Page 4 - Cybersecurity

Microsoft rushes to stop hackers exploiting SharePoint security flaw

Microsoft said that attackers are specifically targeting clients running SharePoint servers from their own on-premise networks, as opposed to being hosted and managed by the tech firm

Vulnerability exploited on MS SharePoint servers: All you need to know

Microsoft has issued an emergency fix to close off a vulnerability in Microsoft's widely-used SharePoint software that hackers have exploited to carry out widespread attacks on businesses and at least some US government agencies. The company issued an alert to customers Saturday saying it was aware of the zero-day exploit being used to conduct attacks and that it was working to patch the issue. Microsoft updated its guidance Sunday with instructions to fix the problem for SharePoint Server 2019 and SharePoint Server Subscription Edition. Engineers were still working on a fix for the older SharePoint Server 2016 software. Anybody who's got a hosted SharePoint server has got a problem, said Adam Meyers, senior vice president with CrowdStrike, a cybersecurity firm. It's a significant vulnerability. Companies and government agencies around the world use SharePoint for internal document management, data organization and collaboration. What is a zero-day exploit? A zero-day exploit is

Microsoft warns govt, firms of cyberattacks on document-sharing software

Microsoft said on Sunday it issued a security update for SharePoint Subscription Edition, which it said customers should apply immediately

Standing Committee on Home Affairs to meet today, discuss cybercrime

The panel will meet on the subject of 'Cyber Crime - ramifications, protection and prevention' and hear the views of ministries and organisations. The Committee will again meet on Friday

You might be spied on through your bluetooth audio devices, CERT-In warns

CERT-In warns that Airoha-powered Bluetooth earbuds and speakers can be hacked to spy on users, steal call data, and hijack conversations

Max Financial reports cyber threat at unit; initiates security check

The company has initiated a security assessment and data log analysis, Max Financial said

Samsung to introduce unified security and privacy hub with One UI 8: Report

Samsung released One UI 7 back in April, and now it is reportedly strengthening platform security with unified interface for privacy and security features that will be available with One UI 8

DoT proposes new cybersecurity rules to combat mobile number fraud

The Department of Telecommunications has proposed new cybersecurity rules to curb fraud by verifying mobile numbers through a new validation platform and empowering government agencies

Pro-Russian hackers target municipalities linked to Nato summit: Dutch govt

Pro-Russian hackers launched a series of denial-of-service attacks Monday on several municipalities and organisations linked to a NATO summit this week in the Netherlands, the Dutch government announced. The National Cybersecurity Center said in a statement that many of the attacks were claimed by a pro-Russian hackers' group known as NoName057(16) and appear to have a pro-Russian ideological motive. It did not elaborate. The cybersecurity centre said it was investigating the attacks that flood a site with data in order to overwhelm it and knock it offline, and was in contact with national and international partners. Raoul Rozestraten, a spokesman for the municipality in The Hague, the Dutch city hosting the summit Tuesday and Wednesday, said the attacks hit municipalities around the country. We noticed more traffic on the website of some of our service providers, he told The Associated Press. As of now, everything in The Hague is working normally." The government had launched a m

Meity on alert to find Indian data in global breach; asks Cert-In to probe

Meity had issued guidelines on cyber incident timelines in 2022

Mastek share price up 3% on bagging contract from NHS England; details here

Mastek shares gained in trade today after the company announced it has secured a contract from NHS England to provide cybersecurity training for NHS Boards and Senior Information Risk Owners (SIROs).

Operation Chakra-V: CBI raids 10 sites in nationwide cyber fraud crackdown

CBI conducts nationwide raids in a major crackdown on cyber fraud under Operation Chakra-V, arresting two suspects and seizing cryptocurrency and digital evidence

India's energy transition, grid security hinge on strategic diversification

Regulatory frameworks must evolve to recognise both 'strategic premium' and 'cybersecurity premium' as legitimate components in tariff determination

Microsoft offers to boost European governments' cybersecurity for free

Although malicious actors have weaponised AI, Smith said AI also offered defensive tools

'Not available in your region': What is a VPN and how can I use one safely?

Using VPN shields your identity, protects your data from snoopers, and tricks websites into thinking you are browsing from another location

E-mail verification via OTP for all RTI requests starting Jun 16: Govt

The Centre will implement e-mail verification via a one-time password (OTP) from June 16 for all RTI applications, according to an official statement issued on Monday. The aim is to enhance citizen privacy and data security, besides strengthening the portal's cybersecurity framework, it said. Citizens can file Right to Information (RTI) applications through the portal -- www.rtionline.gov.in -- which also allows users to file appeals and know their status. "To enhance citizen privacy and data security, and to strengthen the portal's cybersecurity framework, email verification via OTP will be implemented for all RTI requests starting Monday, June 16, 2025," read a message on the website under the administrative control of the Department of Personnel and Training (DoPT).

Rising cyber threats: Here is how to protect yourself from SIM-swap fraud

The M&S incident is being widely reported as an example of what is known as "SIM swap". It's a form of fraud that is on the rise and understanding how to protect against it will help limit its impact

CERT-In issues 'high risk' warning, many Microsoft tools affected: Details

CERT-In warns of multiple Microsoft product flaws that could enable attackers to bypass security, execute code remotely, or cause data leaks and service disruption

Airtel approaches Jio, VIL on joint telecom initiative against fraud

Airtel has informed the government and regulator Trai that it has approached Reliance Jio and Vodafone Idea with a proposal for a joint initiative to unite the industry against rising telecom fraud and scams. Airtel has also urged all telcos to collaborate and collectively address the growing threat of deceptive and malicious scams targeting vulnerable individuals. In separate letters to the telcos, it cited data that India recorded over 1.7 million cybercrime complaints in the first nine months of 2024, resulting in financial losses exceeding Rs 11,000 crore. The call for action comes at a time when cybercriminals are using increasingly sophisticated tactics like phishing links, fake loan offers, and fraudulent payment pages, leading to a surge in digital fraud and identity theft incidents. Airtel has upped the ante on the war on digital spams and scams, and the last few weeks have seen the Sunil Mittal-led telco rolling out fraud detection solution to block rogue sites across ...

CloudSEK raises $19 million for AI-led innovation, global expansion

CloudSEK secures funding from Indian and US investors to boost AI capabilities and expand internationally, with the US emerging as its fastest-growing revenue region