Home Blog Page 106

Hacker puts Star Health’s 3.1cr customer data up for sale for $150,000

Ana Mary Joseph
-
0
Hacker puts Star Health’s 3.1cr customer data up for sale for $150,000
  • Claims to have exposed sensitive information, including personal identifiers and insurance claims, with options for “parts sale” indicating a troubling commodification of personal data.

The recent incident involving the hacking of Star Health, where an extensive trove of customer data—amounting to 7.24TB and affecting over 3.1 crore clients—has been put up for sale, underscores the alarming vulnerabilities within the insurance sector’s cybersecurity framework.

The hacker, known as xenZen, claims to have exposed sensitive information, including personal identifiers and insurance claims, for $150,000, with options for “parts sale” indicating a troubling commodification of personal data.

Severe lapse

The allegations leveled by xenZen suggest a breach not only of technical safeguards but also of ethical conduct within organisational structures. The assertion that Star Health’s Chief Information Security Officer purportedly engaged in illicit transactions related to customer data raises profound questions about accountability and governance within corporations.

Such claims, if verified, would indicate a severe lapse in the protective measures expected from high-ranking officials, fundamentally undermining customer trust.

Furthermore, the hacker’s provision of 500 random samples, purportedly including information about government officials, exacerbates concerns regarding identification and the potential misuse of such data.

The act not only threatens individual privacy but poses broader risks to national security and institutional integrity.

Star Health’s response to the breach, including a lawsuit against Telegram and the hacker, signifies an immediate attempt to mitigate reputational damage and address the legal ramifications of the incident.

However, the company’s initial assertion that “sensitive customer data remains secure” has been challenged by the ongoing availability of extensive data for purchase, indicating a disconnect between internal assessments and external realities.

This incident serves as a clarion call for the insurance industry to reassess and strengthen its cybersecurity protocols. It reveals a pressing need for enhanced security measures, employee training, and transparent communication strategies to reassure customers.

Threat actor compromises Giordano’s large database

Naushad K. Cherrayil
-
0
Threat actor compromises Giordano’s large database
  • Hacker claims to possess two main files -Orders.csv, consisting of 239,000 rows, and MobilePhone.csv, containing 116,000 entries.

A recent post on a notorious dark web forum has ignited concerns over a potential data breach involving Giordano, a prominent fashion and retail brand with a substantial presence in the Middle East.

The post alleges the unauthorised access and sale of sensitive information extracted from the company’s database, raising significant apprehensions regarding the security of consumer data and the integrity of corporate practices in safeguarding such information.

The threat actor claims to possess two main files: Orders.csv, consisting of 239,000 rows, and MobilePhone.csv, containing 116,000 entries. The Orders.csv file is purported to include critical order details, such as order codes, payment information, and customer identifiers, all of which are vital for transaction tracking and customer service operations.

Monetising stolen data

In parallel, the MobilePhone.csv file allegedly houses personal identifiers, including mobile phone numbers and country codes, which are particularly sensitive as they could facilitate targeted phishing or identity theft.

The post further claims that the alleged database is available for purchase, strictly accepting Monero (XMR), a cryptocurrency noted for its privacy features and frequent usage in illicit transactions.

This preference underscores the seriousness of the situation, as it not only highlights the intent to evade detection but also indicates a calculated approach by the threat actor to monetise the stolen data.

In light of these allegations, it is imperative for Giordano to publicly address the situation, reassure stakeholders of their commitment to data protection, and actively investigate the claims.

Moreover, this incident serves as a critical reminder regarding the ongoing challenges companies face in safeguarding customer information and the necessity for robust cybersecurity measures to mitigate potential breaches.

Infosys to rev up customer adoption of GenAI and Microsoft Cloud

TCN Bureau
-
0
Infosys to rev up customer adoption of GenAI and Microsoft Cloud
  • Both companies are set to empower organisations to navigate the complexities of the digital landscape, ensuring that they remain competitive and innovative in an ever-evolving market.
  • Many of the solutions developed through this partnership will be accessible via the Azure Marketplace.

India’s Infosys has announced an expansion of its collaboration with Microsoft, a strategic alliance designed to accelerate the global adoption of generative AI and Microsoft Azure among their joint clientele.

The partnership aims to enhance the value derived from technological investments, ultimately leading to transformative outcomes for businesses worldwide.

The collaboration between Infosys and Microsoft began with Infosys’s early adoption of GitHub Copilot, a tool that has significantly improved efficiencies in code modernization and completion.

As a leading user of GitHub Copilot, Infosys has empowered over 18,000 developers to generate and utilise more than 7 million lines of code.

Strategic supplier

The substantial engagement underscores the company’s commitment to leveraging innovative technologies. Furthermore, the establishment of an industry-first GitHub Centre of Excellence positions Infosys at the forefront of enterprise AI innovation, enabling them to deliver cutting-edge solutions to clients globally.

In addition to its role as a GitHub pioneer, Infosys has been designated a strategic supplier to support Cloud and AI workloads for Microsoft’s enterprise customers.

By integrating Microsoft’s generative AI offerings into its Solution IP portfolio, Infosys aims to deliver unique capabilities that enhance cost-efficiency, scalability, and agility for its clients.

The collaboration also leverages Infosys’s proprietary platforms, such as Infosys Topaz and Infosys Cobalt, along with the AI-powered marketing suite, Infosys Aster. This comprehensive approach is set to improve customer experiences and drive the widespread adoption of enterprise AI.

Moreover, many of the solutions developed through this partnership will be accessible via the Azure Marketplace, allowing clients to utilise their Microsoft Azure Consumption Commitment (MACC). This not only creates a mutually beneficial market proposition but also simplifies the integration of advanced technologies into existing business frameworks.

Anand Swaminathan, Executive Vice President and Global Industry Leader at Infosys, said that the collaboration addresses critical business challenges by delivering enhanced value through a customer-centric approach.

“It promises scalability, agility, and cost-efficiency across vital sectors such as Finance, Healthcare, Supply Chain, and Telecommunications. As Infosys and Microsoft embark on this transformative journey, they are poised to redefine industry standards and empower organizations to thrive in the era of generative AI.”

Nicole Dezen, Chief Partner Officer at Microsoft, said that the expanded collaboration will transform industries, enhance business operations, and elevate employee experiences.

“By harnessing the power of generative AI, both companies aim to deliver innovative solutions that drive AI adoption and foster unprecedented innovation for their customers.”

India raises transaction limits on UPI payment systems

Ana Mary Joseph
-
0
India raises transaction limits on UPI payment systems
  • Introduces a Beneficiary Account Name Look-up Facility, aimed at augmenting the security of digital transactions.
  • Per-transaction cap for UPI 123Pay has been raised from Rs5,000 to Rs10,000 while the UPI Lite wallet limit has expanded from Rs2,000 to Rs5,000.

Elevated limits for UPI 123Pay are particularly tailored to accommodate India’s 400 million feature phone users.

The Reserve Bank of India (RBI) has announced a significant increase in the transaction limits for two pivotal digital payment systems – UPI 123Pay and UPI Lite.

The per-transaction cap for UPI 123Pay has been raised from Rs5,000 to Rs10,000, while the UPI Lite wallet limit has expanded from Rs2,000 to Rs5,000. These enhancements, as articulated by Governor Shaktikanta Das, are designed to bolster the accessibility and inclusiveness of India’s digital payments landscape.

Unified Payments Interface (UPI) has fundamentally transformed the financial environment in India by facilitating seamless digital transactions, thereby catering to a diverse user base.

The elevated limits for UPI 123Pay are particularly tailored to accommodate India’s 400 million feature phone users, who can engage in secure digital payments without the necessity of smartphone or internet connectivity.

Reducing cash dependency

The system allows users to effortlessly make transactions by dialing *99#, selecting their bank, and entering their details, thus ensuring that even those without sophisticated technology can partake in the benefits of digital finance.

Experts across the industry have lauded these adjustments as a pivotal leap toward enhancing financial inclusion. Siddharth Maurya, Managing Director of Vibhavangal Anukulakara Private Limited, emphasised that this increase addresses the evolving needs of various consumer groups.

Moreover, Raghunandan Saraf, Founder and CEO of Saraf Furniture, predicts that the heightened limits will stimulate higher-value transactions among feature phone users.

By facilitating this demographic’s access to larger payment capacities, the RBI is positioning UPI 123Pay as a key driver in reducing cash dependency within the economy.

Furthermore, the upgrade of the UPI Lite wallet limit to Rs5,000, with a transaction cap now set at Rs1,000, is anticipated to foster a more robust ecosystem for low-value offline digital transactions.

This convenience is critical as it simplifies payment processes and diminishes the need for constant bank connectivity, thus enhancing user experience for routine transactions.

In conjunction with these increases, the RBI is also introducing a Beneficiary Account Name Look-up Facility, aimed at augmenting the security of digital transactions.

This feature, which will extend from UPI and Immediate Payment Service (IMPS) to RTGS and NEFT systems, will enable users to verify recipient names prior to fund transfers, significantly mitigating the potential for errors and fraud.

India set to lure big drone makers with new PLI scheme

Mohammed Fahad
-
0
India set to lure big drone makers with new PLI scheme
  • Aims to foster the growth of startups and enhancing the self-reliance of the Indian drone industry.

The Government of India is set to launch a new Production-Linked Incentive (PLI) scheme for the drone sector, with the objective of enhancing the efficiency of implementation and increasing the usage of indigenous components.

Announced by Civil Aviation Secretary Vumlunmang Vualnam, the initiative addresses the shortcomings of the inaugural PLI scheme, which was established in 2021 with a financial commitment of Rs120 crores over three years.

The forthcoming scheme is expected to provide a substantial outlay of Rs1,000 crores, aimed at fostering the growth of startups and enhancing the self-reliance of the Indian drone industry.

This new PLI scheme intends to classify the drone market into three key segments: civilian use, defense and security applications, and the management of rogue drone activities.

Creating tailored strategies

By delineating these sectors, the government seeks to create tailored strategies and ensure that concerns related to unregulated drone usage do not hinder the progress of legitimate stakeholders, including startups and women-led self-help groups.

The recognition of the initial scheme’s bureaucratic challenges indicates the government’s commitment to facilitating a more streamlined process for operators within the drone industry.

Vualnam acknowledged the burdensome documentation requirements that particularly impacted small enterprises and startups, signifying a shift towards promoting ease of doing business in this burgeoning sector.

Fostering indigenisation is a core theme of the new initiative. As emphasised by Major General C S Mann from the Army Design Bureau, it is crucial for the industry to accurately represent its indigenous capabilities.

The transparency will bolster efforts to tackle challenges effectively and identify essential components for domestic production. Furthermore, the inclusion of counter-drone technologies within the scope of the new PLI scheme reflects a proactive approach to address potential threats posed by rogue drone activities.

The new scheme also aligns with other government initiatives, such as the Namo Drone Didi Scheme, aimed at empowering rural women through access to agricultural drones.

The initiative promises to distribute 15,000 drones to women-led self-help groups, thereby enhancing productivity in the agricultural sector and promoting gender inclusivity.

Bobby Mitra appointed CIO at Tata Electronics

TCN Bureau
-
0
Bobby Mitra appointed CIO at Tata Electronics

Tata Electronics has appointed Bobby Mitra as Chief Information Officer (CIO) and President of AI and Digital Transformation.

The appointment is timely as the industry increasingly emphasises the integration of artificial intelligence (AI) and digital technologies into manufacturing processes, particularly in the context of India’s burgeoning semiconductor sector.

Mitra’s mandate encompasses driving enterprise-wide initiatives in AI and digital transformation across several key areas, including Electronic Manufacturing Services, Semiconductor Assembly and Test, Semiconductor Foundry, and Design Services.

His leadership will be pivotal in spearheading Tata Electronics’ endeavors to establish India’s first semiconductor fabrication plant in Dholera, Gujarat, alongside the country’s first indigenous semiconductor assembly and test facility in Jagiroad, Assam.

These initiatives not only underscore Tata Electronics’ commitment to enhancing India’s semiconductor ecosystem but also reflect a broader vision of AI-led manufacturing excellence.

Robust track record

Randhir Thakur, MD & CEO of Tata Electronics, expressed enthusiasm over Mitra’s appointment, emphasising the importance of his extensive industry experience. Mitra’s background in smart manufacturing, coupled with his profound understanding of the digital landscape, positions him as a vital asset in delivering enhanced value to customers.

His previous roles—including leadership positions at Texas Instruments and Deloitte Consulting—demonstrate a robust track record in advancing technology and manufacturing processes on a global scale.

Academically, Mitra is well-equipped for this role, holding a B.Tech in Electronics and Electrical Communication Engineering, a Ph.D. in Computer Science from IIT Kharagpur, and an Executive MBA from the University of Texas, Austin.

His stature within the industry is further solidified by his fellowships and leadership roles in esteemed organisations such as the IEEE and SEMI Smart Manufacturing.

1...105106107...273Page 106 of 273