Cyber update Archives - Page 3 of 8

Pinterest is at last taking something to combat its AI infestation

Pinterest has introduced new tools to label and filter AI-generated images, helping users distinguish synthetic content and reduce its visibility. The platform will use metadata and AI classifiers to detect altered images, with features like “AI modified” tags and user controls to limit such content. On its site, Pinterest is helping users recognize and steer clear of AI-generated slop. To help customers avoid seeing too many images while searching for related topics, the business is introducing new capabilities that will automatically classify images that are identified as being created or altered using generative AI. “As our users encounter AI-generated content on Pinterest, we are helping them make better choices about what they see,” said Chief Technology Officer Matt Madrigal. “We are consciously tackling this new terrain in a way that is advantageous to all users on Pinterest, and Gen AI content on Pinterest ought to improve users’ capacity to find and act on their inspiration.” Global rollout of Pinterest new Gen AI labelling feature should help shield users from fraud. When a pin is clicked on in close-up, the labels will show up as a “AI modified” stamp in the lower left-hand corner. Pinterest uses metadata analysis, most likely for invisible marks like Adobe’s Content Credentials or Google’s Synthid, to determine whether an image was created or altered using artificial intelligence. Additionally, Pinterest claims to have created “classifiers that automatically detect gen AI content,” even in cases where an image lacks metadata markers. Although detection-based AI flaggers are not always accurate, Pinterest is now enabling users to file an appeal if they think their pins have been incorrectly labelled. It would be an understatement to say I’m overjoyed. The dominance of AI photos on Pinterest has drawn a lot of criticism from users, who find it hard to use the mood board builder for anything useful other than putting together pictures for aesthetic reasons. For instance, it might be difficult for artists to locate reliable real-world reference materials, and, likely, the apparel, accessories, or furnishings items seen in pins aren’t available for purchase because they don’t exist. Even as a source of “inspiration,” that can be problematic because artificial intelligence (AI) can produce incredibly realistic-looking hairstyles and interior design concepts that may be impossible to accomplish in real life. Additionally, an experimental tool will be released “soon” that will let users filter out specific AI photos for categories like beauty and art that are “prone to AI modification or generation,” according to Pinterest. The three-dot menu located at the bottom right of a pin will have the option to “see fewer.” Although it’s unknown how much AI the feature will filter out, Pinterest claims that this will alert its systems to promote less of such content and will eventually spread to more pin categories. I can only hope that an “all of it” option will be added later.

Fake Emails IDs Defaming CSD and Armed Forces Trigger Cyber Probe in Mumbai

Mumbai Cyber Police have launched a probe after fake email IDS were used to defame CSD officials and the Indian Armed Forces with false corruption claims. A case has been registered under the IT Act and BNS following a complaint from a senior CSD official. Mumbai: A senior official from the Ministry of Defence’s Canteen Stores Department (CSD) has reported an anonymous person to the police for allegedly sending derogatory texts and creating fictitious email IDS against government officials and the Indian Armed Forces. The accused sent many emails under the alias of Sukesh Kumar Hegde between April 8, 2024, and April 16, 2025, according to a complaint submitted by Rahul Janeshwar Bhosale (39), Assistant General Manager (Legal & Vigilance) at CSD, Church Gate. These emails, which were sent from fictitious addresses and included unfounded accusations of Corrupt practice against senior CSD (Canteen Stores Department) personnel, included: corruption_whitepaper2025@pm.mecorruption_whitepaper2024@proton.meexpose_corruption2024@protonmail.comtarget_corruption2024@proton.me The slanderous emails were sent to official CSD accounts such as gm@csdindia.gov.in, jgm1@csdindia.gov.in, jgm2@csdindia.gov.in, and others. The emails reportedly contained confidential departmental information. Additionally, the sender made up an address at Sport View, Palam, New Delhi’s Ulan Batar Rao Tula Ram Marg, which is part of the Ministry of Defence complex. After confirmation, it was discovered that Sukesh Kumar Hegde was not working at the address. Bhosale claimed that by fabricating an identity and presenting false internal data and charges, these emails not only sought to deceive but also to damage the organization. The emails’ header information has been sent over to the cyber police for review. According to Section 66(C) of the IT Act and Section 319(2) of the Bharatiya Nyaya Sanhita (BNS), the South Region Cyber Police Station has responded to the complaint by bringing a case against an anonymous individual for impersonation, defamation, and disseminating false information via a phony email address. The person responsible for the phoney accounts is being tracked down through additional inquiry.

Tackling cyber frauds: Finance Ministry includes I4C under the Prevention of Money Laundering Act for information sharing

The Finance Ministry has empowered I4C to share information under the PMLA (Prevention of Money Laundering Act), enhancing coordination with the Enforcement Directorate to combat cyber fraud. This move aims to trace money trails and crack down on rising transnational cyber scams targeting citizens. According to the anti-money laundering law, the government has given the Indian Cyber Crime Coordination Centre (I4C) permission to communicate with the Enforcement Directorate and receive information to identify money trails and stop cyber scams. The Home Ministry created I4C to serve as the primary hub for reducing cybercrime in the nation. I4C seeks to strengthen collaboration between various law enforcement agencies and stakeholders to increase India’s overall ability to tackle cybercrime. In compliance with Section 66 of the Prevention of Money Laundering Act (PMLA), the Finance Ministry’s Revenue Department added I4C in a notification dated April 25. As a result, I4C was able to communicate with the Enforcement Directorate (ED) and other law enforcement organisations more easily. This information sharing would help identify the masterminds behind the international cyber frauds that target the general public and are becoming more and more common. Phishing websites, false social media identities, and sponsored search engine advertisements are all being used in these types of online scams. These con artists also send an OTP or a webpage link to a victim’s email or phone. The victim’s phone or computer is compromised when they share the OTP or click on the link. The government has requested that individuals use the National Cybercrime Reporting Portal at cybercrime.gov.in or call 1930 in the event of fraud to report such websites.

Rajasthan Education Department Website Hacked by Alleged ‘Pakistan Cyber Force

The Rajasthan Education Department’s website was hacked on April 29, 2025, displaying provocative messages allegedly from the “Pakistan Cyber Force.” Authorities have launched an investigation, while experts call for urgent cybersecurity reforms amid rising attacks on government digital assets. JAIPUR: On 29 April 2025, a cyberattack targeting the Rajasthan Education Department’s official webpage changed the homepage to show some divisive messages posing as the “Pakistan Cyber Force.” In one of the letters, the Pahalgam terror attack was described as an “inside job,” meaning it was orchestrated from within. Another person called the incident a “false flag by the Indian government, designed to incite conflict and religious division.” Additionally, the hackers made derogatory remarks on Himanshi Narwal, the late Lieutenant Vinay Narwal’s widow, whose picture sitting next to her husband’s body was recently widely shared on social media. Shortly after the breach was discovered, the department’s website was removed. In reaction to the cyberattack, Education Minister Madan Dilawar declared, “The Education Department’s IT wing has been activated.” The website has been taken down for the time being, and recovery work is moving quickly. We have also reported the incident to cybersecurity agencies. To determine the group behind the cyber attack and the degree of the damage, an enquiry has been started. “At this time, there is no proof that any private information has been disclosed. To guarantee the security and integrity of our data, a thorough audit of every system is being carried out,” he continued. Experts Demand Immediate Reforms in Cybersecurity The persistent exploitation of government digital assets has sparked concerns from cyber specialists. They estimate that fraudsters have taken over more than 20 lakh pages connected to state departments nationwide. It is estimated that more than 8 lakh of these pages—including some from the Home Department and district-level police units—have been hacked in Rajasthan alone. Experts emphasise the urgent need for strong digital security frameworks and improved monitoring to safeguard government web infrastructure in light of the growing sophistication and frequency of cyberattacks.

Kashmiri Engineering Student in Mumbai Duped of Rs 4.30 Lakh in Online Task Fraud

A 20-year-old Kashmiri engineering student in Mumbai was duped of Rs 4.30 lakh by cybercriminals through a “task fraud” scheme. The student filed a complaint with Matunga Police after being repeatedly asked for money under the guise of security deposits. April 23, Mumbai (PTI) According to city police on Wednesday, a 20-year-old engineering student from Jammu and Kashmir was defrauded of Rs 4.30 lakh by cybercriminals in a “task fraud.” According to an official, the student, who resides in the college dorm in Matunga, received a WhatsApp message from an unknown number introducing herself as “Pallavi Jha.” She gave the victim a “task,” informing him that he could submit online evaluations and make between Rs 2,000 and Rs 8,000 a day. According to the official, he was first paid for finishing the work after accepting the proposal and being connected to a Telegram channel. Later on, however, he was given more responsibility and requested to provide security, so he periodically deposited a total of Rs 4.30 lakhs.

Reddit Answers’ Debuts in India: AI Summaries and Smarter Searches Now Live

“Reddit Answers” in India, an AI-powered tool that offers users curated summaries, topic suggestions, and conversational responses. The platform aims to boost engagement by integrating AI into search and plans further expansion in India with a local office in Bengaluru. On April 24, 2025, Reddit Answers, a new AI service, was introduced in India. In addition to offering users curated summaries of pertinent comments and previous postings, the tool assists users in asking inquiries. Only a few users had access to the capability, which has been in testing since December 2024. The company’s homepage now features a new button that leads to the AI-powered search tool, which is now more widely accessible. Similar to how users might engage with Chatgpt, Perplexity, or other AI chatbots, clicking this button directs them to a page where they can pose inquiries to the AI. How Reddit Answers work Instead of directing users to Google to look for posts, the function aims to keep them on the platform. Reddit is setting Reddit Answers apart from other AI-based chatbots in this way. For instance, Reddit Answers’ conversational tool will provide a summary of the most recent Bollywood news in bullet points if a user queries the platform, “What is the latest Bollywood gossip?” Additionally, it will suggest related topics and subreddits on the same subject. Google’s AI Overview, which now shows up at the top of some Google search results, is quite similar to the structure of Reddit Answers. The social media site has been attempting to challenge conventional search engines by further integrating artificial intelligence into its search feature. Another instance would be if a person inquired, “I’m going to Kolkata.” Which locations offer the greatest authentic Bengali thali? The AI-powered feature highlights must-try dishes, summarises suggested locations, and gives links to original publications. Reddit Answers outperforms Google when it comes to complex topics with different points of view. One of the primary distinctions between the two search engines is this. For instance, when questioned, “What are the advantages and disadvantages of residing in Gurugram?” Reddit Answers presents viewpoints from both sides, highlighting five advantages and five disadvantages. Links to one or two pertinent Reddit posts on the subject are included with each point. Reddit and Google announced a partnership last month, aiming to use the Gemini tool to help users find answers quickly and enhance search relevance. Reddit has over 100,000 online communities and 400 million weekly active users. Reddit went public earlier last year. During an October earnings call, Reddit CEO Steve Huffman referred to search as “a key part of the strategy” for the firm, pointing out that an increasing percentage of users were relying on Google to find material on Reddit. By boosting platform traffic in recent months, Google has helped Reddit’s spectacular growth by attracting a significant number of new members. Since its inception in 2005, Reddit has offered its members free access to the network; however, it now intends to impose a paywall on certain material. Reddit is now looking to India for growth, even though the US is still one of its biggest markets. According to reports earlier this year, Reddit was considering hiring a local staff and opening an office in Bengaluru in order to reach a new audience of users.

Shaadi.com in Trouble: Hyderabad Police File Cyber Fraud Case Against Anupam Mittal’s Platform

The Hyderabad Cybercrime Police have filed a case against Shaadi.com after a woman was defrauded of ₹11 lakh through a fake profile on the platform. The incident has sparked concerns over the site’s lax verification processes and raised questions about digital intermediary accountability. A lady doctor was defrauded of Rs 11 lakh by a phoney profile on Shaadi.com, prompting Hyderabad’s Cybercrime Police to open a formal probe into the website. According to reports, J Vamshi Krishna, the accused, utilised a premium account to fabricate a phoney persona to entice the victim with promises of marriage. Without conducting any background checks or verification, Krishna took advantage of the platform’s services to directly access the victim. He persuaded the woman to send money by claiming financial hardship, and then he threatened her with private information. Officials characterised this as an instance of money abuse combined with strategic emotional blackmail. Shaadi.com Under Fire for Careless Verification and Profit Motive Krishna had committed similar crimes in at least 20 other cases in several states, according to investigations. Shaadi.com allegedly failed to authenticate papers or verify identification, allowing fraudsters to take advantage of unchecked vulnerabilities, even though it marketed its premium profiles as “verified.” The platform’s revenue-first strategy, which put subscriptions ahead of consumer safety, was condemned by sources in the cybercrime section. Concerns regarding intermediary accountability were raised when the suspect’s phoney profile was accepted and permitted to interact directly with users without the need for required safety procedures like ID verification. Policy Implications and Legal Repercussions for Digital Platforms Shaadi.com has been booked by the police under the Information Technology Act and pertinent Bharatiya Nyaya Sanhita (BNS) sections. The case is being looked into as a precedent for digital intermediary accountability under India’s developing cyber laws, in addition to being probed as a stand-alone fraud. The controversy surrounding India’s digital economy and the absence of regulations governing dating and marriage platforms has been reignited by this high-profile reservation. Cybersecurity experts contend that platforms should be held responsible for failures resulting from their lack of due diligence if they offer “verified” services.

Pahalgam Attack: The Urgent Need to Stop Spreading Fake and Harmful News on Social Media

The recent terror attack in Pahalgam, Jammu & Kashmir, has left the nation shocked and grieving. With 26 innocent lives lost and several others injured, the tragedy has once again exposed not only the dark realities of terrorism but also the dangerous role of misinformation in the digital age. While the authorities work tirelessly to investigate and maintain national security, a parallel crisis is unfolding online — the viral spread of fake news, communal hate, and unverified claims. This blog is a call to action: stop spreading negative, harmful, and unverified content online. Let’s understand how this digital behaviour fuels chaos, why we must act responsibly, and what steps are being taken by the Indian government to protect the nation in cyberspace. What Happened in Pahalgam? On April 22, 2025, a group of armed terrorists launched a brutal attack at a resort in Pahalgam, targeting innocent tourists. The terrorist group known as Kashmir Resistance, affiliated with the Resistance Front (TRF), claimed responsibility for the assault. Eyewitness accounts and preliminary investigations suggest that the attack was premeditated, highly organised, and intended to create maximum fear and disruption. While security forces have launched counter-operations and investigations, the digital response on social media has revealed another vulnerability: the mass circulation of misinformation. Social Media: A Double-Edged Sword Social media has immense power—it can inform, unite, and mobilise. But in the wrong hands, or with careless usage, it becomes a weapon of division and fear. Following the Pahalgam attack, we observed: Circulation of religiously biased narratives falsely suggesting targeted killings Sharing of gruesome images and videos without verification or consent Leaking of sensitive government or military movements Viral WhatsApp forwards and posts filled with baseless speculations and communal slurs Most of these were either completely unverified or deliberately misleading, and each share only made the situation worse. Why Sharing Unverified News Is Dangerous Here’s what happens when false information spreads unchecked: It fuels panic and fear: Citizens react emotionally, often irrationally, causing public unrest or fear-based decisions. It gives terrorists an advantage: When citizens unknowingly leak troop movement or response strategies, it arms terrorists with intelligence. It deepens communal divides: Terrorist attacks are strategic—if we respond with communal hatred, we’re playing into their hands. It obstructs official investigations: Authorities spend precious time countering rumours rather than focusing on security and justice. Think Before You Share: A Responsible Digital Code Before hitting “share” on any post related to national tragedies or security events, ask yourself: Is this content from a verified and trusted news source? Could this post trigger hatred or cause panic? Does this reveal sensitive or strategic information? Am I helping or hurting the situation by sharing this? If your answer is unsure about any of the above, don’t share. It’s that simple. What the Indian Government Is Doing to Combat Misinformation and Terror India has taken several cyber and tech initiatives to safeguard the country not just physically, but also digitally. Here are some major efforts: Indian Cyber Crime Coordination Centre (I4C): A pan-India infrastructure for dealing with cybercrime cases efficiently. It helps states and union territories in tracking and solving cases. National Cyber Coordination Centre (NCCC): Operates under the Ministry of Home Affairs to monitor internet traffic, detect cyber threats, and gather digital intelligence. CERT-In (Indian Computer Emergency Response Team): Acts as the first responder to any major cyber incident. It also runs Cyber Swachhta Kendra, which promotes safe internet habits among users. Public Awareness Campaigns: The government regularly collaborates with social media platforms to flag fake news, remove hate content, and promote verified information during crises. The Role of Technology: How Can Indian Tech Help? Here’s how Indian innovation and startups can contribute to a safer digital ecosystem: AI-powered Fact-checking Tools: Real-time detection of fake news and deepfakes Secure Messaging Platforms: End-to-end encrypted tools with flagging for harmful content Geo-fencing Alerts: Preventing the sharing of location-based military or sensitive operations Public Reporting Portals: Apps where citizens can report misleading posts or hate content instantly India’s tech sector is growing rapidly—now is the time to build ethical, responsible digital tools for our national safety. The Role of Citizens: You Are the First Line of Digital Defence You don’t need to be a cybersecurity expert to help the nation. You just need to be aware. Here’s how: Share information responsiblyCall out hate or false claims in your networkEducate others about fact-checkingSupport initiatives like Digital India, Cyber Swachhta Abhiyan, and media literacy programsReport suspicious posts to platforms and authorities National tragedies like the Pahalgam attack are heartbreaking—but they’re also moments of reckoning. They remind us of the values we must protect: unity, humanity, and truth. In the digital world, each one of us is a media outlet—and with that comes great responsibility. Let us pledge today to use the internet wisely. Let’s stop the chain of unverified, negative, and harmful news. Let’s amplify real stories, verified facts, and messages of unity. [Terrorism seeks to break us, confuse us, and divide us. By spreading fake news, we help them. By standing together with the truth, we defeat them.] [At The Cyber Share, we’re committed to promoting digital awareness, cyber hygiene, and responsible tech use. Join us in building a smarter, safer, and united digital India.]

High-Tech Hoax: Fraudster Steals ₹1.10 Cr by Using a WhatsApp Profile Picture

A fraudster impersonated a company chairman on WhatsApp using a fake profile picture and tricked a Chief Revenue Officer into transferring ₹1.10 crore. Authorities urge extra caution with financial requests over messaging apps and have launched an investigation under cybercrime laws. In a startling cyber fraud case, a con artist acting as the business’s chairman on WhatsApp scammed a 51-year-old Chief Revenue Officer (CRO) of a private company in Dharashiv out of over ₹1.10 crore. On April 15, a person posing as the company’s chairman sent the victim a WhatsApp message, according to police officials. The chairman’s photo was used as the profile picture, so even though the message was from an unknown number, the CRO thought it was authentic. Citing the new number as his updated contact, the sender requested that he save it. The impostor got in touch with the CRO once more two days later and asked about the balance of the company’s account. To further win his faith, the scammer pretended to be meeting with government representatives and urgently asked for ₹1.10 crore to be sent for a project-related expense. After receiving the bank account information, the CRO made the transfer since they thought it was a legitimate request. When the company’s accountant told the actual chairman about the transaction, the fraud was exposed. The chairman was shocked and explained that he had not asked for such a transfer. When the CRO discovered the fraud, he contacted the bank right away and then informed the police. Along with pertinent provisions of the Information Technology Act, such as Section 66C (identity theft) and Section 66D (cheating by personation utilising computer resources), a cheating case has been filed under Section 318 of the Bharatiya Nyaya Sanhita. To find the fraudster and retrieve the money that was sent, investigations are being conducted. The public and business professionals have once again been advised by authorities to handle financial transactions with extreme caution and to double-check requests, particularly those made over messaging platforms.

Microsoft discloses how AI techniques have increased the risk of tech support fraud, employment fraud, and e-commerce fraud

Microsoft’s latest Cyber Signals report reveals that AI is fueling sophisticated fraud schemes in e-commerce, job recruitment, and tech support by enabling realistic fake websites, job offers, and social engineering attacks. The company has blocked billions in fraud attempts and urges users to stay vigilant and verify sources. According to the latest Cyber Signals study from Microsoft, artificial intelligence has significantly lowered barriers for hackers, enabling more intricate and believable fraud schemes. Microsoft rejected 49,000 phoney partnership enrollments, halted $4 billion in fraud attempts, and stopped over 1.6 million bot signup attempts per hour between April 2024 and April 2025. E-commerce fraud: AI can quickly produce realistic-looking phoney stores Thanks to AI algorithms, scammers can now create believable e-commerce websites in a matter of minutes rather than days or weeks. With artificial intelligence (AI)-generated product descriptions, images, and phoney customer evaluations, these websites mimic actual businesses. Another degree of dishonesty is introduced by AI-powered chatbots for customer support, which engage with consumers and postpone complaints using prewritten justifications to postpone chargebacks. Microsoft claims that the primary origins of this AI-powered fraud are China and Germany, with the latter being singled out due to its status as one of the largest e-commerce markets in the EU. In order to combat these assaults, Microsoft has incorporated fraud detection features into a number of its products, including Microsoft Defender for Cloud and Microsoft Edge, which provide deep learning-based domain impersonation detection and typo protection for websites. Employment fraud includes phoney interviews and employment offers enabled by AI Generative AI has increased employment theft by allowing scammers to create phoney job postings, credentials that have been stolen, and AI-powered email campaigns that are directed at job searchers. These scams might appear authentic through automated correspondence and AI-powered interviews, making it more difficult to identify fraudulent offers. Warning signs include unsolicited job offers that seem too good to be true, requests for personal information, such as bank account details, and offers that make large compensation promises for minimal qualifications. Microsoft cautions job seekers to verify the credibility of employers by cross-referencing corporate information and to be wary of communications from free domains rather than official company email addresses. On official websites and platforms like LinkedIn. Tech support fraud: AI strengthens social engineering attacks Even if other tech support schemes do not yet use AI, Microsoft has witnessed financially motivated gangs like Storm-1811 use voice phishing to imitate IT support to gain victims’ devices through legitimate features like Windows Quick Assist. To produce more convincing social engineering lures, AI techniques can speed up the gathering and organisation of data on the intended victims.

Cyber update