mobile-logo
 

Cyber Security Blog

Compliance Automation vector illustration
05 Apr

Top GRC tools to automate compliance in 2026

by Elisa Desideri
in Cyber Security Governance, Risk and, Compliance
Comments

Organizations today face increasing pressure to ensure compliance with various governance, risk, and compliance (GRC) requirements. However, with the complexity and volume of regulations continually rising, manual compliance processes are no longer sufficient to keep pace. As a result, adopting GRC tools has become crucial for organizations seeking to streamline and automate their compliance efforts.   By leveraging these tools, organizations can mitigate compliance risks and enhance...

Read More
Cyber Security Law vector illustration
04 Apr

Data protection and cyber security laws in Saudi Arabia

by Paulo Alves
in Cyber Security Governance, Risk and, Compliance
Comments

In recent years, Saudi Arabia has undergone a journey of modernization, particularly in technology and legislation. With its ambitious Saudi Vision 2030, the Kingdom is driving technological advancements to propel itself into the digital era. This transformation highlights the crucial need for robust data protection and cyber security laws to safeguard individuals and businesses.   Traditionally, data protection issues in Saudi Arabia were addressed within the framework...

Read More
Privacy vector illustration
03 Apr

Google Settles Privacy Lawsuit: Incognito Mode Browsing Records to Be Deleted in Billions

by CyberArrow team
in News
Comments

Google has reached an agreement to eliminate vast amounts of data - billions of records detailing users' online activities - as a resolution to a lawsuit accusing the company of monitoring individuals without their explicit consent through its Chrome browser.   The lawsuit, initiated in 2020, alleged that Google deceived users into believing their internet browsing remained confidential when utilizing "incognito" or "private" mode on browsers such...

Read More
Malicious App Illustration
01 Apr

Android Phones Secretly Turned into Cybercriminal Proxies by Malicious Apps

by CyberArrow team
in Cyber Security Governance, Risk and, Compliance, News
Comments

Several malicious Android apps have been spotted on the Google Play Store. These apps have a sneaky purpose: turning your Android phone into a proxy for cybercriminals. The discovery was made by HUMAN's Satori Threat Intelligence team. They found a group of VPN apps on the Play Store that come with a special feature. These apps use a Golang library to secretly transform your device...

Read More
PCI DSS vector illustration
29 Mar

Deadline approaching for PCI DSS v4.0 compliance  — PCI DSS v3.2.1 retiring soon

by Liam Davis
in Cyber Security Governance, Risk and, Compliance, PCI DSS
Comments

PCI DSS v4.0, introduced in March 2022, represents a significant upgrade in data security standards. Organizations were given time until March 31, 2024, to transition from PCI DSS v3.2.1 to v4.0. This transition period allowed time for adjusting to the changes, updating documentation, and implementing necessary measures to meet the new requirements. With the deadline approaching soon, organizations must understand the immediate requirements of v4.0...

Read More
Vulnerability vector illustration
27 Mar

CISA Issues Alerts Regarding Active Exploitation of Vulnerabilities in Fortinet, Ivanti, and Nice Products

by CyberArrow team
in News
Comments

The U.S. Cybersecurity and Infrastructure Security Agency (CISA) put three security problems on its Known Exploited Vulnerabilities (KEV) list this Monday. They found proof that these flaws are being actively used.   Here are the problems they added:   CVE-2023-48788 (CVSS score: 9.3) - Fortinet FortiClient EMS SQL Injection Vulnerability   CVE-2021-44529 (CVSS score: 9.8) - Ivanti Endpoint Manager Cloud Service Appliance (EPM CSA) Code Injection Vulnerability   CVE-2019-7256 (CVSS score: 10.0) -...

Read More