurity firm Midnight Blue, poses a serious risk of remote code…
Microsoft Unveils Details of Targeted Phishing Attack Exploiting Critical Vulnerability On Wednesday, Microsoft provided significant insights into a sophisticated phishing campaign that capitalized on a now-resolved zero-day vulnerability in its MSHTML platform. The exploit involved specially designed Office documents aimed at deploying Cobalt Strike Beacon malware on compromised Windows systems,…
Unveiling Security Vulnerabilities in Trusted Execution Environments Recent research highlights critical vulnerabilities in Trusted Execution Environments (TEEs), which are marketed as secure solutions for data protection across various hardware platforms. According to cybersecurity researcher Genkin, even the latest TEEs from multiple vendors remain susceptible to relatively inexpensive physical attacks, particularly…
The Data Protection Commission (DPC) of Ireland has imposed a substantial fine of €265 million (approximately $277 million) on Meta Platforms, the parent company of Facebook. This penalty stems from a significant breach involving the personal data of over 500 million users, exacerbating the scrutiny on U.S. tech companies regarding…
Artificial Intelligence & Machine Learning, Next-Generation Technologies & Secure Development Nonprofit Organization Maintains Oversight Over $130 Billion For-Profit Entity Michael Novinson (MichaelNovinson) • October 28, 2025 Sam Altman, CEO, OpenAI (Image: Photo Agency/Shutterstock) OpenAI recently completed a significant recapitalization and corporate restructuring aimed at clarifying its nonprofit mission in relation…
The latest findings from Red Canary reveal concerning trends in cybersecurity, despite escalating spending in the sector. As organizations up their investment in cyber defense, new data suggests that security leaders are increasingly losing ground against evolving threat tactics, leading to significant challenges in managing data breaches. According to the…
