News

India is conducting comprehensive security assessments of its government and financial infrastructure against Anthropic's Mythos AI system. Major technology companies including Infosys and TCS are participating in these evaluations, while CERT-In is examining national systems like Aadhaar for potential vulnerabilities. This proactive initiative addresses global concerns about Mythos' dual-use nature—its capacity to both strengthen cybersecurity defenses and potentially be exploited for cyberattacks. The testing aims to identify and mitigate risks before malicious actors could leverage the powerful AI model against India's critical digital infrastructure. Source: The Hindu.

The Central Board of Secondary Education (CBSE) has rejected allegations of a security breach after a teenager released video footage claiming to demonstrate unauthorized access to their systems. The student's video purportedly shows how vulnerabilities in CBSE's digital infrastructure could be exploited. CBSE officials have disputed the hacking claims, stating their systems remain secure. This incident raises concerns about educational institution cybersecurity and the importance of responsible disclosure practices. Cybersecurity experts suggest institutions should thoroughly investigate such claims to strengthen their defenses against potential threats. Source: MSN.

India's Press Information Bureau (PIB) has warned citizens against fraudulent emails claiming to be from the Reserve Bank of India offering lottery winnings or inheritance claims. These messages are scams designed to deceive recipients into revealing personal and financial information or making payments. Scammers impersonate RBI officials to appear legitimate. Citizens receiving such emails should immediately delete them without clicking any links or providing information. The PIB advises reporting suspicious communications to relevant authorities. The RBI does not conduct lotteries or send unsolicited inheritance notifications via email. Stay vigilant and verify any official communication directly through RBI's official website or helpline before responding. Source: Business Standard.

A new Check Point report reveals significant security weaknesses emerging as enterprises rapidly adopt artificial intelligence technologies in their cloud infrastructure. The study highlights that organizations implementing AI solutions often overlook critical security measures, creating vulnerabilities that cyber attackers can exploit. These gaps primarily stem from inadequate security protocols during AI deployment, insufficient monitoring of AI systems, and lack of proper access controls. The research emphasizes that while AI offers operational benefits, enterprises must balance innovation with robust security practices. Indian businesses scaling their cloud and AI infrastructure should prioritize comprehensive security audits and implement industry-standard protections to prevent unauthorized access and data compromise. Organizations are urged to evaluate their current cloud security frameworks before expanding AI implementations. Source: itwire.com.

Microsoft is testing automatic device isolation in Defender for Endpoint to help security teams rapidly contain ongoing cyberattacks. The feature acts as a quick network disconnection to prevent attackers from maintaining control and stealing data. However, SANS Institute research warns that misconfigured settings could allow attackers to disable user accounts. Security experts emphasize that such automated defense tools are essential since modern ransomware and malware operate at machine speed, faster than human response. The feature is particularly valuable for under-resourced security teams and helps limit damage spread. Still, these automation capabilities require careful tuning and testing to prevent misuse. No production release date has been announced yet. Source: SecurityWeek.

Microsoft has identified a cryptojacking campaign exploiting SEO poisoning techniques to direct users to malicious websites that hijack GPU resources for cryptocurrency mining. The attackers abuse ScreenConnect remote access software and Microsoft .NET utilities to establish control over high-performance computers. The campaign also leverages AI chatbots to distribute malicious links, expanding its reach. Victims unknowingly allow their systems' processing power to be used for unauthorized mining operations, degrading performance and increasing electricity consumption. Source: Microsoft Security Blog.

Attackers have exploited a critical zero-day vulnerability in KnowledgeDeliver, a learning management system, to deploy Godzilla web shells on compromised servers. This vulnerability allows unauthorized access and control over affected systems. Organizations using KnowledgeDeliver should immediately patch their systems and monitor for suspicious activity. Web shells enable attackers to execute commands remotely, potentially leading to data theft or further system compromise. Educational institutions and enterprises relying on this LMS platform are advised to check their infrastructure for signs of exploitation and implement security updates as soon as they become available. Source: Original Report.

A critical vulnerability has been discovered in a widely-used open-source software package that poses significant risks to millions of artificial intelligence agents deployed globally. The flaw could potentially be exploited by threat actors to compromise AI systems and the applications they support. Security experts have warned organizations using this package to apply patches immediately. The vulnerability highlights the importance of maintaining updated software dependencies and conducting regular security audits of open-source components used in critical infrastructure. Developers are urged to review their systems and implement necessary security measures to protect their AI deployments from potential exploitation. Source: Ars Technica.

A malware campaign called 'Megalodon' has infected thousands of GitHub repositories in a rapid six-hour attack. The attackers injected malicious code commits into over 5,500 repositories, targeting developers and organizations. The malware was designed to steal sensitive credentials, developer secrets, and other valuable data from compromised accounts. This mass-scale attack demonstrates the vulnerability of popular code-sharing platforms to sophisticated threats. GitHub users are advised to review their repository activity, check for unauthorized commits, and secure their authentication tokens immediately. Source: Cybersecurity news outlet.

US telecom company Charter Communications has acknowledged a data breach following threats from the ShinyHunters cybercriminal group. The threat actors demanded ransom in exchange for not releasing the stolen data publicly. This incident highlights the growing risk of extortion-based cyberattacks targeting major infrastructure providers. Organizations are increasingly targeted by criminal groups who steal sensitive information and threaten disclosure to coerce payment. Charter is investigating the scope of the breach and notifying affected individuals. Source: Cyber News.

TeamPCP, the hacking group behind the Shai-Hulud worm, has inflicted substantial damage on the open source software ecosystem. Security experts debate whether their success stems primarily from technical expertise or fortunate circumstances. The worm's impact highlights vulnerabilities in widely-used open source projects that developers rely on globally. Analysts suggest that while the attackers demonstrated capability in deploying the malware, their effectiveness may also reflect gaps in security practices within the open source community. This incident underscores the importance of robust security measures and rapid patching protocols for critical software infrastructure. Source: Cybersecurity News.

The Central Board of Secondary Education (CBSE) has dismissed claims made by a social media user alleging unauthorized access to its portal. The board issued an official clarification stating that no security breach occurred on their systems. CBSE conducted an investigation into the allegations and found them to be unfounded. The incident highlights the importance of verifying cybersecurity claims before spreading them on social media, which can cause unnecessary panic among students and parents. CBSE continues to maintain security protocols for its online platforms. Source: India.Com.