The Digital Personal Data Protection Act, 2023 mandates that data fiduciaries obtain clear and verifiable consent from data principals before processing data. However, this obligation is limited when the data is likely to influence decisions affecting data principals or is disclosed to another fiduciary. Although the act permits disclosing data to other fiduciaries, it does not specify the extent of allowable disclosures or when decisions impacting principals could occur.
Critical Vulnerabilities in Mitel SIP Phones Let Attackers Inject Malicious Commands
Researchers found severe vulnerabilities in Mitel’s SIP phones, notably CVE-2025-47188, a critical command injection flaw with a CVSS score of 9.8, affecting 6800, 6900, and
