
SANS Institute unveils key strategies for securing AI technologies in 2025

Try Our AI Features
Explore what Daily8 AI can do for you:
Comments
No comments yet...
Related Articles


Tahawul Tech
26 minutes ago
- Tahawul Tech
Catwatchful data breach exposes thousands in latest stalkerware scandal
Security flaw highlights the ongoing risks of consumer-grade spying apps—and the need for greater public awareness. A covert Android application called Catwatchful, marketed as an 'invisible' child-monitoring tool, has suffered a major data breach that laid bare the email addresses and plaintext passwords of more than 62,000 paying customers and leaked stolen data from at least 26,000 victims' phones. The discovery, first reported by TechCrunch and attributed to security researcher Eric Daigle, shows that Catwatchful's unauthenticated programming interface allowed anyone on the internet to query its entire user database. Most victims were located in Mexico, Colombia, India, Peru, Argentina, Ecuador and Bolivia. Catwatchful is best described as stalkerware: consumer spyware that must be installed manually on a target's handset and then operates in secret, siphoning off photos, messages, real-time location data and even live microphone and camera feeds to a web dashboard controlled by the perpetrator. Although such apps are banned from official app stores, their availability via third-party sites continues to fuel intimate-partner surveillance and other forms of tech-enabled abuse. The leaked database also exposed the identity of the app's administrator, Omar Soca Charcov, a developer based in Uruguay who has so far declined to comment on the breach. Catwatchful is at least the fifth stalkerware service this year to suffer a hacking-related data spill, underscoring a pattern of lax security across the industry and the double-edged privacy threat these tools pose to both victims and buyers. Kaspersky, which classifies Catwatchful as stalkerware and has been detecting it since 2018, says the incident is further evidence that users and policymakers must remain vigilant. Tatyana Shishkova, Lead Security Researcher at Kaspersky GReAT, offered the following rapid response: 'Stalkerware remains a global and serious problem, as confirmed by the recent reports on the Catwatchful app. While such products are typically marketed as legitimate parental control apps, they pose significant risks: they operate stealthily, being installed without a person's knowledge or consent, and provide a perpetrator with the means to secretly monitor the victim's most private information. Moreover, such apps, despite the developer's claims about security, pose privacy risks to the perpetrators themselves. There are frequent data leaks, as recent media reports confirm. Although it was reported that the app 'is invisible and undetectable on the phone', Kaspersky has been detecting Catwatchful as stalkerware since 2018. The 'Who's spying on me' functionality enables users of the Kaspersky app for Android with a dedicated notification when this stalkerware is detected. This case reinforces the need to continuously raise awareness about stalkerware and tech-enabled abuse, empowering individuals with the knowledge on how to protect both their digital and physical lives.' Why it matters Catwatchful's breach illustrates three persistent dangers: Victim exposure – Intimate data can be harvested without consent and then leak wholesale when attackers exploit poor security hygiene. Perpetrator risk – Buyers entrust their credentials and sometimes incriminating evidence to vendors whose safeguards are minimal. Policy gaps – Stalkerware occupies a grey zone in many jurisdictions, complicating enforcement and takedown efforts. Cyber-safety advocates, including the global Coalition Against Stalkerware, argue that the only sustainable fix is a combination of tougher regulation, stricter platform policing and wider public education on detecting and removing clandestine tracking apps. For Android users concerned about possible compromise, Kaspersky and other security vendors recommend running a reputable mobile security suite, checking for unfamiliar accessibility-service permissions and keeping devices updated with the latest patches. Victims of tech-facilitated abuse can also seek specialised support from local domestic-violence hotlines and digital-safety organisations.


Zawya
29 minutes ago
- Zawya
AUS students to benefit from practical training and industry exposure through new partnership with Ghaf Labs
Sharjah, UAE – Following the signing of a Memorandum of Agreement (MOA) between American University of Sharjah (AUS) and Ghaf Labs–FZCO (Ghaf Labs), a Dubai-based blockchain advisory and consultancy firm, AUS students will gain expanded access to internships, research collaborations, field visits and knowledge-sharing opportunities in emerging technical fields. The agreement was signed under the AUS Engineering Al Nukhba Program, which establishes industry collaborations in research, development, training programs, internships, exchange of information and personnel, joint supervision of students' capstone projects and field trip visits. Dr. Fadi Aloul, Dean of the AUS College of Engineering, said: 'This collaboration with Ghaf Labs opens valuable pathways for our students to interact directly with the frontiers of digital innovation,' said Dr. Fadi Aloul, Dean of the AUS College of Engineering. 'We are very excited about this collaboration because it involves Web3, blockchain, AI and advanced technologies—areas we have strategically embedded into all 24 of our programs under CEN 2.0 major curriculum revamp. By engaging with professionals in these emerging sectors, our students will enhance their technical competencies and gain insights into real-world applications that complement their academic training.' Under the agreement, Ghaf Labs will offer internship opportunities that align with students' academic and professional goals. The collaboration also includes joint supervision of selected capstone and research projects whenever feasible, cooperation on research and development initiatives, expert-led sessions and organized visits to industry settings. "At Ghaf Labs, we believe that shaping the future of technology starts with empowering the next generation. Partnering with AUS allows us to co-create a space where innovation meets education. This collaboration reflects our commitment to cultivating regional talent in blockchain, Web3, and AI. By mentoring students through real-world projects, we're building not just careers—but a thriving safe digital economy," said Feras Al Sadek, Co-Founder, Board Member and Managing Partner at Ghaf Labs. Ghaf Labs specializes in management consulting, marketing research and consulting, and Distributed Ledger Technology services. They also offer IT consulting for industries involved in Web3, blockchain, the metaverse and other digital asset sectors. This partnership is part of the College of Engineering's broader mission to foster meaningful engagement between academia and industry. Through initiatives like the Al Nukhba Program, the college continues to provide students with access to cutting-edge technologies, real-world challenges and professional networks that prepare them to lead in a rapidly evolving global workforce. To learn more about the college, visit For more information, please contact: Samar Saeed, PR and Media Specialist Office of Strategic Communications and Marketing at AUS smahmoud@ About AUS American University of Sharjah (AUS) was founded in 1997 by His Highness Sheikh Dr. Sultan Bin Muhammad Al Qasimi, Member of the Supreme Council of the United Arab Emirates and Ruler of Sharjah. Sheikh Sultan articulated his vision of a distinctive institution against the backdrop of Islamic history and in the context of the aspirations and needs of contemporary society in the UAE and the Gulf region. Firmly grounded in principles of meritocracy and with a strong reputation for academic excellence, AUS has come to represent the very best in teaching and research, accredited internationally and recognized by employers the world over for creating graduates equipped with the knowledge, skills and drive to lead in the 21st century. AUS values learners not driven only by academic success, but by those that embrace our dynamic campus life and embody our ideals of openness, tolerance and respect. This combination of academic excellence and community spirit ensures AUS is filled with world-class faculty and students, poised to become the innovators, thinkers, contributors and leaders of tomorrow.


Zawya
an hour ago
- Zawya
Omnix launches AI-first managed services to transform next-gen IT support
Dubai, United Arab Emirates – Omnix International, a leader in digital transformation and innovative technology solutions, today announced the launch of its AI-first Managed Services offerings. These next-generation IT support offerings embed artificial intelligence, automation, and data-driven intelligence at the core of service delivery—redefining how enterprises manage IT operations. This initiative reflects Omnix's vision to deliver value-centric, future-ready services that extend beyond traditional managed support models. As enterprises continue their digital evolution, they are increasingly challenged by rising operational costs, resource constraints, compliance demands, cybersecurity threats, and the pressure to meet demanding SLAs. Omnix's AI-first Managed Services offerings are purpose-built to address these challenges, offering proactive, scalable, and insight-rich support tailored for long-term operational excellence and measurable business impact. Walid Gomaa, CEO of Omnix International, said, 'With the growing complexity of hybrid IT environments and the need for 24/7 resilience, it became evident that conventional support models are no longer sufficient. Our shift toward AI-first Managed Services marks a strategic evolution—from project-based delivery to long-term operational partnerships—empowering our clients to accelerate digital transformation while maintaining agility, visibility, and control.' Bassel Kachfeh, Digital Solutions Manager at Omnix, added, 'This launch is the result of a well-defined strategy that leverages our domain expertise, in-house capabilities, and market understanding. By embedding AI and automation throughout the service stack, we are enabling intelligent, adaptive IT operations that grow with our clients' business and technology needs.' The new offerings are tailored for high-impact sectors such as: Government, Healthcare, Education, Utilities & Energy, Banking & Finance and Transportation. They cover a full spectrum of services including: Service Desk & End User Support (Onsite and Remote) Network & Infrastructure Operations (NOC) Cloud & Platform Management (Public, Private, Hybrid) Cybersecurity Monitoring and Support (SOC) Database, Backup, and Disaster Recovery Operations ITSM Process Management & Automation AI-Driven IT Operations (AIOps). At the core of Omnix's Managed Services is a robust AI-first framework powered by intelligent agentic AI, predictive monitoring (AIOps), and advanced automation. These capabilities enhance critical IT operations such as ticket management, root cause analysis, SLA tracking, and decision-making. By embedding AI throughout the support lifecycle, Omnix ensures that service delivery is not only responsive but also anticipatory, enabling faster issue resolution and greater operational reliability. What sets Omnix apart is its emphasis on proactive, intelligent support. Key differentiators include self-healing infrastructure, predictive and prescriptive insights, and AI models tailored to client environments. This is further strengthened by a dedicated Centre of Excellence (CoE), strategic technology partnerships, and the use of cutting-edge tools including conversational AI, ITSM platforms, and real-time monitoring systems. Together, these elements deliver continuous optimization, governance assurance, and measurable outcomes that align IT operations with business goals. About Omnix International Omnix International is a Sharia'a compliant, industry-leading provider of solutions in digital infrastructure, digital transformation, computer-aided engineering, cybersecurity, cloud computing and managed services, with over 30 years of experience and a proven track record across the globe. Omnix occupies a leading position as a trusted provider of end-to-end solutions that address a wide range of functional requirements at organizations of various sizes, enabling clients to harness new levels of service innovation, customer experience and revenue generation. For more information, visit https: //