Global Cyber Pulse: 22 January 2025

Cyber Attack
January 22, 2025 | Cybersecurity
By Ashwani Mishra, Editor-Technology, 63SATS

The cybersecurity landscape continues to evolve with alarming developments globally. South India topped malware detections in 2024, accounting for over 36% of national cases, highlighting the need for stronger cyber defenses in tech hubs. Russian telecom giant Rostelecom investigated a contractor breach linked to leaked customer data. Sophos flagged ransomware groups employing deceptive tactics like fake IT calls to deploy malware.

Hackers exploited Google Ads to spread malware targeting macOS and Linux users. CERT-UA warned of phishing attacks via fake AnyDesk requests. Meanwhile, Uttar Pradesh fortified cybersecurity for Mahakumbh 2025, showcasing robust measures against cyber fraud in mega events.

South India Leads Malware Detections in 2024: Seqrite-DSCI Report

South India has recorded the highest concentration of malware detections nationwide in 2024, as per Seqrite-DSCI’s India Cyber Threat Report 2025. Cities in Telangana, Tamil Nadu, and Karnataka collectively accounted for 36.37% of India’s 369.01 million malware detections.

Telangana alone registered 55.90 detections per endpoint, while Bengaluru and Hyderabad contributed 23.48% of the national tally. The report emphasizes the urgent need for enhanced cybersecurity in tech-intensive regions to counter the rising risks. Seqrite continues to empower businesses with advanced solutions to mitigate threats and safeguard critical digital infrastructure.

Rostelecom Probes Cyberattack on Contractor

Russian telecom giant Rostelecom is investigating a suspected cyberattack after hackers leaked customer emails and phone numbers. The breach targeted the corporate website and procurement portal managed by a contractor.

Rostelecom assured the public that sensitive data remains secure but advised users to reset passwords and enable two-factor authentication. This incident underscores the vulnerabilities of third-party service providers and the importance of adopting stringent cybersecurity protocols to prevent data breaches.

Ransomware Groups Deploy New Tactics to Breach Systems

Sophos has identified two ransomware campaigns, STAC5143 and STAC5777, targeting corporate victims. Attackers use spam emails, followed by fake IT Teams calls, to convince employees to install remote access tools like Quick Assist, enabling malware deployment.

STAC5777 has ties to the Black Basta ransomware group, while STAC5143 shows potential links to FIN7. Organizations must enhance employee training, implement advanced endpoint protections, and strengthen protocols to counter such sophisticated attacks.

Hackers Exploit Google Ads to Target macOS and Linux Users

Cybercriminals are abusing Google Ads to promote a fake Homebrew website, distributing AmosStealer malware designed for macOS and Linux. This malware steals credentials, browser data, and cryptocurrency wallets.

Cybersecurity researchers have linked AmosStealer to subscription-based malware campaigns priced at $1,000/month. Homebrew users are advised to download software exclusively from official sources to avoid infection.

CERT-UA Alerts on Fake AnyDesk Requests

CERT-UA has warned against phishing attempts impersonating the agency to gain remote access via AnyDesk. The attackers claim to conduct “security audits” but require pre-installed AnyDesk software and the victim’s identifier.

CERT-UA clarified that legitimate remote access requests are always pre-approved through official channels. Organizations must verify requests and maintain vigilance to avoid falling victim to these schemes.

Uttar Pradesh Strengthens Cybersecurity for Digital Mahakumbh 2025

The Uttar Pradesh government has partnered with IIT-Kanpur, IIIT-Allahabad, and cybersecurity startups to secure Mahakumbh 2025 against potential cyber fraud. Initiatives include hack-proofing websites, safeguarding digital devices, and deploying trained personnel.

IIT-Kanpur’s Start-up Incubation Centre has collaborated with cutting-edge startups to ensure seamless and secure digital operations for the mega event, showcasing India’s commitment to advanced cybersecurity measures.