Connect Software Expert Ask Free Question Software Marketplace

Related Posts

Zhenhua Data Leak: Prompts the Alarming Data Vulnerability Scenario

Zhenhua Data Leak: Prompts the Alarming Data Vulnerability Scenario-feature image
September 13, 2023 Reviewed By : Sanjay Kaushal .4 Min read

Zhenhua, the word may sound like a tongue twister, but it has recently given sleepless nights to many important personalities across the world, including India. As per the latest report, a China-based tech company, Zhenhua Data Information Technology Co. Limited is spying on the personal data of more than ten thousand important personalities in India and abroad.

The List of People being Spied On: It’ll Send Shivers Down Your Spine

The list seems surprising to everyone as it includes names like Indian Prime Minister Narendra Modi, President Kovind, and the God of Cricket Sachin Tendulkar. The list is huge and includes many big names from the opposition parties in the center, state chief ministers, bureaucrats, national advisors, chiefs of the Army, Navy, and Air Force, etc. The long list of personalities being snooped on by this China-based technology company has kept the Indian security agencies quite busy for the last couple of days.

Another Blow to the Indo-China Relationship

Zhenhua, a Shenzen-based data information technology company has confirmed its links with Chinese military and security agencies. The company is mining important information about top Indians and adding fuel to the dubious intentions of Chinese intelligence against its neighboring country.

Is the Fear of Hybrid Warfare Coming True?

 The database with Zhenhua includes many world entities from all major countries, irrespective of their current state of alliance or enmity with China. Big names from countries like the United States, United Kingdom, Australia, Canada, Japan, Germany, and the UAE clearly indicate that the Chinese government is aiming for a much bigger tension across borders and seas.

Not Just Individuals, But Organizations Made to the List Too

The leaked database, created by Zhenhua, shows the interest of Chinese Intelligence in the recent dealings of Australia’s space and science sector with the NASA lab in California. China’s intelligence service is not just interested in the movement and activities of famous personalities but is also spying on the movement of goods in international dealings.

What’s more sinister is that Zhenhua has been misusing artificial intelligence tools to monitor private records. These include your social media habits, bank statements, job interest, etc.

Much of this data is securely stored over a company’s devices and servers, inaccessible to outsiders. But if the Chinese have already laid their hands on such personal data, we can’t even imagine the scope of data breach we might be staring at.

Indian Government Agencies Need to Beef Up Their Cyber Security

This incident has raised another question – how uptight are our data security measures?

Are we conducting enough security testing to address cyber threat exposures and vulnerabilities?

With cybercriminals making repetitive attempts to breach networks, government agencies need to have better visibility of their security loopholes. Services like VAPT and unified data protection have become the need of this hour to perform 360-degree vulnerability assessment through manual and automated means.

Speaking specifically about VAPT, VAPT consists of two processes: Vulnerability Assessment (VA) and Penetration Testing (PT).

Most importantly, VAPT services provide ongoing guidance and advice by experts to address cybersecurity risks. It also involves penetration testing to figure out any vulnerability in systems, applications and the overall IT infrastructure.

These are the following types of VAPT tests for organizations:

  • Internal and external infrastructure testing
  • API security testing
  • Wireless testing
  • Firewall testing
  • Mobile security testing

These tests combine to give companies an accurate assessment of their system security and suggest steps to mitigate any potential risks.

The Privacy Debate is ON

The leaked database includes 2.4 million people! This has prompted an important debate, ‘is all information about an individual exposed online?’

This is where VAPT steps in as a defense shield. It is an essential network security tool for SMEs as it goes beyond than conventional firewall and antivirus solutions. It highlights all the gaps in your system that may seem to become sources of data breaches.

One this is for sure; This is not the only organization involved in information-spying activities. There must be many such agencies out there, operating from different locations.

We at Techjockey believe that prevention is better than cure. Our approach to VAPT has been centered on motivating organizations to anoint VAPT in their cybersecurity strategy. This ensures that hacking attempts such as phishing and malware attacks can be subdued at a nominal cost. Therefore, it’s time for individuals and organizations to start taking action!

Written by Kalpana Arya

Kalpana’s tech writing journey began in 2017 with Techjockey, and she truly belongs here! If she was not a technical content writer, she would have been a coder. Technical writing, especially for business software, is her passion, and she enjoys every bit of it. From addressing the pain... Read more

Related Question and Answers

A:

The information security safeguards that focus on administrative planning, organizing, leading, and controlling, and that are designed by strategic planners and implemented by the organization's security administration are known as administrative safeguards.  Administrative safeguards include the following:

  • Security policies and procedures: These documents define the organization's security requirements and how they will be met.
  • Training and awareness: Employees must be trained on the organization's security policies and procedures, and they must be aware of the risks to information security.
  • Incident response plan: This plan outlines how the organization will respond to security incidents.
  • Audit and compliance: The organization must regularly audit its security controls to ensure that they are effective.
  • Personnel security: The organization must carefully screen and monitor its employees to ensure that they are not a security risk.
  • Governance and risk management are also important components of information security. Governance is the set of processes and structures that an organization uses to make decisions about its information security. Risk management is the process of identifying, assessing, and mitigating the risks to information security.

Together, administrative safeguards, governance, and risk management form the foundation of an effective information security program.

Mohit kumar Gupta September 9, 2023
A:

The primary purpose of interdiction software is to prevent or block unauthorized access to computer systems, networks, or data, enhancing cybersecurity by thwarting potential threats and intrusions.

Pranav Bajpai September 6, 2023
A:

In case there's a breach of personal data, or organization’s data, the one handling the data needs to inform the one in charge of it as soon as they know about it. After that, the person in charge of the data has to tell the consumer reporting agency about the breach within 72 hours.

NIRMAL SINGH August 12, 2023
A:

This is partly due to the lack of awareness regarding the potential vulnerabilities associated with remote work. Employees are usually engrossed in their immediate tasks. Moreover, the absence of a physical office environment might make them feel less accountable for safeguarding data, as they lack the traditional IT support and oversight.

Deepak August 12, 2023
A:

Encryption is a form of data security in which information is converted to ciphertext.

Arjun August 10, 2023
Read all questions and answers

Still Have a Question in Mind?

Get answered by real users or software experts

Recommended Products

Trending Posts

Best free typing software

21 Best Free Online Typing Software and App in 2024

February 7, 2024

Free bulk SMS marketing apps

Top 14 Free Bulk SMS Apps for Marketing in 2024

August 29, 2023

Open source library management software

10 Best Open Source and Free Library Management Software

March 28, 2024

Free Bulk Whatsapp marketing software feature image

20 Top Free Bulk WhatsApp Sender Tools Online in India 2024

February 7, 2024

Best Technical Analysis Software for Stock Trading in India feature image

21 Best Technical Analysis Software for Stock Trading in India 2024

April 18, 2024

Websites to download games

Top 27 Gaming Websites for PC, Android & iOS – Download Free Games Online 2024

September 18, 2023

Best Stock Screener Software

16 Best Stock Screeners in India for Day Trading 2024

January 17, 2024

hidden call recorder apps

12 Best Hidden Call Recorder Apps for Android & iPhone in 2024

April 16, 2024

Talk To Tech Expert