Tag: india

Nasscom Calls for Vigilance as Firms Brace for Impact from West Asia Conflict

Mar 10, 2026 7:47 AM

Tags: advisory, business, cybersecurity, framework, india, technology

As tensions linked to the ongoing West Asia conflict continue to shape the geopolitical environment, India’s technology industry body NASSCOM has urged member companies to remain alert and strengthen operational preparedness. The NASSCOM advisory highlights the need for heightened vigilance across business continuity and cybersecurity frameworks amid developments in the Middle East. First seen on…
Transparent Tribe’s ‘Vibeware’ Move Points to AI-Made Malware at Scale

Mar 9, 2026 7:47 AM

Tags: ai, attack, cyber, government, group, india, malware, tool

Transparent Tribe (APT36) is moving from traditional, off”‘the”‘shelf tools to an AI-assisted malware model researchers now call “vibeware,” signaling how large language models are starting to industrialize mediocre but relentless attacks at scale.”‹ In its latest campaigns against Indian government bodies, embassies and regional targets, the group has shifted to an AI-driven development pipeline that…
Transparent Tribe Uses AI to Mass-Produce Malware Implants in Campaign Targeting India

Mar 6, 2026 4:48 PM

Tags: ai, group, hacking, india, intelligence, malware, programming, service, threat, tool

The Pakistan-aligned threat actor known as Transparent Tribe has become the latest hacking group to embrace artificial intelligence (AI)-powered coding tools to strike targets with various implants.The activity is designed to produce a “high-volume, mediocre mass of implants” that are developed using lesser-known programming languages like Nim, Zig, and Crystal and rely on trusted services…
Pakistan-Linked APT36 Floods Indian Govt Networks With AI-Made ‘Vibeware’

Mar 5, 2026 10:47 PM

Tags: ai, cloud, google, government, group, india, network, service

Bitdefender research reveals Pakistani group APT36 is using AI-generated vibeware and trusted cloud services like Google Sheets to target Indian officials. First seen on hackread.com Jump to article: hackread.com/pakistan-apt36-indian-govt-networks-ai-vibeware/
Stealth and Deception: Transparent Tribe’s Multi-Stage Assault on Indian Government Entities

Mar 5, 2026 1:47 AM

Tags: government, india

The post Stealth and Deception: Transparent Tribe’s Multi-Stage Assault on Indian Government Entities appeared first on Daily CyberSecurity. First seen on securityonline.info Jump to article: securityonline.info/stealth-and-deception-transparent-tribes-multi-stage-assault-on-indian-government-entities/
Indian APT ‘Sloppy Lemming’ Targets Defense, Critical Infrastructure

Mar 4, 2026 2:46 PM

Tags: apt, cloud, cyber, defense, india, infrastructure, rust, threat, tool

India-nexus cyber threat actors are growing more active and sophisticated, using custom tools coded in Rust and cloud-based command and control. First seen on darkreading.com Jump to article: www.darkreading.com/threat-intelligence/india-apt-sloppy-lemming-defense-critical-infrastructure
SloppyLemming Espionage Campaign Targets Pakistan, Bangladesh with BurrowShell Backdoor and Rust RAT

Mar 3, 2026 3:47 PM

Tags: access, backdoor, cyber, data-breach, espionage, group, india, rat, rust, tool

SloppyLemming, an India-linked espionage group also known as Outrider Tiger and Fishing Elephant, has run a year-long cyber campaign against high”‘value targets in Pakistan and Bangladesh using a new BurrowShell backdoor and a Rust-based remote access tool (RAT). This activity builds directly on earlier operations exposed by Cloudflare’s CloudForce One in 2024. However, it shows…
Alleged India-linked espionage campaign targeted Pakistan, Bangladesh, Sri Lanka

Mar 2, 2026 5:47 PM

Tags: cybersecurity, espionage, government, india, infrastructure

An espionage campaign last year targeted government agencies and critical infrastructure operators in Pakistan, Bangladesh and Sri Lanka, the cybersecurity firm Arctic Wolf said. First seen on therecord.media Jump to article: therecord.media/india-pakistan-cyber-campaign-apt
India disrupts access to popular developer platform Supabase with blocking order

Feb 28, 2026 5:36 AM

Tags: access, government, india

India, one of Supabase’s biggest markets, is seeing patchy access after a government block order. First seen on techcrunch.com Jump to article: techcrunch.com/2026/02/27/india-disrupts-access-to-popular-developer-platform-supabase-with-blocking-order/
India’s Largest Pharmacy Exposes Customer Personal Data and Internal System Access

Feb 17, 2026 1:58 PM

Tags: access, api, breach, country, cyber, data, data-breach, india, infrastructure, unauthorized, vulnerability

A major security vulnerability was recently discovered in the online infrastructure of Dava India, one of the country’s largest generic pharmacy retail chains. The breach, identified by security researcher Eaton, exposed sensitive customer personal data and granted unauthorized access to internal management systems through insecure super administrator APIs. The vulnerability stemmed from an exposed API…
A security flaw at DavaIndia Pharmacy allowed attackers to access customers’ data and more

Feb 16, 2026 8:58 PM

Tags: access, control, data, data-breach, flaw, healthcare, india

A security flaw at DavaIndia Pharmacy exposed customer data and gave outsiders full admin control of its systems. DavaIndia is a large Indian pharmacy retail chain focused on selling affordable generic medicines. Operated by Zota Health Care Ltd., the brand promotes low-cost alternatives to branded drugs to make healthcare more accessible across India. DavaIndia runs…
Indian pharmacy chain giant exposed customer data and internal systems

Feb 14, 2026 5:58 AM

Tags: data, data-breach, flaw, india

A backend flaw in web admin dashboards used by one of India’s largest pharmacy chains, exposed thousands of online pharmacy orders. First seen on techcrunch.com Jump to article: techcrunch.com/2026/02/13/indias-major-pharmacy-chain-exposed-customer-data-and-internal-systems/
India’s E-Rupee Leads the Secure Adoption of CBDCs

Feb 13, 2026 4:58 PM

Tags: awareness, encryption, finance, india

Futurex’s Ruchin Kumar on CBDC Adoption and HSM Security for Transactions. CBDCs are expanding, with 90% of central banks exploring them. India’s e-rupee pilot shows strong adoption, backed by RBI standards and HSM-secure transactions. Ruchin Kumar, VP for South Asia at Futurex, underscores awareness, interoperability and encryption as keys to CBDC success and PQC readiness.…
India’s E-Rupee Leads the Secure Adoption of CBDCs

Feb 13, 2026 4:58 PM

Tags: awareness, encryption, finance, india

Futurex’s Ruchin Kumar on CBDC Adoption and HSM Security for Transactions. CBDCs are expanding, with 90% of central banks exploring them. India’s e-rupee pilot shows strong adoption, backed by RBI standards and HSM-secure transactions. Ruchin Kumar, VP for South Asia at Futurex, underscores awareness, interoperability and encryption as keys to CBDC success and PQC readiness.…
India Brings AI-Generated Content Under Formal Regulation with IT Rules Amendment

Feb 12, 2026 10:58 AM

Tags: ai, framework, government, india, regulation, technology

The Central Government has formally brought AI-generated content within India’s regulatory framework for the first time. Through notification G.S.R. 120(E), issued by the Ministry of Electronics and Information Technology (MeitY) and signed by Joint Secretary Ajit Kumar, amendments were introduced to the Information Technology (Intermediary Guidelines and Digital Media Ethics Code) Rules, 2021. The revised…
Second ever international AI safety report published

Feb 10, 2026 6:26 PM

Tags: ai, india, intelligence, international, risk

More than 100 artificial intelligence experts have produced the second international AI safety report ahead of a summit in India, outlining a high degree of uncertainty about the development and risks of AI First seen on computerweekly.com Jump to article: www.computerweekly.com/news/366638957/Second-ever-international-AI-safety-report-published
India makes Aadhaar more ubiquitous, but critics say security and privacy concerns remain

Feb 10, 2026 5:13 AM

Tags: breach, data, india, privacy

India’s Aadhaar is moving into wallets, hotels and policing through a new app. Critics say that amid the broader Aadhaar rollout, it’s unclear how data shared through the new app would prevent breaches or leaks. First seen on techcrunch.com Jump to article: techcrunch.com/2026/02/09/india-makes-aadhaar-more-ubiquitous-but-critics-say-privacy-concerns-remain/
Transparent Tribe Hacker Group Targets India’s Startup Ecosystem in Cyber Attack

Feb 6, 2026 3:14 PM

Tags: attack, cyber, defense, government, group, hacker, india, startup, tactics, threat

A worrying shift in the tactics of >>Transparent Tribe,<< a notorious threat group also known as APT36. Historically focused on Indian government, defense, and educational sectors, the group has now expanded its scope to target India's growing startup ecosystem. This new campaign uses sophisticated lures themed around real startup founders to infect victims with the…
RenEngine Loader Deploys Stealthy Multi-Stage Execution to Bypass Security Measures

Feb 6, 2026 11:13 AM

Tags: cyber, india, malicious, malware

The malware family, RenEngine Loader, after discovering malicious logic embedded within what appears to be a legitimate Ren’Py-based game launcher. Active since April 2025, the operation has already compromised over 400,000 victims globally, with a localized focus on India, the United States, and Brazil. The campaign currently infects approximately 5,000 new machines daily by hiding malicious…
Cyberattackers Use Fake RTO Challan Alerts to Spread Android Malware

Feb 5, 2026 3:14 PM

Tags: android, cyber, data, government, india, infrastructure, malware, office, service, social-engineering, tactics

Indian users’ trust in government services through a sophisticated Android malware campaign that impersonates Regional Transport Office (RTO) challan notifications. This campaign represents an evolution from previous RTO-themed malware, featuring advanced anti-analysis techniques, a modular three-stage architecture, and a structured backend infrastructure for data collection and remote operations. The malware spreads through social engineering tactics,…
SECURITY AFFAIRS MALWARE NEWSLETTER ROUND 82

Feb 2, 2026 1:13 PM

Tags: ai, android, botnet, china, espionage, india, international, malware, powershell, rat

Security Affairs Malware newsletter includes a collection of the best articles and research on malware in the international landscape Malware Newsletter KONNI Adopts AI to Generate PowerShell Backdoors Who Operates the Badbox 2.0 Botnet? Weaponized in China, Deployed in India: The SyncFuture Espionage Targeted Campaign Android Trojan Campaign Uses Hugging Face Hosting for RAT Payload…
eScan Antivirus Update Servers Compromised to Deliver Multi-Stage Malware

Feb 2, 2026 8:14 AM

Tags: antivirus, cybersecurity, india, infrastructure, malware, update

The update infrastructure for eScan antivirus, a security solution developed by Indian cybersecurity company MicroWorld Technologies, has been compromised by unknown attackers to deliver a persistent downloader to enterprise and consumer systems.”Malicious updates were distributed through eScan’s legitimate update infrastructure, resulting in the deployment of multi-stage malware to enterprise First seen on thehackernews.com Jump to…
eScan AV users targeted with malicious updates

Jan 30, 2026 1:21 AM

Tags: antivirus, cybersecurity, india, infrastructure, malicious, update

The update infrastructure for eScan antivirus, a product of Indian cybersecurity company MicroWorld Technologies, has been compromised by unknown attackers to deliver a … First seen on helpnetsecurity.com Jump to article: www.helpnetsecurity.com/2026/01/29/escan-antivirus-update-supply-chain-compromised/
eScan AV supply chain compromise: Users targeted with malicious updates

Jan 29, 2026 4:26 PM

Tags: antivirus, cybersecurity, india, infrastructure, malicious, supply-chain, update

The update infrastructure for eScan antivirus, a product of Indian cybersecurity company MicroWorld Technologies, has been compromised by unknown attackers to deliver a … First seen on helpnetsecurity.com Jump to article: www.helpnetsecurity.com/2026/01/29/escan-antivirus-update-supply-chain-compromised/
Spies in the Spreadsheet: >>Sheet Attack<< Uses Google Sheets AI to Target India

Jan 29, 2026 5:21 AM

Tags: ai, google, india

The post Spies in the Spreadsheet: >>Sheet Attack<< Uses Google Sheets AI to Target India appeared first on Daily CyberSecurity. First seen on securityonline.info Jump to article: securityonline.info/spies-in-the-spreadsheet-sheet-attack-uses-google-sheets-ai-to-target-india/
>>Gopher Strike<<: New Pakistan-Linked Cyber Campaigns Target Indian Government

Jan 28, 2026 5:21 AM

Tags: cyber, government, india

The post >>Gopher Strike<<: New Pakistan-Linked Cyber Campaigns Target Indian Government appeared first on Daily CyberSecurity. First seen on securityonline.info Jump to article: securityonline.info/gopher-strike-new-pakistan-linked-cyber-campaigns-target-indian-government/
Experts Detect Pakistan-Linked Cyber Campaigns Aimed at Indian Government Entities

Jan 27, 2026 7:21 PM

Tags: attack, cyber, government, india, threat

Indian government entities have been targeted in two campaigns undertaken by a threat actor that operates in Pakistan using previously undocumented tradecraft.The campaigns have been codenamed Gopher Strike and Sheet Attack by Zscaler ThreatLabz, which identified them in September 2025.”While these campaigns share some similarities with the Pakistan-linked Advanced Persistent Threat (APT) First seen on…
APT Attacks Target Indian Government Using SHEETCREEP, FIREPOWER, and MAILCREEP – Part 2

Jan 27, 2026 6:24 PM

Tags: access, ai, api, apt, attack, backdoor, backup, cloud, control, credentials, data, dns, email, exploit, github, google, government, group, india, infection, infrastructure, Internet, linux, malicious, malware, microsoft, monitoring, network, phishing, powershell, programming, service, tactics, threat, tool, update, windows

This is Part 2 of our two-part technical analysis on the Gopher Strike and Sheet Attack campaigns. For details on the Gopher Strike campaign, go to Part 1.IntroductionIn September 2025, Zscaler ThreatLabz uncovered three additional backdoors, SHEETCREEP, FIREPOWER, and MAILCREEP, used to power the Sheet Attack campaign. In Part 2 of this series, ThreatLabz will…
Meta Faces Legal Action Over Claims of Accessing All WhatsApp User Messages

Jan 27, 2026 4:21 PM

Tags: access, cyber, encryption, india

A class-action lawsuit filed in San Francisco federal court accuses Meta Platforms of systematically misleading billions of WhatsApp users about the protection of their messages. The complaint alleges that despite marketing claims of unbreakable end-to-end encryption, Meta secretly stores, analyzes, and grants employee access to chat contents through internal tools. Plaintiffs from Australia, Brazil, India,…
APT Attacks Target Indian Government Using GOGITTER, GITSHELLPAD, and GOSHELL – Part 1

Jan 26, 2026 9:21 PM

Tags: access, adobe, ai, antivirus, api, apt, attack, authentication, backdoor, backup, cloud, control, data, data-breach, detection, email, endpoint, github, google, government, group, india, infection, infrastructure, injection, Internet, malicious, malware, microsoft, network, phishing, service, spear-phishing, threat, tool, update, windows

IntroductionIn September 2025, Zscaler ThreatLabz identified two campaigns, tracked as Gopher Strike and Sheet Attack, by a threat actor that operates in Pakistan and primarily targets entities in the Indian government. In both campaigns, ThreatLabz identified previously undocumented tools, techniques, and procedures (TTPs). While these campaigns share some similarities with the Pakistan-linked Advanced Persistent Threat (APT) group, APT36, we…