Zerodha co-founder and CEO Nithin Kamath recently experienced a hacking incident when he inadvertently clicked on a phishing email, leading to a temporary breach of his personal X account. Although the attackers managed to post scam cryptocurrency links during the brief lapse, Kamath’s implementation of two-factor authentication (2FA) successfully prevented them from fully taking over his account. This incident has sparked significant discussions regarding the increasing prevalence of phishing attacks, underlining the necessity for holistic …

A significant cybersecurity breach at F5, a U.S.-based cybersecurity company, has raised alarms as it has been linked to state-sponsored hackers, believed to be Chinese in origin. The breach, which reportedly lasted for at least 12 months, involved unauthorized access to F5’s systems, allowing attackers to exfiltrate sensitive files, including portions of the BIG-IP source code and information on undisclosed vulnerabilities. The U.S. Cybersecurity and Infrastructure Security Agency (CISA) issued an emergency directive warning that …

The Indian Navy recently hosted a significant seminar titled “Impact of Cyber Attacks on Maritime Sector and Its Effects on National Security and International Relations” at Sushma Swaraj Bhawan in New Delhi, aimed at enhancing awareness of cyber vulnerabilities within the maritime domain. Chief of Naval Staff Admiral Dinesh K. Tripathi underscored the urgent need for cybersecurity as India’s maritime sector evolves with digital technologies, emphasizing that every vessel, port, and operational asset has become …

Cybersecurity researchers have revealed a new campaign, dubbed Operation Zero Disco, which exploited a critical vulnerability (CVE-2025-20352) in Cisco IOS Software, enabling attackers to deploy Linux rootkits on older systems. This stack overflow flaw allowed remote code execution via crafted SNMP packets, targeting legacy devices like the Cisco 9400 and 9300 series. Notably, attackers utilized modified Telnet vulnerabilities for unauthorized access while employing spoofed identities to evade detection. Cisco patched the flaw recently, but the …

A recent report by PwC India and the Unified Fintech Forum highlights that India’s booming fintech sector, with over 10,200 companies and a projected market value of USD 400 billion by 2030, faces escalating cybersecurity threats. As digital payments and innovations proliferate, vulnerabilities have also surged due to reduced cybersecurity budgets and a skills shortage. Experts emphasize the critical need for robust cybersecurity measures, including Zero Trust Architecture and AI-driven threat detection, to ensure customer …

A national conference on cybersecurity will take place at Maharanis Arts College for Women in Mysuru on October 17, organized in collaboration with the National Institute of Engineering (NIE) and sponsored by the Indian Council of Social Science Research. Titled “Social Awareness on Cybersecurity and Phishing Attacks: Challenges and Preventive Strategies,” the event aims to address critical issues such as data breaches and online fraud, emphasizing the importance of community awareness and ethical responsibilities in …

The Indian Computer Emergency Response Team (CERT-In) has issued a warning regarding high-risk security vulnerabilities in older versions of Google Chrome and Microsoft Edge browsers, which could allow hackers to gain unauthorized access to users’ systems. Specifically, flaws related to “Use after free” in Safe Browsing and Heap buffer overflow in Sync can enable attackers to execute arbitrary code and conduct denial-of-service (DoS) attacks. CERT-In has urged users to update their browsers to the latest …

A new advanced persistent threat (APT) group, dubbed Mysterious Elephant, has emerged as a significant threat targeting government and diplomatic entities across the Asia-Pacific region. Identified by Kaspersky’s Global Research and Analysis Team in 2023, the group has evolved its tactics, utilizing sophisticated spear-phishing schemes and custom malware, including a PowerShell loader known as BabShell. This loader enables it to execute complex attacks while minimizing forensic traces. The group’s adept use of open-source code and …

India’s long-awaited National Cybersecurity Strategy (NCS) is back in progress, with consultations across ministries and industry stakeholders, as announced by Narendranath Gangavarapu, Joint Secretary at the National Security Council Secretariat (NSCS). The strategy aims to unify efforts in safeguarding India’s digital infrastructure and improve its ranking in the International Telecommunication Union’s cybersecurity index. Gangavarapu highlighted that despite the absence of a formal strategy, the NSCS has been proactive in addressing cyber threats, particularly during recent …

In response to escalating cyber threats, Vodafone Idea Limited has successfully implemented a nearly fully autonomous Security Operations Center (SOC), utilizing AI-driven systems that enhance real-time threat detection and response while mitigating the shortage of skilled cybersecurity professionals. The integration of machine learning and behavioral analytics allows these autonomous SOCs to predict potential breaches and prioritize genuine risks, marking a shift from reactive to proactive cybersecurity defenses. Experts highlight the necessity for data quality and …

Reddit co-founder Alexis Ohanian has raised concerns about the future of the internet, suggesting it is increasingly dominated by bots and AI-generated content, leading to a decline in genuine human interaction. He highlighted findings from cybersecurity researchers indicating that over half of internet traffic may originate from bots, which he believes creates a landscape where authentic engagement is compromised. Ohanian advocates for the establishment of “verifiably human” online spaces, emphasizing the need for platforms that …