Global Cyber Pulse: 31 January, 2025

January 31, 2025 | Cybersecurity
By Ashwani Mishra, Editor-Technology, 63SATS

A surge in cyberattacks is disrupting key sectors worldwide, from healthcare and education to AI and enterprise technology.

Tata Technologies suffered a ransomware attack, prompting an internal investigation, while New York Blood Center Enterprises faced disruptions due to a similar incident. State-backed hackers from China, Iran, North Korea, and Russia are leveraging AI tools like Google’s Gemini to enhance cyber operations.

DeepSeek’s rapid rise has exposed security flaws, drawing scrutiny from researchers and cybercriminals. Meanwhile, the University of Notre Dame is investigating a cyber breach, and the FDA has warned of cybersecurity vulnerabilities in medical monitoring devices.

Tata Technologies Hit by Ransomware, Services Restored

Tata Technologies suffered a ransomware attack, temporarily disrupting its IT services. While operations have now resumed, the company has launched a full-scale investigation with cybersecurity experts to determine the cause and implement corrective measures.

Client services remained unaffected throughout the incident. Tata Technologies reaffirmed its commitment to data security and is taking proactive steps to mitigate future risks. As a leading provider of outsourced engineering and digital transformation solutions, the company remains a key player in India’s ER&D sector. This attack underscores the growing cyber threats against major enterprises and the urgent need for robust cybersecurity strategies.

State-Sponsored Hackers Exploit AI for Cyber Operations

Over 57 cyber threat actors linked to China, Iran, North Korea, and Russia are leveraging AI-powered tools like Google’s Gemini to enhance their cyber and disinformation campaigns. According to Google’s Threat Intelligence Group (GTIG), these groups are using AI for research, coding, vulnerability analysis, and phishing campaigns. Iranian hacking group APT42, responsible for over 30% of Gemini usage among Iranian attackers, has been actively crafting phishing schemes and conducting reconnaissance.

While AI has yet to introduce new hacking techniques, its integration into cyber warfare raises concerns about more sophisticated, AI-assisted attacks. Governments and enterprises must adapt defenses against AI-enabled threats.

Ransomware Attack Disrupts New York Blood Center Services

New York Blood Center Enterprises (NYBCe) is grappling with a ransomware attack that has severely impacted its operations, including blood donation services across the U.S. The attack, detected on January 26, forced NYBCe to take certain systems offline to contain the threat. Third-party cybersecurity experts are assisting in restoring operations, though no timeline has been provided. Law enforcement has been notified, but the identity of the attackers remains unknown.

As NYBCe serves over 75 million people and supplies blood to 70 hospitals, the disruption underscores the critical need for enhanced cybersecurity in healthcare and nonprofit sectors.

DeepSeek Faces Security Scrutiny Amid AI Boom

DeepSeek’s rapid rise in the AI space has been met with growing security concerns, as researchers and cybercriminals alike have rushed to exploit potential vulnerabilities. Within hours of its surge in popularity, reports emerged of jailbreaking attempts, misinformation, and security flaws in the AI model.

Cybersecurity firm Cyble detected a spike in phishing scams targeting DeepSeek users, further complicating its expansion. Adding to these issues, Wiz Research uncovered an exposed database, raising concerns about data privacy. Experts warn that AI platforms must integrate security measures alongside rapid development to prevent exploitation and maintain trust in their systems.

University of Notre Dame Investigates Cyberattack

The University of Notre Dame is investigating a cyberattack targeting its IT infrastructure. Officials confirmed the breach and assured the community that securing systems is a top priority. The university has reported the incident to the Australian Cyber Security Centre and relevant authorities, working closely with them to contain the impact.

This attack comes as the education sector faces an increasing wave of cyber threats globally. Universities, often prime targets for data breaches and ransomware, must strengthen defenses against evolving threats. Notre Dame has pledged to keep staff, students, and stakeholders informed as investigations progress.

FDA Flags Cybersecurity Risks in Medical Monitors

The U.S. Food and Drug Administration (FDA) has identified cybersecurity vulnerabilities in patient monitors manufactured by Contec and Epsimed, warning that unauthorized individuals could manipulate these devices. Used in hospitals and home healthcare settings, the monitors track critical vitals such as temperature, heartbeat, and blood pressure.

The FDA urged healthcare providers to take immediate action to mitigate these risks and prevent potential patient safety incidents. As medical devices become increasingly connected, cybersecurity experts emphasize the need for stronger security protocols to safeguard healthcare infrastructure against cyber threats and unauthorized access.