By Ashwani Mishra, Editor-Technology, 63SATS
Cybersecurity threats are intensifying, with weak passwords, AI-driven cyberattacks, and targeted breaches posing serious risks. A study reveals millions still use easily hackable passwords, fueling identity theft. Insight Partners suffered a cyberattack via social engineering, while Chinese hacker group Mustang Panda exploits Microsoft tools to bypass security.
India’s digital transformation is accelerating, but cybersecurity preparedness lags. Goa launched a Cyber Helpline and AI-ML Lab to combat rising cybercrime. Meanwhile, AI is being weaponized for sophisticated scams, deepfakes, and ransomware. Experts urge organizations to bolster defenses as cyber threats evolve in complexity and scale.
Weak Passwords Still a Major Cyber Risk
A new cybersecurity study reveals that millions still use easily guessable passwords, exposing themselves to data breaches and cyberattacks. Conducted by KnownHost, the study found that common passwords like “123456” and “password” have appeared in millions of breaches, making them prime targets for hackers.
Experts warn that weak credentials increase risks of identity theft and financial fraud. The report lists the top 10 most leaked passwords and urges users to adopt stronger security practices, such as password managers and multi-factor authentication, to safeguard their online presence.
Insight Partners Suffers Cyberattack
Venture capital giant Insight Partners has confirmed a cyberattack following a sophisticated social engineering breach in January. Managing over $90 billion in assets, the firm stated that attackers infiltrated its systems on January 16.
Upon discovery, Insight Partners immediately engaged law enforcement and cybersecurity experts. While no operational disruptions were reported, the company advised stakeholders to strengthen security protocols. The breach underscores the growing threat of targeted attacks on financial firms. Further details on the extent of data exposure remain undisclosed as investigations continue.
Chinese Hackers Exploit Microsoft Tools to Evade Security
Nation-state hacking group Mustang Panda is leveraging Microsoft tools to bypass security defenses, particularly ESET antivirus software. According to Trend Micro, the group uses Microsoft Application Virtualization Injector (MAVInject.exe) to deploy malware undetected.
By injecting malicious payloads into Windows utilities, they evade detection and maintain persistence in compromised systems. Mustang Panda, known for targeting Asia-Pacific governments, relies on phishing for initial access. With over 200 confirmed victims since 2022, experts warn of increased espionage risks and urge organizations to bolster cybersecurity defenses.
Goa Launches Cyber Helpline and AI-ML Lab
Goa Chief Minister Pramod Sawant inaugurated a Cyber Helpline (1930) and an AI-ML Lab to enhance cybercrime response. The state also launched QuickPass, a mobile app to streamline traffic checks, and Cyber Yodha, a community-driven cybersecurity awareness initiative.
Goa Police reported a significant rise in cyber fraud, with losses exceeding ₹101 crore in 2024. Authorities aim to reduce cybercrime by 30-40% through proactive measures. Sawant emphasized the need for vigilance and lauded Goa’s leadership in cyber safety, calling the initiatives a model for other states.
India Leads in Digital Transformation but Lags in Cybersecurity
A Zoho Workplace study highlights that India’s workplace digital transformation is advancing faster than developed nations, with a maturity score of 64.6%, surpassing the global average of 62.3%.
However, cybersecurity preparedness remains a concern. The report, based on a global survey of 5,000 employees, emphasizes the need for enterprises and government institutions to strengthen security frameworks. Experts urge leadership to address cyber risks while enhancing collaboration and productivity. With AI-driven analytics and automation becoming mainstream, organizations must prioritize security in digital transformation strategies.
AI-Powered Cyber Threats on the Rise in 2025
Cybercriminals are set to exploit AI for more advanced cyberattacks, warns Trend Micro’s 2025 cybersecurity forecast. AI-driven phishing, deepfake scams, and automated ransomware will become more prevalent, making traditional security measures less effective.
Experts predict AI will also be used to target AI-powered systems themselves, leading to data theft and AI-enabled DDoS attacks. Trend Micro urges businesses to closely monitor AI deployments and implement robust security frameworks to counter evolving threats. As AI-driven attacks scale, organizations must stay ahead with proactive defenses.
