News

A significant majority of organizations operating in India have experienced at least one identity breach during the past year, according to recent findings. This alarming statistic underscores the growing threat landscape that Indian businesses face from cybercriminals targeting sensitive employee and customer identity data. Identity breaches can lead to unauthorized access, financial losses, and reputational damage. Organizations are increasingly vulnerable due to weak authentication mechanisms, poor access controls, and inadequate identity management practices. Experts recommend implementing robust identity verification systems, multi-factor authentication, regular security audits, and employee awareness training to mitigate these risks. Source: ETCISO.in.

As cyber threats intensify across India, artificial intelligence has become crucial for effective defense mechanisms. Organizations and individuals must adopt AI-powered security solutions to combat evolving attack vectors. Traditional security measures alone are insufficient against sophisticated cyber threats that target Indian businesses and citizens. AI enables real-time threat detection, automated response systems, and predictive analytics to identify vulnerabilities before exploitation. Experts emphasize that without AI integration in cybersecurity infrastructure, Indian organizations face significant risks of data breaches, financial loss, and operational disruption. Implementing AI-driven security frameworks is now considered essential rather than optional for protecting critical digital assets. Source: Whalesbook.

Hackers compromised @antv npm packages to distribute malware called Mini Shai-Hulud, targeting developers' automation systems. The malicious code activates during package installation and extracts sensitive credentials from popular platforms including GitHub, AWS, Kubernetes, Vault, npm registry, and 1Password. This attack specifically impacts Linux-based development environments and poses significant risk to organizations relying on automated software deployment pipelines. Developers should immediately review their npm dependencies and update to verified versions. Source: Microsoft Security Blog.

Securing artificial intelligence systems requires more than benchmark scores, according to security experts. Traditional software security approaches—from penetration testing to architectural risk analysis—may offer valuable lessons for AI security measurement. However, AI's deeper business impact demands adapted strategies. Rather than seeking a single security metric, organizations should focus on establishing robust assurance processes and risk management frameworks. The evolving field of AI security must learn from decades of software security development while recognizing AI's unique challenges. Experts emphasize continuous vigilance and proper process management remain essential, as no single security measurement can guarantee AI safety.

Grafana Labs has issued a security advisory regarding a ransomware incident affecting the TanStack package in the NPM (Node Package Manager) supply chain. The incident highlights vulnerabilities in popular open-source repositories that developers rely on. The company has provided guidance on identifying compromised packages and recommended immediate updates for affected users. This supply chain attack underscores the importance of verifying package authenticity and monitoring dependencies in development workflows. Organizations using TanStack should review their systems and implement the suggested security patches promptly to prevent potential ransomware infections. Source: Grafana Labs Security Advisory.

International law enforcement agency Interpol has successfully shut down 53 servers hosting malware and phishing operations as part of 'Operation Ramz'. The coordinated action targeted infrastructure used by cybercriminals to distribute malicious software and conduct phishing attacks that compromise user credentials and financial information. This operation demonstrates global cooperation in combating cybercrime threats that affect users worldwide, including India. The seizure of these servers disrupts criminal networks' ability to launch large-scale attacks and steal sensitive data from unsuspecting victims. Source: Interpol.

New York City Health and Hospitals Corporation (NYCHHC) disclosed a significant data breach affecting patient information. Attackers accessed medical records and fingerprint data during the incident. The breach compromises sensitive personal and health information of affected individuals. NYCHHC is investigating the scope of the attack and notifying impacted patients. This incident highlights vulnerabilities in healthcare systems' data security measures. Individuals whose data was compromised should monitor for identity theft and fraudulent activities. Healthcare organizations handling biometric data face increasing cyber threats, emphasizing the need for robust security protocols and regular audits.

A contractor working for the US Cybersecurity & Infrastructure Security Agency (CISA) accidentally left a public GitHub repository containing sensitive AWS GovCloud credentials and internal CISA system details. The exposed repository included files revealing how CISA develops, tests, and deploys software. Security experts have called this one of the most serious government data leaks in recent times. The repository remained publicly accessible until recently when it was discovered and removed. This incident highlights the risks of credential exposure on public platforms and the importance of proper access control management in government agencies. Source: BleepingComputer.

A critical vulnerability named MiniPlasma has been discovered in Windows systems, allowing attackers to gain SYSTEM-level access—the highest privilege level. A proof-of-concept exploit has been publicly released, increasing risk for unpatched systems. SYSTEM access enables attackers to install malware, steal data, modify system files, and control devices completely. Users should immediately apply Windows security updates from Microsoft. This zero-day affects multiple Windows versions and poses significant risk to Indian organizations and individual users. Keep systems updated and monitor security advisories from Microsoft for patches. Source: Security researcher disclosure.

A critical vulnerability in NGINX web server (CVE-2026-42945) is being actively exploited by attackers in the wild. Organizations running NGINX installations are at risk and should prioritize applying security patches immediately. System administrators are advised to update their NGINX instances to patched versions and monitor systems for signs of compromise. This vulnerability could potentially allow unauthorized access or remote code execution on affected servers. Indian enterprises and web hosting providers should review their NGINX deployments and implement necessary security measures without delay to prevent exploitation. Source: Help Net Security.

An Indian comedian fell victim to a sophisticated social engineering scam impersonating FedEx. Scammers sent notifications claiming a package contained illegal drugs, prompting the victim to click malicious links. The attack exploited trust in legitimate courier services to deceive users into revealing sensitive information or installing malware. Such scams target middle and upper-class Indians who frequently receive online deliveries. Experts advise verifying package details directly through official courier websites rather than clicking links in unsolicited messages. Awareness about these impersonation tactics is crucial for protecting personal and financial data. Source: BBC.

Signal, the popular encrypted messaging platform, has introduced new security warnings to protect users from social engineering and phishing attempts. These alerts are designed to identify suspicious messages and links that could compromise user safety. The feature helps users recognize common tactics used by scammers to manipulate them into revealing sensitive information or clicking malicious links. This move strengthens Signal's commitment to user protection in an era of increasing cyber threats. Indian users can benefit from these built-in safeguards while communicating on the platform. The implementation reflects growing awareness about the need for in-app security measures against evolving social engineering techniques. Source: Signal Official Announcement.