Yesterday marked another milestone for SISA.
SISA released the second edition of its flagship report - The Digital Threat Report 2025-26 for the Banking, Financial Services and Insurance (BFSI) sector, developed in collaboration with @IndianCERT and CSIRT-Fin.
The report was released by Shri @SecretaryMEITY at the @GoI_MeitY office, together with Dr. Sanjay Bahl, Director General, CERT-In, Dharshan Shanthamurthy, Founder and CEO, SISA, and Mahendran Chandramohan, Chief Technology Officer, SISA.
Click here to get your copy of the report: https://t.co/7fkeK5UqqK
#SISACERTInReport2026 #ThreatReport #Atmanirbhar
#SISAInNews: India handles nearly 49% of the world's immediate real-time payments, the fast payments executed across the globe.
Speaking to @ANI on the second edition of the Digital Threat Report 2025-26, released in collaboration with @IndianCERT and CSIRT-Fin, @dashshan , Founder & CEO of SISA, said that scale is "built on a foundation of trust that has actually worked." The report was prepared by a global leader in cybersecurity for the payment ecosystem & GOI not just for India, but for the global community.
Read the full report: https://t.co/7fkeK5TSBc
#DigitalThreatReport #Cybersecurity #BFSI #PaymentSecurity #CERTIn
#WATCH | Delhi | On the Digital Threat Report 2025–26: 'From Frontline Intelligence to Collective Foresight', Founder and CEO, SISA, Dharshan Shanthamurthy says, “The Digital Threat Report is one of the seminal reports. If you look at the history of how we got together, India handles about 49% of the world's immediate real-time payments—the fast payments that are executed across the globe. One of the key aspects is that since India has achieved this, it is built on a foundation of trust that has actually worked. The Government of India and SISA came together to prepare something not just for the country, but for the world. That is one of the main reasons why this Digital Threat Report is very forward-looking—to help the industry as well as the global community improve their cybersecurity posture...”
The Digital Threat Report 2025-26 delivers a stark finding: six of the seven forward-looking predictions made in last year's edition have already reached full-scale realization.
Get your copy: https://t.co/7fkeK5UqqK
#SISACERTInReport2026#DigitalThreatReport#ThreatResponse #AtmanirbharBharat
If your organization is struggling with modern #cyberthreats then an Agentic SOC might be what it needs.
Bharath Keshavamurthy, VP - Agentic SOC at SISA explains.
Find out more: https://t.co/rf3ilRQZK8
A coding #AIagent found an unscoped access token, guessed a production endpoint, and wiped a live database and three months of #backups in nine seconds.
No #malware. No exploit. The agent just did what it was built to do, after someone quietly rewrote what it read.
Find out more: https://t.co/JnFSIcfkCZ
#Thirdparty risk: What happens when a vendor ecosystem outgrows an organization's ability to assess it?
Find out what SISA was able to do for a large #Indian private-sector #bank with 1,500+ banking outlets and 2,070+ ATMs across India: https://t.co/IjmhK6IV1N
Hear from Chisanga Kapinda, IT Risk Manager, @FirstCapital_Zm on how CPISI is building the next generation of payment security professionals.
SISA Institute's CPISI Program is designed for professionals who need to go beyond compliance checkboxes and understand how security actually operates across modern payment ecosystems
Find out more: https://t.co/jMAehl2J1j
SISA's ProACT Agentic SOC has been named a Product Leader in the @kuppingercole Analysts Leadership Compass for Managed Detection and Response 2026, recognized for "the most complete mix of functionality, security, interoperability, deployment options, and usability."
Find out more: https://t.co/nHUECENSW1
#SISAProACTLeadsKuppingerCole
When #payment apps are optimized for business outcomes, how can teams be sure they're also not introducing #vulnerabilities?
Tomorrow, drawing on 85+ #PCI Secure Software Standard audits, we're unpacking exactly this.
Join us: https://t.co/hkLX8DJE4d
The #trojan that turns your entire phone hostile - #Rokarolla.
Abuses Android's Accessibility Services, the single permission that lets it read the screen, inject input, and act on the user's behalf, all without exploiting a single flaw in the #banking app itself.
Read the full breakdown: https://t.co/p1ICcQz6hk
A #payment application can pass PCI Secure Software Standard validation and still carry critical flaws in business logic.
Our upcoming webinar, draws on insights from 85+ #PCI Secure Software Standard assessments to unpack how business logic flaws in production can enable fraud, unauthorized transactions and much more.
Register now: https://t.co/7FpM7cbg92
📅 08th July 2026
🕑 PM - PM IST | Online
Trusted infrastructure is becoming #SoutheastAsia's biggest #cyberrisk.
SISA Sappers, our #DigitalForensics & Incident Response (DFIR) unit, tracked the region's threat activity from January to June 2026. The key finding: this is no longer a ransomware-versus-espionage story.
Download the report: https://t.co/cR7WSICUMX
A stale credential was all it took.
Sapphire Sleet, the #NorthKorean state-linked group Microsoft also tied to the Axios npm compromise earlier this year, hijacked a dormant #MastraAI maintainer account and pushed malicious updates across 140+ packages in the @mastra scope.
Read the fill breakdown: https://t.co/03Ny7Hj7qz
#Quantum computing may still be evolving, but the threat isn't.
Attackers are already collecting encrypted data today with the expectation of decrypting it when quantum computing becomes practical. That's the reality of Harvest Now, Decrypt Later (HNDL).
SISA Institute's Certified Quantum Security Professional (CQSP) program is built for #professionals who need to move past awareness and into action.
Hear it from those who've been through it: Rajan Iyer, Cloud Security Architect at @Xoriant. See how CQSP is building the next generation of quantum-ready #security professionals.
A #payment app can clear every functional test and still carry a business logic flaw that lets someone exploit an unauthorized #transaction through.
Our upcoming webinar draws on insights from 85+ #PCI Secure Software Standard assessments to unpack where payment applications are actually getting compromised, and the secure-by-design practices that shorten remediation cycles and improve first-time assessment outcomes. Join Rohan Mahadik Associate Director, Head of Payment Security Compliance, and Shaik saifulla, Associate Director, CTS - SSF, as they tackle these topics head-on.
📅 08th July 2026
🕑 3:00 PM - 4:00 PM IST | Online
Register now: https://t.co/e2ga2FOxQ6
@uday_devops None of these are bypass-proof out of the box. The vendor name on it matters less than whether anyone's actually tested the implementation.
@trendkia Good explainer on pay orders but with requests now going through net banking and mobile apps, the real question isn't whether the cheque bounces, it's whether that request flow can be forged or replayed - an API security problem, not a paperwork one.