Vulnerabilities Expose Private Data in Indian Government Systems
One critical vulnerability, among many discovered by a researcher, could have allowed anyone to walk in and take over a national government portal.
The India tag covers cybersecurity incidents, policy, privacy, public services, advisories, and developments with regional relevance.
Search across headline titles and summaries.
Background for this topic.
India covers cybersecurity and information-security developments connected to India, including incidents, policy, privacy, advisories, research, and news affecting organizations, public services, and digital systems in the area.
For practitioners, the tag provides geographic context for developments involving India's organizations, services, partners, and users. Individual articles provide the specific technologies, threats, sectors, and operational implications relevant to each development.
Weekly headline count for the current query.
One critical vulnerability, among many discovered by a researcher, could have allowed anyone to walk in and take over a national government portal.
More than 1,600 socially engineered messages from the China-backed advanced persistent threat (APT) group target various sectors to deliver the previously undocumented ABCDoor backdoor, ValleyRAT, and other malware.
China is spying on India's financial sector, for some reason, and it's not putting much effort into it, judging by some stale TTPs.
The suspected India-linked threat group targets governments, telecom, and critical infrastructure using spear-phishing, old vulnerabilities, and rapidly rotating infrastructure to maintain persistent access.
India-nexus cyber threat actors are growing more active and sophisticated, using custom tools coded in Rust and cloud-based command and control.
Remember when Apple put that U2 album in everyone's music libraries? India wanted to do that to all of its citizens, but with a cybersecurity app. It wasn't a good idea.
The threat actors trick victims into opening a malicious script, leading to the execution of the BroaderAspect .NET loader.
The company acknowledged that cybercriminals had taken sensitive information on more than 8 million users, including names, phone numbers, car registration numbers, addresses, and emails.
Business and security executives in the South Asian nation worry over AI, cybersecurity, new digital privacy regulations, and a talent gap that hobbles innovation.
The region offers attractive conditions: a large pool of tech workers, economic disparity, and weak enforcement of cybercrime laws — all of which attract businesses legitimate and shady.
A recent spear-phishing campaign against countries in South Asia aligns with broader political tensions in the region.
While hacktivists claimed more than 100 successful attacks against Indian government, education, and military targets, the attacks were overblown in most cases and often did not even happen.
Cybercriminals are flocking to take part in the newly inflamed fight between India and Pakistan.
An Indian disaster-relief flight delivering aid is the latest air-traffic incident, as attacks increase in the Middle East and Myanmar and along the India-Pakistan border.
Global politics and a growing economy draw the wrong kind of attention to India, with denial-of-service and application attacks both on the rise.
The likely India-based threat group is also targeting logistics companies in a continued expansion of its activities.
Estonia and Monaco back up their citizens' information to a data center in Luxembourg, while Singapore looks to India as its safe haven for data. But geopolitical challenges remain.
More than half of attacks on Indian businesses come from outside the country, while 45% of those targeting consumers come from Cambodia, Myanmar, and Laos.
Cheap banking scams are often easier to pull off in a country with older devices, fewer regulations, and experienced fraudsters.
The advanced persistent threat (APT) group is likely India-based and targeting individuals with connections to the country's intelligence community.