Global Cyber Pulse – 20 January 2025

January 20, 2025 | Cybersecurity
By Ashwani Mishra, Editor-Technology, 63SATS

Major developments define the global cyber landscape. India launched NBM 2.0 to connect rural areas with high-speed broadband, complemented by the Sanchar Saathi app to secure telecom services.

The U.S. debuted its FALCON cyber-response tool during a Costa Rican ransomware attack, showcasing swift international cybersecurity collaboration. Otelier suffered a breach, exposing data from major hotel brands, highlighting credential security issues.

Russia’s Star Blizzard group shifted tactics to target WhatsApp accounts amid heightened scrutiny. In the U.K., ransomware forced a Cheshire school closure, disrupting education. Meanwhile, TikTok went dark in the U.S. due to a federal ban citing national security concerns.

India Boosts Digital Access with NBM 2.0 and Sanchar Saathi App

The Department of Telecommunications (DoT) launched the National Broadband Mission 2.0 (NBM 2.0) and the Sanchar Saathi app on January 17, 2025. NBM 2.0 aims to connect 1.7 lakh villages, ensuring 60% rural broadband penetration with speeds of at least 100 Mbps.

The Sanchar Saathi app helps users secure telecom resources, report fraudulent calls, manage mobile connections, and block stolen devices. These initiatives aim to bridge India’s digital divide and enhance user security.

U.S. Cyber Tool FALCON Debuts in Costa Rica Ransomware Response

A ransomware attack on Costa Rica’s largest oil refinery tested the U.S. State Department’s rapid cyber-response tool, FALCON.

Within 36 hours, the tool mobilized private-sector expertise to counter the threat. Ambassador Nate Fick emphasized FALCON’s capability to provide swift incident support and strengthen global cybersecurity norms. This marks a milestone in U.S. efforts to aid allies in critical cyber emergencies.

Otelier Data Breach Exposes Millions of Guest Records

Hotel management platform Otelier suffered a breach, exposing 8 TB of guest data from brands like Marriott, Hilton, and Hyatt.

Threat actors gained access via stolen employee credentials infected with malware, maintaining access from July to October 2024. Otelier confirmed the breach and is working with affected clients. This incident highlights growing risks from credential theft and poor cloud security practices.

Russia’s Star Blizzard Shifts to Targeting WhatsApp

The Russian-linked Star Blizzard group has added WhatsApp account targeting to its arsenal. Known for spear-phishing campaigns, the group previously targeted journalists and NGOs supporting Ukraine.

Analysts believe exposure of their tactics forced this shift. Microsoft and CISA issued warnings about the group’s new approach, urging heightened vigilance among potential victims.

Ransomware Forces Cheshire School Closure

According to BBC, Blacon High School in Cheshire temporarily closed after a ransomware attack disrupted its systems. Cybersecurity experts are investigating the breach, and teachers are shifting lessons online via Google Classroom.

Head teacher Rachel Hudson assured parents the school will reopen once systems are secure. The attack underscores vulnerabilities in educational institutions.

TikTok Goes Dark in U.S. Amid Federal Ban

TikTok has gone offline in the U.S. following a federal ban effective January 19, 2025. Existing users lost access, and new downloads are blocked.

The U.S. Supreme Court upheld a law requiring ByteDance to sell TikTok or face restrictions over national security concerns. ByteDance pledged to restore services, while other apps like CapCut and Lemon8 also went dark.