Cyber News Archives - Page 5 of 14

Pakistan-Backed Hackers Launch 15 Lakh Cyberattacks on India; Only 150 Succeed

Pakistan-backed hacker groups launched over 15 lakh cyberattacks on Indian infrastructure, with only 150 being successful, according to Maharashtra Cyber. The attacks, linked to Pakistan, Bangladesh, and the Middle East, also involved disinformation campaigns and website vandalism. Mumbai: In the wake of the Pahalgam terror attack, Maharashtra Cyber has identified seven Advanced Persistent Threat (APT) organisations that carried out more than 15 lakh attacks against vital infrastructure websites throughout India. Officials said only 150 of these strikes were successful on 12 May 2025. They claimed that despite an agreement between India and Pakistan to halt military conflict, the neighbouring nation, Bangladesh, and the Middle East continue to launch cyberattacks against Indian government websites. Speaking to reporters, a top Maharashtra Cyber official refuted allegations that hackers had targeted the Election Commission website, compromised aviation and municipal systems, and stolen data from Mumbai’s Chhatrapati Shivaji Maharaja International Airport. The investigation found that, although they did not completely halt, cyberattacks on Indian government websites declined as India-Pakistan tensions subsided. Pakistan, Bangladesh, Indonesia, Morocco, and other Middle Eastern nations are still launching these attacks,” he claimed. The state’s nodal cyber agency described the cyberwarfare carried out by hacker organisations affiliated with Pakistan in a paper titled “Road of Sindoor,” which was created as part of the military campaign against terrorists that the Indian armed forces launched under the same name. All of the major law enforcement organizations, including the State Intelligence Department and the Director General of Police, have received the report. The Middle East, Bangladesh, Pakistan, and an Indonesian organization were the sources of these cyberattacks, according to the assessment, stated Yashasvi Yadav, Additional Director General of Police, Maharashtra Cyber. The techniques employed included GPS spoofing, Distributed Denial-of-Service (DDoS) attacks, and malware campaigns. There have also been reports of Indian websites being vandalised. According to him, India’s vital infrastructure was spared, and other such attempts were stopped. Maharashtra Cyber’s previous report, “Echoes of Pahalgam,” which detailed cyberattacks in the wake of the Pahalgam terror incident, is followed up on by “Road of Sindoor.” APT 36 (headquartered in Pakistan), Pakistan Cyber Force, Team Insane PK, Mysterious Bangladesh, Indo Hacks Sec, Cyber Group HOAX 1337, and National Cyber Crew (affiliated with Pakistan) are the seven hacker groups mentioned in the report. According to Yadav, these organisations combined carried out almost 1.5 million focused cyberattacks against Indian infrastructure. The website of the Kulgaon Badlapur Municipal Council was vandalised, one of the 150 successful attacks. Additionally, the attackers claimed to have stolen data from telecom businesses and Chhatrapati Shivaji Maharaja International Airport (CSMIA), some of which was purportedly found on the dark net. The Defence Nursing College’s Jalandhar website was also vandalised. According to the research, groups with ties to Pakistan are using a hybrid warfare strategy that involves extensive disinformation efforts. These organisations made exaggerated claims that they had compromised India’s banking system and disrupted power. More than 5,000 instances of false information and fake news on the armed disputes between India and Pakistan were found and eliminated by Maharashtra Cyber from social media. Thirty-five of the 80 particular misinformation cases that were reported for removal have already been removed, and the other forty-five are still pending. According to Yadav, these bogus narratives included allegations of satellite jamming, state-wide blackouts, cyberattacks on India’s power infrastructure, interruption of the Northern Command, and an alleged strike on a BrahMos missile storage facility. According to him, Maharashtra Cyber has advised people to check news from reliable and authentic sources and to avoid believing or disseminating false information.

India Boosts Financial Cybersecurity Following Cross-Border Tensions

India has urged the RBI, NPCI, and banks to strengthen cybersecurity amid rising tensions with Pakistan and threats to digital payment systems. To safeguard the nation’s financial institutions and digital payment infrastructure, the finance ministry has requested that the RBI, banks, and NPCI, among other important financial institutions, increase cybersecurity protection and remain vigilant. “Yes,” We’ve released a thorough advice on it,” a senior government source said about The Reserve Bank of India (RBI), the National Payments Corporation of India (NPCI), which runs the real-time payments system UPI, major banks, and a few other organisations, thought to be crucial to the safety and integrity of the nation’s financial system, are all considered financial institutions. The protection of NPCI and major banks serves as the foundation for the digital infrastructure that has revolutionised digital payments in India. Over 17–18 billion mobile payments of over Rs 24 lakh crore are made in India each month. The warning follows rising tensions between India and Pakistan following the Pahalgam massacre on April 22 and India’s counterterrorism actions. India thwarted waves of Pakistani drone and missile assaults on its border regions and military installations in Jammu, Pathankot, Udhampur, and other places on the evening of May 8. The Centre has especially requested that these banks maintain heightened awareness and strengthen cybersecurity across the Unified Payments Interface (UPI) infrastructure, payment gateways, real-time gross settlement systems, and core banking systems. Two weeks after 26 people were killed in a terror strike in Pahalgam, Kashmir, on April 22, India began Operation Sindoor early the next day, targeting nine militant sites in Pakistan and Pakistan-occupied Kashmir. Given the current circumstances, CERT-In and the Reserve Bank of India previously urged the majority of significant financial institutions and payment providers to be ready for any cyberattacks. The Ministry of Electronics and Information Technology has an office called the Indian Computer Emergency Response Team (CERT-In) that keeps an eye on the nation’s digital assets and cybersecurity. Under the National Technical Research Organization (NTRO), the National Critical Information Infrastructure Protection Centre (NCIIPC) is the national organization responsible for safeguarding Critical Information Infrastructure (CII) assets, whose disruption could have a significant effect on both economic stability and national security.

Pink Booths Upgraded with Cybercrime Tools to Aid Women and the Elderly in Lucknow

Lucknow Police trained 99 Pink Booth Officers to tackle cybercrimes against women and the elderly. The workshop focused on digital complaint handling, fraud prevention, and securing online safety. In an attempt to enhance women’s digital and physical safety, the Lucknow Police Commissioner held a three-day intensive training program for Pink Booth Officers (PBOS). This gave them the tools they needed to better address the growing cyber threats against women. The goal of the event, which took place at Police Lines Seminar Hall from May 9 to May 11, was to improve officers’ technical proficiency in handling digital crimes to modernise the operation of Pink Booths, which are helpdesks specifically designed for women. Up to 99 female police officers were given practical instruction on how to use the Sanchar Saathi Portal and the Cyber Fraud Online Portal. Under the direction of cybercrime specialist Gautam Mishra, the seminar featured live demonstrations of data security procedures, protecting digital evidence, and complaint registration. According to Saumya Pandey, assistant commissioner of police for crime against women, women and the elderly may easily report and register stolen or missing property. Updates on the progress of filed FIRS are also available to them. “Assist with character verification and tenant background checks. According to Pandey, victims of online fraud can immediately file complaints at any Pink Booth in order to take immediate action and freeze stolen funds. Pandey said the Pink Booths will now help older people and women who have trouble filing cybercrime complaints. They will also learn how to lock their cards and accounts in the event of cyber fraud. The initiative is part of the larger “Women’s Safety, Prosperity Guaranteed” campaign, which seeks to provide safer online and offline environments for women in Lucknow. Pink Booths are being reorganised as part of this program to serve as all-inclusive service locations for women’s support and safety requirements.

Finance Minister Nirmala Sitharaman to Lead High-Level Meet on Banks’ Cyber Readiness

Finance Minister Nirmala Sitharaman will review the cyber preparedness of banks and financial institutions amid rising cyberattack threats linked to India-Pakistan tensions. Key financial bodies and cybersecurity agencies will assess protection measures for critical infrastructure. On the evening of May 9, 2025, Finance Minister Nirmala Sitharaman will preside over a review meeting to evaluate the cybersecurity readiness of India’s banks and financial institutions. This occurs at a time when worries about the possibility of cyberattacks are growing, particularly in light of the escalating hostilities between India and Pakistan. The Reserve Bank of India (RBI), the National Payments Corporation of India (NPCI), the Bombay Stock Exchange (BSE), the National Stock Exchange (NSE), public and private banks, and the Indian Computer Emergency Response Team (CERT-In) will all be represented at the meeting. In order to guarantee that vital infrastructure, including financial services, is safe from cyberattacks, Cert-In has been actively collaborating with many industries. WHAT MAKES THIS MEETING ESSENTIAL? The review meeting is taking place in the midst of increased concerns that cyberattacks could target India’s critical systems, such as the banking and financial industries. There is always a chance that cyber operations could be utilised as a means of disruption or retaliation when nations are involved in hostilities. In response, India has been stepping up its cybersecurity efforts, and the meeting with the finance minister shows how much the government values maintaining the security of the financial system. Cyberattacks can take many different forms, from system interruptions to data breaches. Even a small interruption can have a big impact on financial organisations’ finances and reputation, influencing anything from transactions to client confidence. To make sure that the nation’s financial systems are robust against potential cyberattacks, the Ministry of Finance and other important organisations are treating this threat seriously. Increasing hostilities between Pakistan and India The review meeting’s timing is related to the escalating hostilities between Pakistan and India. According to reports, the Pakistan Armed Forces broke ceasefire accords in Jammu and Kashmir and carried out drone operations along India’s western border on May 8, 2025. The likelihood of additional military measures increased as a result of these escalations, which came after India launched targeted attacks on nine places in Pakistan and Pakistan-occupied Kashmir (Pok). Despite being military, these innovations have broader security ramifications, such as the possibility of cyberwarfare. India is carefully preparing for potential threats to its vital infrastructure, especially the financial sector, as cyberattacks can be an indirect form of revenge in such confrontations.

The ‘Dance of the Hillary’ virus is spreading on Facebook and WhatsApp? Here’s What You Must Understand

A dangerous malware called ‘Dance of the Hillary’ is spreading via platforms like WhatsApp and Facebook, targeting users with fake videos and documents to steal personal and banking data. Authorities urge the public to avoid unknown links and attachments and strengthen cybersecurity measures. Numerous reports indicate that various forms of cyberattacks are purportedly targeting Indian civilians amid the continuing tension between India and Pakistan. According to reports, a virus known as “Dance of the Hillary” is making its way across widely used email, Telegram, Facebook, and WhatsApp. Once accessed, this malware, which poses as a harmless document or video, is said to collect private banking and personal information. The public is being advised to exercise caution and steer clear of unfamiliar attachments or URLS. What is ‘Dance of the Hillary’? According to reports, the ‘Dance of the Hillary‘ infection is a dangerous piece of malware that is intended to corrupt digital devices and steal private data. It deceives users into opening seemingly legitimate files, most frequently documents or video clips. After it is accessed, a virus is surreptitiously installed in the background, granting hackers access to the device. This malicious software can: Steal personal data and banking passwords Gain access to and divulge private documents Devices that slow down or crash Remotely take control of computers and phones “tasksche.exe” is an executable file that is known to cause the infection, therefore be on the lookout for it. Experts advise against opening any unknown files that end in .exe since they are suspicious. How Is The Virus Spreading? According to reports, the infection is being disseminated by: WhatsApp can forward videos as attachments. Phishing government circulars or emails posing as employment interviews Posts on Facebook with deceptive URLS Disguised files in Telegram and X (Twitter) messages To get people to click on these files, hackers are employing psychological traps like fear, curiosity, or urgency. What Should You Do? As previously stated, this specific malware can steal confidential data from devices. Here’s how to exercise caution even when there isn’t any evidence that the virus is harming users: Avoid opening files or links from unidentified or unreliable sources. Disable the WhatsApp and other services’ “Media auto-download” feature. Set up and maintain antivirus software. Refrain from responding to unknown WhatsApp or Facebook communications. Use two-factor authentication and create strong, unique passwords. Make regular backups of critical data.

Govt acts on online misinformation on Operation Sindoor infra, banks on cyber threat alert

The government has ramped up efforts to counter misinformation about Operation Sindoor and placed key infrastructure sectors on high cyber alert following recent terror-linked cyberattacks. Social media platforms are being monitored, with false content actively blocked and users urged to rely on official sources. According to a senior government source, social media platforms are “continually monitoring” for false information about Operation Sindoor by the ministries of information technology and information and broadcasting. These platforms have been requested to block any illegal content. Critical infrastructure agencies and organisations, including the Power Ministry, banks, telecom providers, and other financial institutions, are also on “high alert” after being the target of multiple cyberattacks in the wake of last month’s Amalgam terror incident. “We have contained the DDoS attacks that have been launched against certain infrastructure. We are currently on high alert since similar attempts will undoubtedly be attempted,” the person stated. An assault known as a DDoS (Distributed Denial of Service) occurs when a hacker floods a server, network, or website with malicious traffic from several sources, rendering it unusable or sluggish for authorised users. At a conference between representatives of the two ministries on May 7, 2025, in the afternoon, it was acknowledged that false information about India’s strikes on nine locations in Pakistan and Pakistan-occupied Kashmir (Pok) was widely disseminated on social media sites like X. Since people were making a variety of claims online, it was determined that the government would need to keep a careful eye on such content and use its legal tools to stop its spread. From images of unrelated strikes to video game footage, social media platforms turned into a battlefield for internet disinformation campaigns starting in the early hours of May 7. Online reports that Pakistan shot down an Indian Rafael jet were reportedly accompanied by images of a downed aircraft. The fact-check unit of the Press Information Bureau (PIB) has stated that the images were outdated. Other widely circulated accusations about the airstrikes have also been verified by the unit. Users of social media platforms have been cautioned by the authorities to use caution. “Avoid sharing or relying on unconfirmed information. For factual information, see the Government of India’s official sources,” the IT Ministry stated in several posts on X. 16 Pakistani YouTube channels, including well-known ones like Dawn News, Samaa TV, Ary News, and Geo News, were banned by the government following the Pahalgam terror incident for spreading misleading information and content that was sensitive to the community.

Banks bolster cyber defence amid India-Pakistan missile tensions

Cyber Defence: Following India’s missile strikes on terror sites in Pakistan, banks have ramped up cybersecurity and physical security, especially near border areas. Measures include 24/7 cyber war rooms, anti-cyberattack protocols, and stocked ATMS to ensure service continuity. As India launched missile attacks on Pakistan and Pakistan-occupied Kashmir, banks strengthened their cybersecurity defences against potential cyberattacks. Because of the increased risk of a counterattack, banks have also strengthened security at their branches close to the border. Ashok Chandra, MD and CEO of Punjab National Bank, stated, “We have strengthened the cyber security mechanism… we have created a 24-hour war room to diffuse any cyber attack… we are prepared for any eventuality.” He added that the bank has made plans for the safety and security of its employees and has strengthened security at its branches in border areas. A senior executive from a different public sector bank claims that the bank has implemented an anti-cyberattack procedure to fend off any potential cyberattack. According to the official, ATMS in the border regions have been restocked with cash to ensure that users don’t experience any financial difficulties. The Indian military launched missile strikes on nine terror sites in Pakistan and Pakistan-occupied Kashmir early on May 7, 2025, in revenge for the Pahalgam terror attack. These targets included the base of Lashkar-e-Taiba in Muridke and the Jaish-e-Mohammad stronghold in Bahawalpur. The ‘Operation Sindoor‘ military attacks came two weeks after the terrorists killed 26 civilians in Pahalgam, Jammu and Kashmir. Leading stock exchanges BSE and NSE have blocked their websites to users from other countries as a precaution. A representative for the BSE explained the reasoning for the move by stating that “BSE, being a critical market infrastructure institution (MII), proactively and continuously monitors risks at domestic and international levels for potential cyber threats.”

Cyber fraud awareness is raised by the Telangana Cyber Security Bureau (TGCSB)

The Telangana Cyber Security Bureau (TGCSB) conducted 325 awareness sessions across the state to educate citizens on rising cyber fraud trends. Warnings were issued about fake shopping sites, online task scams, and illegal betting apps, urging victims to report cases via WhatsApp at 8712672222. Hyderabad: The Telangana Cyber Security Bureau (TGCSB) organized a massive State-Wide awareness campaign with 325 sessions held across colleges, medical facilities, private offices, public gathering places, and bus stands to inform citizens about new trends in cybercrime and provide them with preventive measures. A component of Cyber Jagrukta Diwas was this. People were alerted to the existence of fake Instagram sites that use stolen photos to look authentic while showcasing sarees and other apparel. These websites take UPI and e-wallet payments and provide substantial discounts to entice customers. However, either poor quality things are sent, or no products are sent at all. The majority of these pages don’t display any validated company credentials or provide refund choices. Scammers also use offers of easy online chores, like liking videos, to target people. To earn the victim’s trust, they first offer little rewards. Later, they use promises of greater returns to persuade the victims to make larger investments. The scammers vanish after the money is sent, leaving the victims with losses. Fake websites posing as legitimate booking portals for FASTags or license plates were the subject of another alert. These websites gather private and auto data, impose deceptive fees, and never provide the services that are advertised. They also provide fictitious documents in certain cases to give the swindle the appearance of legitimacy. Additionally noted were online betting apps, which are prohibited in Telangana by the Telangana Gaming Act of 2017. These apps encourage money addiction and are frequently run from overseas. Influencers and websites that support or advertise these unlawful betting services are being severely targeted by authorities. Reporting via WhatsApp at 8712672222 is recommended for citizens who are the victims of such scams or who have information.

Govt. Mulls Ban on Influencers Spreading Anti-National Content Post-Pahalgam Attack

The government may ban social media influencers and platforms spreading anti-national content after the Pahalgam attack. The IT Committee has demanded action reports from ministries by May 8 amid rising tensions and UN calls for restraint. Following the terror assault in Pahalgam on April 22, 2025, the Parliamentary Standing Committee on Information Technology has voiced grave concerns about the role of specific social media platforms and influencers. The committee pointed out that some of these organisations seem to be working against the nation’s interests and may be encouraging violence with their content. The committee has urged the Ministry of Electronics and Information Technology and the Ministry of Information and Broadcasting to act quickly and decisively in response to these findings. The Information Technology Act of 2000 and the Information Technology (Intermediary Guidelines and Digital Media Ethics Code) Rules of 2021 specifically seek information about the steps being considered to outlaw such platforms and accounts. Following the terror assault in Pahalgam on April 22, 2025, the Parliamentary Standing Committee on Information Technology has voiced grave concerns about the role of specific social media platforms and influencers. The committee has given the ministries until May 8, 2025, to provide a thorough report detailing the actions they have taken or plan to take to stop the spread of dangerous content. This action demonstrates the government’s will to prevent incitement and actions that could jeopardise national security from taking place on digital platforms. Section 69A of the IT Act, 2000, gives authorities the authority to ban or remove content that endangers public order, security, sovereignty, or goodwill with other countries. According to the 2021 IT Rules, platforms must designate grievance officers, remove illegal content as soon as possible, and apply due care in content management. Five extremists targeted visitors in the Baisaran Valley with the Pahalgam incident, which has greatly increased tensions in the area and drawn global criticism. Additionally, the attack has led to a rise in anti-Kashmiri and Islamophobic attitudes throughout India, with social media being a key platform for the spread of divisive messages. UN chief asks India, Pakistan to step back from the brink Concerned that India-Pakistan tensions were “at their highest in years,” UN Secretary-General António Guterres urged “maximum restraint and stepping back from the brink” on May 5, 2025. “Make no mistake: A military solution is no solution,” Guterres stated in a succinct declaration. Guterres offered both governments his “good offices” in the interest of peace. “The United Nations stands ready to support any initiative that promotes de-escalation, diplomacy, and a renewed commitment to peace,” he stated.

Madras University Cyber Forensics Course Marks 20 Years of Innovation

Madras University’s Cyber Forensics course, launched in 2004, has evolved into a postgraduate program producing over 750 graduates with strong industry placements. Recognized as a Centre of Excellence, it offers cutting-edge cybersecurity and digital forensics training. According to the previous department head and course founder-director R. Thilagaraj, the department developed a postgraduate diploma in cyber forensics and information security for police, courts, and business executives in 2004. Because of the positive reaction, it was changed to a postgraduate degree course the following year. Cybersecurity was still in its infancy. He remembers, “Some of the organizations we visited asked why they needed it.” When the first group graduated in 2007, employers were reluctant to hire them. According to S. Latha, the founder of the course and current director of the Centre for Cyber Forensics and Information Security, the first group of alumni is currently working for multinational banks. Up to 750 students have already received their diplomas. With a government grant of ₹1 crore, the centre was elevated as a Centre of Excellence in 2009, and she adds that it became an independent department with the then-Governor-Chancellor’s approval. The cost of tuition is ₹8,500. The course covers the most recent developments in the fields of digital forensics, information security audit, cyber criminology, and information security. Students have benefited from a course that the University of Madras‘ criminology department introduced 20 years ago. According to the previous department head and course founder-director R. Thilagaraj, the department developed a postgraduate diploma in cyber forensics and information security for police, courts, and business executives in 2004. Because of the positive reaction, it was changed to a postgraduate degree course the following year. Cybersecurity was still in its infancy. He remembers, “Some of the organisations we visited asked why they needed it.” When the first group graduated in 2007, employers were reluctant to hire them. According to Latha, the founder and coordinator of the course and current director of the Centre for Cyber Forensics and Information Security, the first group of graduates is currently working for multinational banks. Up to 750 students have already received their diplomas. With a government grant of ₹1 crore, the centre was elevated as a Centre of Excellence in 2009, and she adds that it became an independent department with the then-Governor-Chancellor’s approval. The cost of tuition is ₹8,500. The course covers the most recent developments in the fields of digital forensics, information security audit, cyber criminology, and information security. “Our alumni are placed in Google, Ernst and Young, Deloitte, HCL, Infosys, and even government agencies.” “The course offers 100% placement in corporate houses, software companies, information security auditing firms, banks, telecom industries, and financial institutions,” Ms. Latha explains. A cyber forensics lab has also been established by the department. Students conduct research in important fields of digital forensics and cybersecurity. As part of the RUSA Arumbu project, a student was recently given seed money to verify the legitimacy of AI-generated images, audio, and video. According to Ms. Latha, “a lot of students have worked in identifying ransomware attacks, phishing links, and fake profiles.” In addition to helping with placement, industry professionals who also teach classes created the syllabus. “The government should consider hiring at least a percentage of police with a master’s degree in cyber forensics and information security in the technical wing, as cybercrimes are on the rise and the majority of cases in the future are likely to be related to cybercrime,” she continues. Students who joined the program after graduating with a BCA, such as Vikram T, Farheen Fathima, and Mohamed Thalal, are now guaranteed a respectable compensation package for their campus placement. Every semester, the students work on a project, and the final dissertation they produce is based on actual business issues. According to guest faculty member C. Vishnupriya, having professionals from the industry on the team aids students in comprehending real-world issues. She adds, “They also value it when students solve problems.”

Cyber News