By Editorial Desk, 63SATS
India Increases Cybersecurity Budget to ₹1,900 Crore
The Indian government has boosted its cybersecurity budget to ₹1,900 crore, up from ₹1,600 crore in 2024, strengthening defenses against cyber threats. Key allocations include ₹782 crore for cybersecurity projects, ₹255 crore for CERT-In, and ₹900 crore for interdisciplinary cyber-physical security initiatives. However, funding for women and children’s cybersecurity programs dropped to ₹44.39 crore.
Globe Life Data Breach Expands to 850,000 Customers
Insurance giant Globe Life confirmed that a June 2024 cyberattack affected 850,000 customers, far exceeding the initial estimate of 5,000. Hackers infiltrated databases linked to independent agencies, exposing sensitive personal data. The breach highlights persistent vulnerabilities in financial and insurance sectors, with experts urging enhanced security measures.
India Leads Global Surge in DeepSeek AI Downloads
China’s DeepSeek AI chatbot, launched in January 2025, has become the most downloaded app in 140 countries, with 16 million downloads in 18 days. India leads with 15.6% of total installs, raising data privacy concerns. Government agencies worldwide have started restricting access due to potential cybersecurity risks.
CISA Warns of Backdoor in Medical Devices
The U.S. Cybersecurity and Infrastructure Security Agency (CISA) flagged security flaws in Contec CMS8000 patient monitors. A hidden backdoor was discovered, transmitting patient data to unauthorized locations. The China-based medical device manufacturer is under scrutiny, as hospitals are urged to disconnect affected devices and strengthen security protocols.
Fake Wedding Invitations Spreading Android Malware
Hackers in Malaysia and Brunei are using fake wedding invites on WhatsApp and Telegram to distribute the Tria Android malware. The malicious app steals banking details, SMS messages, and call logs. Cybercriminals then use Telegram bots to process stolen data, raising concerns about social engineering scams.
Data Breach at Connecticut Health Center Affects 1 Million Patients
A cyberattack on Community Health Center (CHC) compromised the data of 1,060,936 patients. Hackers infiltrated the network in October 2024, but the breach was detected only in January 2025. The attack raises concerns about healthcare cybersecurity, prompting CHC to bolster its security infrastructure.
Russian Hackers Allegedly Breached UK PM’s Email
A new book claims Russian cyber operatives hacked UK PM Keir Starmer’s email before he took office in 2022. The attack, part of a Kremlin-backed campaign, forced Starmer to change accounts and enable two-factor authentication. British security agencies warn of increasing state-sponsored cyber threats.
Casio UK Online Store Hacked, Credit Cards Stolen
Hackers compromised Casio UK’s Magento-based online store, embedding malicious scripts that stole customer credit card details between January 14-24, 2025. Cybersecurity firm JSCrambler detected the breach, and Casio removed the malware within 24 hours. Affected users are urged to monitor transactions for fraudulent activity.
High-Profile X Accounts Hijacked in Phishing Attacks
Hackers are hijacking influential X (formerly Twitter) accounts, targeting politicians, journalists, and crypto firms. Phishing tactics include fake login alerts and copyright violation notices. Once compromised, accounts are used for scams. Google AMP is reportedly being leveraged to bypass security filters, escalating the threat.
Brazilian Malware ‘Coyote’ Expands to 73 Banks
The Coyote banking malware, first detected in 2024, now targets 1,030 websites and 73 financial institutions. Researchers found that Coyote deploys keyloggers and phishing overlays to steal credentials. The malware spreads via Windows Shortcut (LNK) files and remains a growing risk to South American financial security.
Ransomware Surge: 75 Active Groups Now Target Businesses
Ransomware groups increased from 43 to 75 in 2024, despite law enforcement crackdowns on gangs like LockBit. Over 50% of affected organizations had to shut down operations, causing severe financial losses. With ransomware more profitable than ever, experts warn of escalating cyber extortion threats in 2025.
NHS Cyberattack Worsens Cancer Care Delays
Hospitals in Wirral, UK, are still struggling after a November 2024 cyberattack crippled their clinical systems. Cancer treatments were delayed, violating NHS standards that mandate care within 62 days of diagnosis. The attack highlights the vulnerability of healthcare infrastructure to cyber threats.
Ransomware Hits Record High in 2024: NCC Group Reports
Cyberattacks surged in 2024, with 5,263 ransomware incidents, a record high. Critical National Infrastructure (CNI) was hit hardest, with North America suffering 55% of attacks. LockBit and RansomHub led the pack, while industrial ransomware attacks rose by 15%. Cyber defenses remain a top priority for 2025.
Hackers Bypass EDR Using Standard User Privileges
A new technique allows attackers to bypass Endpoint Detection and Response (EDR) tools without admin privileges. Path obfuscation and process masquerading disguise malware as legitimate applications. Security experts warn that behavioral analytics and real-time monitoring are crucial to countering these threats.
Abandoned Cloud Storage Buckets Pose Major Risks
A watchTowr report revealed that 150 abandoned AWS S3 buckets are still receiving millions of HTTP requests, exposing sensitive data. Unsecured cloud assets create opportunities for data hijacking and cyberattacks. Organizations must audit and secure cloud storage to prevent exploitation.
Grubhub Data Breach Linked to Third-Party Hack
A third-party security breach at Grubhub exposed customer data, including partial payment details and hashed passwords. The company revoked access for the compromised provider but has not disclosed how many users were affected. The incident raises concerns about supply chain security in digital platforms.
ValleyRAT Targets Finance & Accounting Departments
A surge in ValleyRAT cyberattacks is hitting finance and accounting teams, using fake software downloads and phishing domains. The malware, linked to Silver Fox APT, is disguised as a Chrome browser update. Security experts advise stronger endpoint defenses and employee awareness training.
Mississippi Utility Breach Exposes 20,000 Residents’ Data
A cyberattack on Yazoo Valley Electric Power Association compromised the data of 20,000 residents across six Mississippi counties. Initially reported as an outage, it was later confirmed as a breach. Victims are offered identity protection, highlighting the growing cyber risks for critical infrastructure.
