By 63SATS News Desk
Governments and institutions worldwide faced heightened cyber threats this week. India launched cybercrime task forces and blocked 7.8 lakh SIMs to curb digital fraud, while Malaysia’s airport was hit with a $10M ransomware demand. Austria exposed a Russian info-war, and the UK flagged rising teen cyber gangs.
Oracle and Baidu battled data breach claims, while NYU suffered a massive student data leak. Ukraine’s railway, a target of complex cyberattacks, halted online bookings. New threats emerged from ransomware groups like VanHelsingRaaS and Medusa, as Atlantis AIO fueled credential stuffing. Meanwhile, India mandated faster takedowns of explicit content and trained elite cyber commandos.
India Sets Up Cybercrime Hotspot Task Forces
India has formed seven cyber coordination teams targeting hotspots like Jamtara and Mewat to tackle rising cybercrime. The Indian Cybercrime Coordination Centre has blocked 7.8 lakh SIMs, 2 lakh IMEIs, and thousands of fraudulent Skype and WhatsApp accounts. The initiative enhances inter-agency collaboration for faster, more efficient crackdowns on digital fraud networks across states.
Austria Uncovers Russian-Led Info War
Austria exposed a covert Russian disinformation operation aimed at defaming Ukraine. The campaign was uncovered during a probe involving a Bulgarian woman who admitted to working with Russian intelligence. Authorities discovered fake narratives targeting German-speaking countries. Despite the evidence, a court released the suspect. The incident underscores persistent Russian efforts to manipulate public opinion in Europe.
UK Warns of Teenage Cyber Gangs Called ‘Com Networks’
The UK’s National Crime Agency has raised concerns over “Com networks”—online groups of teenage boys engaging in sadistic cybercrimes. These groups share misogynistic content, coerce minors into self-harm, and commit fraud and violence. Cases surged six-fold since 2022. The NCA warns of this growing domestic threat powered by youth-driven, tech-enabled digital subcultures.
Oracle Data Breach Claims Spark Concern
Despite Oracle denying a breach of its cloud systems, multiple companies confirmed the validity of leaked login credentials allegedly stolen by a hacker. The attacker claims access to 6 million Oracle Cloud users, with samples including LDAP data and enterprise domains. This raises alarms over cloud security and the need for stronger enterprise breach response mechanisms.
IRDAI Directs Insurers to Empanel Cyber Forensic Auditors
India’s insurance regulator IRDAI has mandated pre-empanelment of forensic auditors to streamline cyber incident investigations. Citing rising data breaches, IRDAI emphasized quick root cause analysis for business continuity. The directive aligns with 2023 cyber preparedness guidelines, ensuring insurers respond promptly with pre-approved forensic support when cyberattacks strike.
India Blocks 7.8 Lakh SIMs, 2 Lakh IMEIs Tied to Digital Fraud
India has blocked over 7.81 lakh SIM cards and 2.08 lakh IMEIs linked to cyber fraud. The Indian Cybercrime Coordination Centre also disabled thousands of Skype and WhatsApp accounts used for “digital arrest” scams. The crackdown reflects an aggressive nationwide effort to disrupt telecom-enabled cybercrime networks exploiting mobile infrastructure for large-scale fraud.
Malaysia Airport Hit by Cyberattack, $10M Ransom Demanded
Malaysia Airports Holdings faced a cyberattack, halting operations and triggering a $10 million ransom demand. Prime Minister Anwar Ibrahim confirmed the incident and vowed no compliance. The breach raises serious concerns over cybersecurity readiness across Southeast Asia’s critical infrastructure as the government pledges enhanced investments in national digital defense.
Chinese Hackers Spent 4 Years Inside Asian Telecom Network
Chinese state-linked group Weaver Ant infiltrated an Asian telecom firm for four years, using stealth tools to evade detection. The hackers exploited a misconfigured application for persistent espionage. Sygnia’s investigation highlights how sophisticated, long-term cyber intrusions now target telecom infrastructure across Asia, raising the stakes for proactive cybersecurity measures.
Hacker Leaks Data of Over 1 Million NYU Students
A hacker defaced NYU’s website and leaked personal data of over 1 million students and applicants. Records include names, emails, GPAs, and sensitive information from as early as 1989. Experts say improper redactions exposed identities. The breach raises concerns over data security in academic institutions. NYU’s investigation is ongoing.
Atlantis AIO Tool Fuels Credential Stuffing Surge
The Atlantis AIO tool is enabling large-scale credential stuffing attacks across 140+ platforms. Cybercriminals use it to automate login attempts with stolen credentials, targeting password reuse. The resulting breaches cause financial and reputational harm. Experts recommend strong, unique passwords and multi-factor authentication to mitigate rising automated attack risks.
Abracadabra Finance Loses $13M in Crypto Exploit
Abracadabra Finance suffered a $13 million crypto theft via its “cauldrons” lending pools. Despite past audits, attackers exploited the platform in a series of coordinated transactions. The company is investigating with cybersecurity partners. The breach highlights vulnerabilities in DeFi systems and the urgent need for robust threat monitoring tools.
Cyber Commandos Graduate from IIIT Training Program
Thirty cyber commandos from state police forces have completed advanced training at IIIT Kottayam. The six-month course covered digital forensics, penetration testing, and cyber defense. Spearheaded by I4C, the initiative aims to strengthen India’s cybersecurity readiness. These elite commandos will soon be deployed, forming a frontline defense against growing digital threats.
Data Leak at Baidu Sparks Privacy Concerns
Baidu faces scrutiny after the teenage daughter of a senior executive allegedly leaked private user data online during a dispute. The company denied internal system compromise, attributing the breach to doxing databases. The incident has intensified public concern over internal data access policies at China’s top cloud services provider.
Cyberattack Cripples Ukraine’s Railway Ticketing System
Ukraine’s national railway, Ukrzaliznytsia, suffered a major cyberattack, disrupting online ticket sales. The company called the attack “systematic and complex” and advised passengers to buy tickets at stations. Ukrainian cyber agencies, including SBU and CERT-UA, are investigating. The incident highlights persistent threats to critical infrastructure amid ongoing geopolitical tensions in Eastern Europe.
VanHelsingRaaS Emerges as a Rising Ransomware Threat
VanHelsingRaaS, a new ransomware-as-a-service operation, has compromised three organizations in two weeks, with ransom demands up to $500,000. Affiliates receive 80% of the ransom, making it attractive for cybercriminals. Supporting multiple platforms, it avoids targets in CIS countries. Its swift rise reflects the growing sophistication and scale of organized cybercrime syndicates worldwide.
India Enforces 24-Hour Rule for Explicit Content Removal
India has tightened cyber laws, mandating digital platforms to remove explicit content within 24 hours or risk losing legal immunity. New IT Rules require services to trace message originators in serious crimes like child exploitation. Union Minister Ashwini Vaishnaw says the move boosts online safety and strengthens India’s cybercrime response mechanisms.
Medusa Ransomware Exploits Fake CrowdStrike Driver
Medusa ransomware is using a revoked driver signed by a Chinese vendor to bypass endpoint security, impersonating CrowdStrike’s CSAgent.sys. The attack, known as BYOVD (Bring Your Own Vulnerable Driver), was discovered by Elastic Security Labs. Over a dozen variants, signed with stolen certificates, have surfaced, revealing a sophisticated evasion strategy targeting major organizations.
