Google has released an emergency security update to address a high-severity zero-day vulnerability, CVE-2025-13223, in its Chrome browser, marking the seventh such flaw exploited in attacks this year. The vulnerability, linked to a type confusion weakness in Chrome’s V8 JavaScript engine, has been actively exploited, prompting Google’s Threat Analysis Group to alert users, especially high-risk individuals. The patch is now available for Windows, Mac, and Linux systems, though users will receive it automatically in the coming weeks. This incident underscores the ongoing challenges of cybersecur…
Read More

The Indian Computer Emergency Response Team (CERT-In) has issued a high-severity security alert for a range of Apple devices, including iPhones, iPads, Macs, and Apple Watches, following the discovery of multiple critical vulnerabilities. These flaws could potentially allow hackers to gain control of devices or access sensitive information, posing significant risks to users. CERT-In has urged all Apple users to immediately update their devices with the latest software patches to mitigate these risks, which include updates for iOS, iPadOS, macOS, watchOS, tvOS, and Safari. The advisory emphasiz…
Read More

At the World Telecommunication Development Conference (WTDC-25) in Baku, Union Minister of State for Communications Pemmasani Chandra Shekhar emphasized India’s leadership in digital inclusion and secure connectivity, advocating for global digital solidarity. He highlighted India’s impressive digital transformation, showcasing initiatives like the $4.8 billion 4G connectivity program and the world’s fastest rollout of 5G technology, which now reaches 99% of districts. Chandra Shekhar underscored the importance of cybersecurity, pointing to platforms that have successfully blocked millions of f…
Read More

A significant data breach involving the Chinese security firm Knownsec has exposed over 12,000 secret files, revealing the firm’s role in developing government-backed hacking tools and conducting extensive cyber espionage against over 20 nations, including India. The leak, which surfaced on GitHub, discloses the theft of sensitive data, including 95 GB of Indian immigration records and various telecommunications logs from South Korea and Taiwan. Despite the Chinese government’s denial of involvement, this incident underscores the alarming intertwining of private companies and state-sponsored…
Read More

India has successfully thwarted 6.6 million fraudulent transactions and disconnected over 30 million fraudulent connections, as reported by Minister of State for Communications Chandra Sekhar Pemmasani at the International Telecommunication Union’s World Telecommunication Development Conference 2025. The government has introduced a financial fraud risk classification system and launched the Sanchar Sathi portal, enhancing cybersecurity frameworks and data protection. As part of its digital transformation, India boasts over 1.2 billion telecom subscribers and has achieved the world’s largest an…
Read More

The Telecom Regulatory Authority of India (TRAI) has reiterated its push for a consent-based data sharing framework among telecom operators to facilitate mobile number portability (MNP). This call comes in response to the Department of Telecommunications’ (DoT) concerns regarding existing MNP regulations, which Trai argues can be reconciled with evolving legal standards, including the Telecommunications Act, 2023. Trai’s 2022 recommendations for a consent-driven system that allows secure sharing of KYC data align with government initiatives to enhance data privacy and user empowerment. The ong…
Read More

The Indian government has enacted stringent regulations to combat IMEI fraud, mandating the registration of mobile device identifiers. This initiative empowers authorities to direct mobile manufacturers to assist in addressing issues related to tampered devices that display altered IMEI numbers. By enforcing these measures, the government aims to enhance the security and integrity of mobile communications in India, safeguarding consumers from illicit activities and strengthening the overall telecommunication framework. The move is significant as it reflects the government’s commitment to curbi…
Read More

India’s Computer Emergency Response Team (CERT-In) has issued a high-severity advisory for Google Chrome users due to a critical remote code execution vulnerability affecting older desktop versions of the browser. This flaw, identified in Chrome versions prior to 142.0.7444.162/163 on various operating systems, allows attackers to execute arbitrary code remotely, posing risks of system compromise and data integrity loss. CERT-In has urged all users to promptly update their browsers to the latest version to mitigate exposure. The advisory highlights the urgency for organizations and individual…
Read More

The Karnataka government has launched the Digital Nagarik programme in government schools to enhance cybersecurity awareness among students, targeting around 1 lakh teachers and 10 lakh students from classes 6 to 10. In collaboration with the Union Ministry of Education and Meta, the initiative aims to educate children on safe internet use, cyber safety rules, and data privacy following a successful pilot in select districts. With the increase in children’s online activity post-pandemic, the initiative addresses rising issues like digital bullying and phishing. The program includes teacher tra…
Read More

Israel’s Banking Supervision Department conducted a nationwide cybersecurity drill to assess the resilience of its financial system against major cyberattacks. The exercise, involving all supervised banking entities and key government bodies, simulated a range of escalating cyber incidents, including the potential use of artificial intelligence by attackers. Officials stressed that while total prevention of cyber risks is unattainable, proactive measures and effective response strategies are crucial for maintaining the stability of the banking system. This drill underscores the growing imperat…
Read More

Anthropic has claimed that its AI chatbot, Claude, was exploited by a Chinese state-sponsored hacker group to conduct a significant cyber espionage campaign, marking what it describes as the first large-scale cyberattack executed by AI. The report suggests that the AI carried out 80-90% of the operation autonomously, achieving an unprecedented attack speed that human hackers could not match. However, Meta’s Chief AI Scientist, Yann Lecun, criticized the study as dubious, arguing that it seeks to instill fear and promote regulatory control over open-source AI models. This controversy underscore…
Read More

The Indian Computer Emergency Response Team (CERT-In) has issued a high-severity alert regarding a critical vulnerability, CVE-2025-60724, affecting various Microsoft products, including Windows OS, Microsoft Office, Azure, and SQL Server. This flaw allows cybercriminals to exploit a buffer overflow in the Microsoft Graphics Component, potentially enabling unauthorized access to sensitive user data and facilitating ransomware attacks. Users of multiple Windows versions, including Windows 10 and 11, are urged to update their systems immediately as Microsoft has released a patch to address this…
Read More

AI company Anthropic has reported a sophisticated AI-led cyber espionage campaign allegedly conducted by a Chinese state-sponsored group, which manipulated its Claude Code tool to infiltrate around thirty global targets, including major tech firms, financial institutions, and government agencies. The attack, significant for its high autonomy—performing 80-90% of tasks without human intervention—was detected in mid-September and involved an unprecedented attack speed of thousands of requests per second. While the attack was not flawless due to AI inaccuracies, it underscores the rising thre…
Read More

The emergence of AI-driven phishing attacks, termed “Deepphish,” has raised significant concerns among cybersecurity experts, as attackers now utilize sophisticated algorithms to create convincing fraudulent emails. By gathering personal information from social networks and online forums, these AI tools generate realistic sender addresses and tailored content, enhancing their effectiveness significantly. The alarming success rates of these attacks, which can exceed 36%, indicate a troubling evolution in cybercrime where traditional antivirus measures struggle to keep pace. This development und…
Read More

India’s Computer Emergency Response Team (CERT-In) has issued a high-severity advisory regarding significant vulnerabilities affecting a range of Apple devices, including iPhones, iPads, and various macOS versions. The flaws, linked to critical components like the Kernel and WebKit, pose serious risks such as data theft, privilege escalation, and potential full system compromises. CERT-In emphasizes the urgency for users and organizations to update their devices to the latest software versions to mitigate these risks and recommends enabling automatic updates and installing apps only from trust…
Read More

India has issued successive NOTAMs warning of GPS interference or signal loss over critical airspaces in Delhi, Mumbai, and most recently Kolkata, from November 6 through 17, 2025. These alerts follow disruptions in aviation navigation caused by advanced GPS spoofing and jamming, prompting the Directorate General of Civil Aviation (DGCA) to mandate real-time reporting of anomalies within 10 minutes. The incidents, under investigation by the National Security Advisor’s office and the Indian Air Force, signify a marked escalation in electromagnetic warfare against India, reflecting coordinated…
Read More

The Indian government has announced the Digital Personal Data Protection Rules 2025, set for phased implementation over 12-18 months, aimed at enhancing citizen control over personal data and privacy. These rules, which follow the recognition of the Right to Privacy as a fundamental right by the Supreme Court in 2017, will establish a Data Protection Board empowered to impose penalties for data breaches while incorporating a graded penalty system to safeguard small businesses. Key provisions include mechanisms for individuals to report unauthorized data usage and protections against spam calls…
Read More

The Madhya Pradesh government and the Indian Army’s Military College of Telecommunication Engineering (MCTE) have signed a landmark Memorandum of Understanding for joint research and development in cybersecurity and artificial intelligence, marking the first such collaboration between the Army and a state government. This initiative is part of a broader effort to bolster technological investment in the region, with seven MoUs signed to attract approximately Rs 800 crore and create over 10,500 jobs in sectors including silicon wafer manufacturing and IT park development. Additionally, new initi…
Read More

An Indian Air Force C-130J Super Hercules, registration KC-3810, was observed on November 13, 2025, veering extremely close to Karachi, Pakistan, before changing course southeast over the Arabian Sea, according to flight tracking data from online ADS-B platforms like Flightradar24. The flight path, noted by multiple users tracking the aircraft, showed it departing near Pakistan’s airspace vicinity but not entering it. The unusual proximity near Karachi has sparked discussions and speculation among aviation enthusiasts and analysts. This flight activity was confirmed through real-time data and…
Read More

TechD Cybersecurity Ltd has partnered with Kaushalya The Skill University to launch the Techdefence Labs Skill Development Institute in Ahmedabad, focusing on developing a skilled cybersecurity workforce in India. This initiative aims to empower over 10,000 students and professionals over the next two years through government-recognised certification programs covering critical areas such as Vulnerability Assessment, Cyber Security Governance, and Cloud Security. The first batch is set to commence in November 2025, with a hybrid learning model to increase accessibility. This collaboration marks…
Read More

India’s proposed regulations on AI-generated content, aimed at addressing issues such as deepfakes, face criticism from major tech groups including the Data Security Council of India and the Information Technology Industry Council. These stakeholders argue that the amendments are overly broad, potentially burdening legitimate businesses while failing to effectively mitigate the risks posed by malicious actors. Concerns were raised regarding compliance costs, ambiguous definitions of synthetically generated information, and the impracticality of enforcing visible disclaimers. Industry advocates…
Read More

Apple has launched a new Digital ID feature for its Wallet application, enabling users to securely present identification using information from their U.S. passport. Initially accepted at TSA checkpoints in over 250 U.S. airports, this service offers a convenient alternative for those without REAL ID-compliant documents. To create a Digital ID, users must complete a verification process, which includes scanning their passport and performing facial recognition. The data is encrypted and stored on the user’s device, with Apple emphasizing user privacy and security. Future use cases will allow in…
Read More

Base Repair Depot Najafgarh in New Delhi hosted the Electronic Warfare (EW) Conference ‘Spectrum’ focused on ‘Leveraging Technology for Universal Modular Scalable Architecture for EW Systems.’ Inaugurated by Air Marshal Vijay Kumar Garg, Air Officer Commanding-in-Chief of Maintenance Command, the conference underscored the necessity of Open System Architecture for enhancing the upgradability of EW systems while reducing costs and delivery timelines. The Air Marshal emphasized the importance of collaborative efforts among stakeholders, including academia, Defence Public Sector Undertakings (DPS…
Read More

Australia’s top intelligence official, Mike Burgess, has expressed serious concerns over cyber probes by Chinese state-backed hackers targeting the country’s critical infrastructure, including telecommunications, water, energy, and transport systems. Speaking at a business conference in Melbourne, he highlighted that these cyber activities are part of a broader trend of potential sabotage and espionage, estimating a cost of A$12.5 billion in lost trade secrets last year alone. Burgess identified two Chinese-linked cyber groups, Salt Typhoon and Volt Typhoon, as responsible for these incursions…
Read More

Jamia Millia Islamia (JMI) has received a Rs 14.8 crore grant from the Ministry of Minority Affairs to establish advanced research facilities in Electric Vehicles (EV) and Cybersecurity. The EV Research Lab, with a budget of Rs 9.05 crore, will focus on creating a world-class facility and a functional EV charging station, while the Rs 5.75 crore Cybersecurity Lab aims to develop a skilled workforce in line with the National Cybersecurity Strategy. These initiatives are designed to foster indigenous talent and innovation in two key sectors, aligning with national priorities for self-reliance in…
Read More