By Ashwani Mishra, Editor-Technology, 63SATS Cybertech
India has issued a critical alert for Microsoft users over severe vulnerabilities, while Cisco warns only 7% of Indian firms are cyber-ready. Russia has introduced a controversial law mandating foreigner tracking via mobile apps. Hackers are using AI-generated TikTok videos to spread malware, while attackers now exploit legitimate database tools for stealth breaches.
Meanwhile, Migos’ Instagram was hacked to leak sensitive data tied to Solana’s co-founder, underscoring the growing intersection of social media, crypto extortion, and high-profile cyberattacks.
India Issues Urgent Microsoft Cybersecurity Alert
The Indian government has raised a high-severity alert for Microsoft users, warning of critical vulnerabilities in Windows, Office, Azure, and related services. The flaws could enable remote code execution, privilege escalation, data theft, security bypass, spoofing, and denial-of-service attacks.
CERT-In has urged immediate action to prevent ransomware, data breaches, and major operational disruptions. Even non-Windows systems using Microsoft applications are at risk, highlighting the widespread impact of these security threats across industries.
Cisco: Only 7% of Indian Firms Cyber Ready
Cisco’s 2025 Cybersecurity Readiness Index reveals only 7% of Indian organizations have mature cybersecurity defenses, a slight rise from 4% last year. Despite growing awareness, firms struggle to keep pace with hyperconnectivity and emerging tech threats like AI. The risks now surpass mere data loss, threatening operational stability, brand reputation, and customer trust.
Cisco urges Indian companies to close the gap between cybersecurity awareness and preparedness before facing modern, sophisticated cyberattacks.
Russia to Track Foreigners with Mandatory Phone App
Russia has passed a controversial law mandating all foreign nationals in Moscow install a tracking app, collecting real-time location, fingerprints, facial scans, and residential data. State Duma chairman Vyacheslav Volodin claims the move will reduce migration-related crimes and violations.
The trial begins on September 1, 2025, and runs until September 2029. Foreigners must update the Ministry of Internal Affairs within three days if they change residence, marking a significant surveillance escalation.
Hackers Weaponize TikTok to Spread Stealer Malware
Trend Micro reports cybercriminals are using AI-generated TikTok videos to distribute malware, including Vidar and StealC. Disguised as pirated activations for Windows, Office, CapCut, and Spotify, these social engineering ploys lure users into executing malicious commands.
This campaign highlights how attackers exploit trending platforms to push malware, leveraging social media’s vast reach. Security experts warn users to avoid suspicious software hacks, as malware delivery tactics increasingly adapt to viral, platform-driven trends.
Attackers Exploit Database Tools in Stealthy Breaches
Cybersecurity experts warn of a surge in breaches where attackers use legitimate database tools like DBeaver, Navicat, and sqlcmd to query internal systems and extract sensitive data. Unlike malware attacks, these methods blend into normal operations, making detection difficult.
SecurityScorecard reports third-party breaches rose 6.5% in 2024, with 35.5% linked to vendor risks. Retail, technology, and energy sectors are top targets, while healthcare, though highly attacked, sees fewer third-party breaches but high direct hits.
Migos’ Instagram Hacked, Solana Exec Data Exposed
The official Instagram account of hip-hop group Migos was hacked, briefly leaking sensitive documents tied to Solana co-founder Raj Gokal and another individual. Hackers posted IDs, passports, and crypto ransom threats, demanding 40 bitcoin.
The account’s bio was altered to promote meme coin scams and Telegram links, amplifying the extortion. The posts stayed live for about 90 minutes before removal. The attack underscores rising threats targeting high-profile crypto figures through social media platforms.
