India Cyber Threat Report 2025

“The view on “Never Trust and Always Verify” with Zero Trust solutions continue to gain traction as VPN solutions for remote connectivity became highly vulnerable. Secondly, while AI governance will become reality after Data Privacy rules, the adoption of AI agent with right guardrails will become a necessity to handle skills shortage. With many security tools and related skills shortage, a single pane view or platform based solutions are becoming a new normal so that “Job To be Done” for various security personas is rightfully visible.”

In the midst of threat campaigns executed by professional and state-sponsored actors, 2024 was a busy year for cyber security personnel. At Seqrite Labs, we have witnessed innovative mechanisms employed by threat actors to infiltrate their targets and our technologies and protection layers have evolved to stay a step ahead of the nefarious designs of these threats. This is critically important in light of the potent risks posed by exploitation of weaknesses in system applications, utilities and processes. In addition to mitigating the risks posed by evolving malwares and the interesting mechanisms they employ, one of the prominent highlights of the year was the impact due to geo-political conflicts across the seas. Although India took a non-partisan stance, the offshoots of the international events were evident in dark web & in actuation of the attacks on Indian cyber assets, presumingly in revenge mode.

“The complete threat perception has shifted dramatically, with an increasing variety of sophisticated attacks targeting even secured systems. Malware continues to evolve, forcing organizations to enhance their security posture to address these emerging threats effectively.”

“Over the past 18-24 months, cyber threats in our industry have evolved significantly. While ransomware, phishing, and social engineering remain the primary threats, they have become much more sophisticated thanks to the use of Artificial Intelligence. AI-driven attacks are now more targeted and harder to detect, rendering traditional training ineffective. To address these challenges, it is vital to implement AI-based threat mitigation tools for real-time detection and alerts. It is also crucial to revamp our training programs to better equip our staff and stakeholders against these advanced threats. This proactive approach ensures we maintain a robust security posture in an increasingly complex threat landscape.”

“Cyber attack patterns against the BFSI sector have evolved significantly in recent years. We are now witnessing advanced persistent threats (APTs) targeting core banking systems, supply chain attacks designed to exponentially increase the impact of breaches, ransomware-as-a-service models, the utilization of AI-based tools, and hybrid DDoS attacks, among others. Cyber threat vectors have become extremely diverse and are constantly evolving. In the recent past, we have seen a notable increase in phishing, malware, cloud vulnerabilities, mobility-related threats, and supply chain compromises. To effectively address these changing attack patterns, our organization is continuously realigning our security strategies and defenses to the evolving cyber threat landscape.”

“In today’s evolving threat landscape, organizations must adopt strategic measures to strengthen cyber resilience. A comprehensive cybersecurity framework should include Attack Surface Management, Breach Attack Simulation, and Brand Monitoring to enhance both internal operations and vendor security. Beyond traditional Vulnerability Assessment and Penetration Testing, multi-layered defenses like ASM enable continuous vulnerability mitigation. Breach Attack Simulation allows us to test security controls against real-world scenarios, ensuring robust defenses. Effective Brand Monitoring safeguards our reputation by proactively detecting and addressing threats and frauds. Together, ASM, BAS, and Brand Monitoring create a dynamic defense strategy that maintains organizational integrity and builds customer trust in our digital world.”

“In the past year, cyber threats have become significantly more sophisticated and targeted. We’ve observed key trends such as regulatory changes, the evolution of ransomware, zero-day exploits, supply chain attacks, vulnerabilities from remote work, and AI-powered attacks. To address these challenges, it is important to implement enhanced threat intelligence, adopt a Zero Trust Architecture, and conduct regular training and drills.”

“Ransomware in banking has evolved to double and triple extortion and RaaS, heightening financial and reputational risks. We mitigate these threats with patch management, network segmentation, endpoint detection, backups, and staff training. To enhance resilience, we’ve onboarded Breach & Attack Simulation, upgraded to a Next-Gen SOC with SOAR and UEBA, conducted comprehensive security assessments, and are exploring AI. Additionally, we are leveraging Quantum Computing and Generative AI to strengthen our security posture.”

“In the manufacturing sector, cyber threats are rapidly evolving, targeting operational technology and industrial control systems through IoT vulnerabilities and Industry 4.0 technologies. Supply chain attacks are on the rise, necessitating robust cybersecurity measures to protect critical infrastructure. To strengthen our resilience, we implement multi-layered security strategies guided by frameworks like NIST, adopt zero-trust architecture, conduct regular assessments, and provide comprehensive employee training. Emerging trends such as AI and enhanced supply chain security are reshaping our priorities, ensuring we maintain a strong cybersecurity posture.”

“Cyber threats have become increasingly sophisticated, including targeted ransomware, Malware-as-a-Service, state-sponsored APTs, AI-powered polymorphic malware, mobile malware, supply chain attacks, and social engineering tactics. Additionally, generative AI introduces complex intent vector threats like automated disinformation and autonomous malicious code generation. To combat these, our organization leverages AI-driven anomaly detection, real-time threat intelligence, and a Zero Trust Architecture. Leveraging advanced endpoint detection solutions and conducting regular threat-hunting and red-team drills becomes non-negotiable. A comprehensive approach, encompassing People, Policies, and Processes, ensures robust protection”

According to the World Economic Forum’s 2024 report, Cybersecurity has emerged as the 4th most pressing global risk. The report also highlights that Infectious Diseases and Chronic Health Conditions rank 23rd and 27th respectively.

Cyber risks threaten the very systems that enable life-saving breakthroughs. The Pharma Industry bears the critical responsibility of protecting humanity from the devastating impact of infectious and chronic diseases alongside safeguarding themselves against the escalating risk related to cyber-attacks.

Addressing the Cyber risk demands faster response to threats and vulnerabilities. There is need for continuously fortifying our defences to ensure both short-term agility and long-term resiliency.