News

A Mumbai High Court has granted urgent interim relief to HDFC Asset Management Company (AMC) concerning an alleged theft of 680 GB of data. The court's decision provides temporary protection to the financial firm as investigations continue into the cyber incident. The case highlights growing concerns about data security within India's financial sector. HDFC AMC had approached the court seeking immediate relief regarding unauthorized access to sensitive company information. The High Court's intervention underscores the judiciary's role in addressing cyber threats affecting major financial institutions. Details regarding the perpetrators and the nature of stolen data remain under investigation. Source: Hindustan Times.

The Bombay High Court has issued a restraining order against cybercriminals threatening to publish allegedly stolen investor information from HDFC Asset Management Company. The order prevents the hackers from disclosing the confidential data obtained during a cyberattack on the financial firm. This legal intervention aims to protect the privacy and financial interests of affected investors. The court's action demonstrates India's judicial response to cyber incidents targeting major financial institutions and the sensitive data they hold. Source: Free Press Journal.

Medium-sized banking and financial services institutions in India are increasingly vulnerable to cyber attacks because they spend significantly less on security infrastructure compared to larger counterparts. A recent report highlights that these mid-sized BFSI players lack adequate cybersecurity investments, making them attractive targets for cybercriminals. The research suggests that limited budgets for security personnel, advanced threat detection tools, and incident response systems create critical gaps. Experts warn that these vulnerabilities could lead to data breaches, customer fraud, and financial losses. The report recommends that mid-sized financial institutions prioritize cybersecurity spending and implement robust protection measures to safeguard customer data and maintain regulatory compliance. Source: Outlook Money.

A joint study by Boston Consulting Group (BCG) and Data Security Council of India (DSCI) reveals that India's Banking, Financial Services, and Insurance (BFSI) organisations experience cyber-attacks at a rate significantly higher than the global average. The research indicates these institutions face attacks 1.6 times more frequently than their international counterparts. This alarming finding underscores the growing cybersecurity challenges confronting India's financial sector, which handles sensitive customer data and transactions. The study highlights the need for enhanced security measures, employee training, and investment in advanced threat detection systems across Indian BFSI organisations to mitigate escalating cyber risks. Source: Express Computer.

California's Attorney General has filed a lawsuit against 23andMe's successor company following a significant data breach in 2023. The breach exposed sensitive personal and genetic information of users stored on the genetic testing platform. The legal action represents enforcement of consumer protection laws and accountability for inadequate security measures. This case highlights risks associated with genetic data storage and the importance of robust cybersecurity practices by companies handling sensitive biological information. Users of such services face potential identity theft and privacy violations when their data is compromised. Source: California Attorney General Press Release.

Indian banks and telecommunications companies are evaluating their cybersecurity readiness by testing public-facing systems using advanced AI models like Opus 4.7 and GPT 5.5. Organizations are also requiring suppliers to conduct security assessments and identify vulnerabilities. The Data Security Council of India (DSCI), operating under Nasscom, is assisting companies in preparing for these cybersecurity evaluations. This proactive approach aims to strengthen defenses against evolving digital threats and ensure robust protection of customer data and financial systems. Source: Economic Times.

A significant data breach has exposed approximately 5.8 million records belonging to Uruguayan citizens, marking another instance of cybercriminals targeting government institutions across Latin America. The stolen information is being leveraged for financial gain by threat actors. This incident highlights growing vulnerabilities in government cybersecurity infrastructure in the region, where personal data of millions remains at risk of exploitation. Authorities are investigating the breach to determine how attackers accessed such large volumes of sensitive citizen information and what protective measures are needed. Source: Cybersecurity publication.

A new Check Point report reveals significant security weaknesses emerging as enterprises rapidly adopt artificial intelligence technologies in their cloud infrastructure. The study highlights that organizations implementing AI solutions often overlook critical security measures, creating vulnerabilities that cyber attackers can exploit. These gaps primarily stem from inadequate security protocols during AI deployment, insufficient monitoring of AI systems, and lack of proper access controls. The research emphasizes that while AI offers operational benefits, enterprises must balance innovation with robust security practices. Indian businesses scaling their cloud and AI infrastructure should prioritize comprehensive security audits and implement industry-standard protections to prevent unauthorized access and data compromise. Organizations are urged to evaluate their current cloud security frameworks before expanding AI implementations. Source: itwire.com.

US telecom company Charter Communications has acknowledged a data breach following threats from the ShinyHunters cybercriminal group. The threat actors demanded ransom in exchange for not releasing the stolen data publicly. This incident highlights the growing risk of extortion-based cyberattacks targeting major infrastructure providers. Organizations are increasingly targeted by criminal groups who steal sensitive information and threaten disclosure to coerce payment. Charter is investigating the scope of the breach and notifying affected individuals. Source: Cyber News.

The Central Board of Secondary Education (CBSE) has dismissed claims of a security breach in its Online System for Monitoring (OSM) portal following recent issues with answer sheet distribution. The board stated there were no security vulnerabilities or unauthorized access to the system. The denial comes amid ongoing concerns about answer sheet mix-ups affecting students. CBSE officials emphasized that the portal's security measures remain intact and functional. The incident highlights the importance of reliable digital systems in educational administration during examination processes. Source: The Times of India.

A mysterious hacking group remains unidentified despite stealing and publicly releasing classified NSA hacking tools. This incident continues to influence how organisations worldwide assess cybersecurity risks today. The theft of these powerful tools has had lasting consequences for digital security strategies across industries. Experts highlight that the identity of the group responsible for this breach remains one of the most significant unsolved cybersecurity mysteries, with implications that extend to modern threat assessment and defensive measures adopted by companies globally. Source: Original Publication.

Cybersecurity researchers have attributed a significant data breach affecting Los Angeles's transit infrastructure to Iranian state-sponsored hackers. The attack was linked to 'Ababil of Minab,' a persona claiming responsibility for multiple data breaches since the outbreak of conflict in Iran. According to an Israeli cybersecurity firm's investigation, the breach caused weeks of operational disruption to the transit system. The incident highlights growing concerns about state-sponsored cyber attacks targeting critical infrastructure. Indian organizations should strengthen their defenses against similar threats targeting transportation and essential services. Source: Reuters.