The Apple team was scheduled to meet Indian cyber security watchdog CERT-In by the end of November. (REUTERS) News 

Meity official states that Apple officials hold meeting with CERT-In regarding warning notification issue.

On Thursday, a senior government official stated that a team from Apple’s cyber security department has held a meeting with watchdog CERT-In to address the matter of warning notifications being sent to certain opposition leaders. Last month, several opposition leaders claimed to have received a warning from Apple about “state-sponsored attackers attempting to remotely compromise” their iPhones and alleged government hacking. Minister for Electronics and Information Technology (Meity) Rajeev Chandrasekhar had said that Apple will have to respond to the announcement made by their global cyber security team. The Apple…

Read More
A doctor based in Mumbai ordered a Rs 300 lipstick from an e-commerce website, but it never arrived. What happened next caused her to lose Rs 1 lakh. News 

Mumbai Doctor Loses Rs 1 Lakh in Online Lipstick Scam

A Mumbai-based woman found herself out of Rs 100,000 when she fell victim to a courier delivery scam after ordering lipstick online. Yes, as strange as it sounds, the way this scam works is quite simple. Scammers will contact you, pretending to be delivery agents, and usually present the problem that delivery is not possible, or ask victims for a small cancellation fee, such as 2 or 5 rupees for a package they never ordered. When victims send them money through a malicious link sent by scammers, they suffer huge…

Read More
A Bengaluru man lost Rs 1.52 crore to a courier scam after fake police officers accused him of sending illegal items in a parcel and money laundering. News 

Dangerous Delivery: Drugs in Your Package!

A pensioner living in Bengaluru, Karnataka recently experienced a huge loss of Rs 1.52 crore after falling victim to a courier scam. In this scam, fraudsters posing as police officials or NCRB agents contact individuals and falsely accuse them of illegal activities related to sending and receiving packages containing “illegal substances”. The prevalence of this scam has increased since the beginning of the year, and is becoming more common recently. According to the Indian Express, the victim, Debashish Das, 66, received a call on November 10 from a person claiming…

Read More
The potential fallout of business-halting cyberattacks becomes too big to insure, issuers are seizing the moment. (Pixabay) News 

Cybersecurity Insurance: Catastrophe Bonds Ready to Take the Market by Storm!

There is a possibility that cyber catastrophe bonds are on the verge of transitioning from private negotiations to becoming publicly traded in the debt markets. So-called kitty loans, which allocate hard-to-insure risks to capital markets investors in exchange for double-digit returns, are typically built around natural disasters like hurricanes. But when the potential fallout from business-stopping cyberattacks grows too large to insure, issuers seize the moment. Beazley Plc, which owns specialist insurance companies across Europe and the US, is exploring a potential $100 million cybercat loan, according to insurance-linked securities…

Read More
As per F-Secure, the 'SpyNote' spyware app can steal sensitive user data—like banking information, and targets Android phones. Here's what you must know. News 

ALERT: Be Cautious of This ‘High-Tech’ Spyware – It Can Access Your Funds and Monitor Your Conversations

A new malware called SpyNote that knows how to hide itself is making the rounds on the Internet. According to Internet security company F-Secure, this fake app can steal sensitive user data, such as bank details, and primarily targets Android phones. Per Amit Tambe, a researcher at the company, this spyware, SpyNote, spreads through “smishing,” which involves sending infected text messages. When users receive these messages, they are prompted to download specific apps via the attached link, bypassing Google Play’s security measures. How it hides itself on Android Once an…

Read More
WhatsApp is one of the most useful applications for most users but thanks to its popularity, it has also become a place where scammers may attempt to exploit unsuspecting victims. Let's explore some methods to identify scams through practical examples. News 

Identifying Scams on WhatsApp: Tips for Avoiding Fraud

WhatsApp is undoubtedly one of the most used apps in India and some other regions around the world. However, due to its popularity, the frequency of scams and malicious parties harming users has increased. Fraudsters are using new tactics to trick unsuspecting victims into revealing sensitive information, allowing call forwarding or even accidentally giving attackers access to their WhatsApp accounts. Here we explore how to identify WhatsApp scams and examine some of the scams that are currently common Got a lucrative job offer or something that seems too good to…

Read More
Union Railway Minister Ashwini Vaishnaw speaks during the G20 Digital Economy Ministers' meeting, in Bengaluru on Saturday. (ANI ) News 

G20 Digital Economy Ministers Agree to Address Cyber Security as Global Issue: Vaishnaw

During the G20 Digital Economy Ministers’ Meeting, Union Minister Ashwini Vaishnaw emphasized the unanimous agreement that cyber security is a global issue necessitating cooperation and measures to foster trust and respect among economies. The minister holding the portfolios of Electronics, IT, Communications and Railways said there was absolute consensus at the G20 meeting on the concept and application of Digital Public Infrastructure (DPI), cyber security and digital technology skills. He said of the cyber security discussions that “very good principles” were reached regarding cyber security. “Everyone clearly agreed and understood…

Read More
A Chinese national and other scammers in Gujarat defrauded 1,200 victims of a whopping Rs 1,400 through a Football betting app. Here are the details. News 

Gujarat Man Uses Football Betting App to Defraud Victims of Rs 1,400 Crore

A Chinese national, along with Gujarat-based perpetrators, created a fraudulent football betting app that collectively conned and used 1,200 people – managing to steal around Rs 1,400 crore in nine days. According to The Times of India, designer Woo Uyanbe, who hails from China’s Shenzhen area, was spotted scamming from Patan and Banaskantha. The Gujarat Police had to form a Special Investigation Team (SIT) to solve the case. Further, the CID was first tipped off about the same when it was found that perpetrators were duping victims – both in…

Read More
Delays may be granted over public or national security risks. News 

SEC Mandates Public Companies to Disclose Cyberattacks Within Four Days

The US Security and Exchange Commission has implemented a new regulation to prevent public companies from withholding information about cyberattacks. Under this rule, companies must disclose any significant cybersecurity incidents within four days. However, if a US attorney general believes that disclosing the information could pose a significant threat to national security or public safety, they may delay the disclosure. While these rules are a strict guideline, they are slightly less stringent than the European Union’s General Data Protection Regulation (GDPR), which requires disclosure within three days. The news comes…

Read More
iPhone 14 scam: On Instagram, scammers use 'Bhai from Dubai' trick to rob man of ₹7 lakh. (Pixabay) News 

Beware of ‘Bhai’ Trick: How to Avoid Falling Victim to iPhone 14 Scam on Instagram

India is increasingly vulnerable to cybercriminals who manipulate virtual numbers with the +92 country code, commonly linked to Pakistan, to engage in fraudulent behavior. A fresh online scam has emerged, involving scammers posing as the infamous ‘Bhai’ from Dubai, luring unsuspecting individuals with enticing offers such as a complimentary iPhone 14. Unfortunately, Virag Doshi, a 24-year-old entrepreneur from Ahmedabad, became a victim of this deceptive plot. The rising trend of using virtual numbers It all started when Doshi received a message on his Instagram account claiming to have won a…

Read More
Indian researchers have come across a new malware called DogeRAT (Remote Access Trojan)—which is targeting users through the distribution of fake Android apps masquerading as legitimate apps. Here's what we know. News 

A new malware called DogeRAT is spreading through fake Android apps

A new malware called DogeRAT (Remote Access Trojan) targets users by distributing fake Android apps. The apps containing the malware are said to be sent to users via Telegram and other social media apps. Discovered by CloudSEK’s TRIAD team, DogeRAT is an open-source Android malware that can steal important information such as bank passwords and government credentials, leaving victims vulnerable. It targets users in a variety of industries, including banking, e-commerce, and entertainment. DogeRAT is a malware that disguises itself as popular apps, and once it infects a victim’s device…

Read More
Fake job offers and phishing scams are on the rise on LinkedIn and half of the businesses (56 per cent) globally experienced at least one LinkedIn scam this year. News 

LinkedIn sees job fraud on the rise through fake job offers and phishing

According to the report, fake job offers and phishing scams are on the rise on LinkedIn, with half of companies (56%) worldwide experiencing at least one LinkedIn scam this year. According to NordLayer, an online security solution for businesses, a fake job offer is the most common scam (48 percent) and reputational damage (48 percent) was the main result of LinkedIn scams. The results showed that almost half of companies (45 percent) are aware of a LinkedIn scam using their organization’s brand name. “LinkedIn’s primary mission – to build a…

Read More
Facebook. (Reuters) News 

Facebook to add more account security features next year

Facebook Inc said on Tuesday it would start allowing users to set up physical security keys to verify their identity before logging into the social network’s mobile app, starting next year. The company currently offers an option to require a hardware security key to connect to a desktop computer before each connection. Users can purchase a hardware key from retailers and register it on Facebook, the company said, confirming an earlier report from the Axios news website. The world’s largest social network said it also plans to expand Facebook Protect…

Read More
A spokesperson for SolarWinds said the company "remains focused on working with customers and experts to share information and work to better understand this issue." (Pixabay) News 

At least 200 victims identified in suspicion of Russian hacking

At least 200 organizations, including government agencies and businesses around the world, have been hacked in a suspected Russian cyber attack that implanted malicious code into widely used software, a cybersecurity company said and three people familiar with the ongoing investigations. The number of actual hackers was one of the many unanswered questions regarding the cyberattack, which used a backdoor into SolarWinds Corp s Orion network management software. as a preparation ground for further attacks. Recorded Future Inc., a Massachusetts-based cybersecurity company, has identified 198 victims who were hacked using…

Read More
Lucideus launches SAFE Me, (Lucideus) News 

Passwordless authentication is the future, says Lucideus’s Saket Modi

Up to 28 dark web exposure opportunities for my ten year old Gmail ID – an embarrassing number has popped up on the Safe Me app. Fortunately, most of the broken passwords were old, and back in the days when I was too carefree to understand the importance of two-factor authentication, the risks of reusing the same and probably predictable passwords, and memberships. reckless to applications that require you to register to give you basic information. Nonetheless, it was a much needed reality check that I needed. I (guess) am…

Read More
The seller declined to tell the publication the source where he got these credentials from. However, he confirmed that he has hundreds of credentials to sell. (Pixabay) News 

Hacker sells Microsoft C-Suite email credentials for $100

According to a report from ZDNet, a threat actor is selling email and password combinations for Office 365 and Microsoft accounts in a Russian hacker underground called These account credentials, according to the Threat Actor’s report, belong to various senior executives including CEOs, CFOs, COOs, CMPs, CTOs, President, Vice President and Director. They are sold at prices varying between $100 and $1,500 depending on the company and the role of the leader. While one of the credentials belongs to the CEO of a mid-sized US-based software company, the other…

Read More