By Ashwani Mishra, Editor-Technology, 63SATS
The cybersecurity landscape saw major disruptions this week. Ukrainian hacking group Cyber Alliance claimed responsibility for a cyberattack on Russian microfinance firm CarMoney, allegedly linked to President Putin’s ex-wife, causing massive data leaks. Maharashtra is reinforcing corporate cybersecurity by mandating annual audits, with fines for non-compliance.
Meanwhile, Dubai-based crypto exchange Bybit lost $1.4 billion in Ethereum due to a sophisticated breach. OpenAI cracked down on accounts misusing ChatGPT for AI-driven surveillance, reportedly tied to Chinese operations. In India, Haryana’s Pollution Board website was rendered inaccessible due to a suspected cyberattack, halting critical regulatory processes. These incidents highlight rising cyber threats across financial, regulatory, and technological sectors, urging stronger defenses against evolving cyber risks.
Ukrainian Hackers Claim Attack on Russian Loan Firm Tied to Putin’s Ex-Wife
Cyber Alliance, a pro-Ukraine hacking group, has claimed responsibility for a cyberattack on CarMoney, a Russian microfinance firm allegedly linked to President Putin’s former wife, Lyudmila Ocheretnaya. The attack shut down CarMoney’s systems, sending spam messages falsely announcing business closure and debt write-offs.
The company has not confirmed the attackers’ identity or the extent of the breach. Reports suggest CarMoney is controlled through offshore entities. Hackers claim they destroyed infrastructure and exfiltrated terabytes of data, marking another cyber flashpoint in the ongoing Russia-Ukraine conflict.
Maharashtra Cyber Cell Becomes Cyber Security Corporation
Maharashtra is upgrading its Cyber Cell into the Cyber Security Corporation, introducing mandatory annual cyber audits for companies. Businesses must undergo security assessments by government-approved firms, failing which they face a ₹25,000 daily fine.
This move aims to curb corporate cyber threats and protect sensitive data. The revamped Cyber Cell, headquartered in Mahape, seeks additional staff to handle increased responsibilities. Maharashtra recently launched a Cybercrime Investigation Capacity Centre in Navi Mumbai, bolstering cyber policing and regulatory oversight. The initiative is expected to set a national precedent in cybersecurity enforcement.
Bybit Exchange Hacked, $1.4 Billion in Ethereum Stolen
Dubai-based cryptocurrency exchange Bybit suffered a staggering $1.4 billion hack, marking one of the biggest crypto heists. Hackers exploited a security flaw when funds were transferred from an offline “cold” wallet to an online “warm” wallet. Bybit CEO Ben Zhou confirmed that attackers manipulated the transaction’s signing interface to alter the smart contract logic. Over 401,000 ETH were siphoned across 48 addresses.
While withdrawals remain operational, massive cash-outs have begun. The attack underscores the vulnerabilities of even major exchanges, raising concerns over digital asset security.
OpenAI Bans Accounts Using ChatGPT for AI-Driven Surveillance
OpenAI has banned multiple accounts using ChatGPT to develop an AI-powered surveillance tool, reportedly linked to China. The tool, named “Qianyue Overseas Public Opinion AI Assistant,” was designed to track and analyze anti-China protests across Western social media platforms, including X, Facebook, and Telegram.
Investigators revealed that ChatGPT was used to debug and modify source code for the monitoring system. OpenAI’s crackdown highlights growing concerns over AI misuse in state-backed influence campaigns and surveillance operations.
Haryana Pollution Board Website Suspected of Cyberattack, Operations Halted
According to Times of India the Haryana State Pollution Control Board (HSPCB) has suffered a major digital disruption, rendering its website inaccessible for four days. The cyberattack has halted key regulatory processes, including issuing environmental clearances, no-objection certificates (NOCs), and operational approvals. Authorities suspect hacking, though an official FIR is yet to be filed.
With 90% of its operations reliant on online services, the outage has caused delays for businesses and could push industries into non-compliance. The National Informatics Centre (NIC), which manages the platform, is investigating the breach.
