Cyber Pulse Monthly – May 2025 Edition

1. UK Ramps Up Cyber Offensives Against Russia and China

The UK has announced plans to intensify its cyber operations targeting Russia and China. Defence Secretary John Healey emphasized the growing importance of cyber warfare, stating that "the keyboard is now a weapon of war." A new cyber command, led by General Sir James Hockenhull, will coordinate these initiatives, uniting personnel from the Royal Navy, RAF, and British Army. An additional £1 billion will be invested in a digital targeting web to enhance battlefield intelligence-sharing. This move comes in response to a surge in cyberattacks, with the Ministry of Defence facing 90,000 incidents over the past two years, primarily from state-linked sources. CM Alliance+5The Times+5Financial Times+5

2. IMD Enhances Cybersecurity Amid Threats from Pakistan and Afghanistan

The India Meteorological Department (IMD) has strengthened its cybersecurity measures following cyber threats traced to Pakistan and Afghanistan. Enhanced firewalls and password-protected access protocols have been implemented to safeguard weather data systems. These actions were prompted by suspicious attempts to breach the department's infrastructure, highlighting the growing concern over cybersecurity risks in critical infrastructure. The Times of India+1The Times of India+1

3. Czech Republic Accuses China of Cyberattack on Foreign Ministry

The Czech Republic has accused China of orchestrating a cyberattack on its foreign ministry's unclassified communications network. The attack has been attributed to the state-sponsored hacking group APT31, associated with the Chinese Ministry of State Security. Foreign Minister Jan Lipavský condemned the interference and summoned China's ambassador. While the extent of the impact was not disclosed, a new communications system has been implemented. NATO and the EU have strongly condemned the incident, labeling it a violation of international norms. Financial Times

4. M&S Cyberattack Disrupts Operations and Sparks Investigation

Marks & Spencer (M&S) experienced a significant cyberattack attributed to the cyber gang "Scattered Spider." The breach disrupted online orders, stock availability, and loyalty scheme perks, leading to a £300 million hit to profits. Tata Consultancy Services (TCS), M&S's long-term IT partner, is investigating whether its infrastructure was the entry point for attackers. The attack has raised concerns about the security of third-party vendors and the need for robust cybersecurity measures. SOCRadar® Cyber Intelligence Inc.+3The Scottish Sun+3TechRadar+3 TechRadar

5. Chandrapur District Central Cooperative Bank Suffers ₹2.93 Crore Cyber Fraud

The Chandrapur District Central Cooperative (CDCC) Bank in Maharashtra fell victim to a ₹2.93 crore cyber fraud involving 33 unauthorized RTGS transactions routed through Yes Bank’s Nagpur branch. While ₹90 lakh has been recovered, the remaining funds are unaccounted for. Authorities have initiated a detailed probe focusing on technical failures, procedural breaches, and possible insider complicity. The incident underscores the importance of stringent cybersecurity protocols in the banking sector. The Times of India

6. CERT-In Reports Surge in Cyber Threats Amid India-Pakistan Tensions

The Indian Computer Emergency Response Team (CERT-In) has reported a significant increase in cyber threats targeting business entities and government systems across India. This surge is believed to be linked to rising geopolitical tensions between India and Pakistan. CERT-In's alert serves as a warning for organizations to strengthen their digital defenses in response to escalating threats. The Economic Times

7. AI-Driven Cyberattacks Pose New Challenges

A recent report highlights the growing threat of AI-driven cyberattacks, particularly in the healthcare and finance sectors. Cybercriminals are expected to use artificial intelligence to develop sophisticated phishing campaigns utilizing deepfake technology and personalized attack vectors. AI-driven malware capable of adapting in real-time to evade traditional security measures poses a significant challenge for cybersecurity professionals. The Times of India

8. Indian Cyber Force Claims Responsibility for Cyberattacks on Pakistani Entities

The Indian Cyber Force has claimed responsibility for cyberattacks on Pakistani entities, including the defacement of the Savar Municipality's website in Bangladesh and a breach of Pakistan's Habib Bank Limited's internal systems. These actions are part of a series of hacktivist activities following geopolitical tensions in the region. Wikipedia+1Wikipedia+1

Conclusion

May 2025 has been marked by a series of significant cyber incidents, highlighting the evolving nature of cyber threats and the importance of robust cybersecurity measures. From state-sponsored attacks to AI-driven threats, organizations must remain vigilant and proactive in safeguarding their digital assets.