1. CBI Dismantles Bulk Phishing Syndicate, Three Arrested in Multi-State Cyber Fraud Probe
The Central Bureau of Investigation has arrested three persons linked to a cyber fraud network that used bulk phishing messages to dupe victims across multiple states. Investigators said the accused deployed spoofed links and fake communications to steal banking credentials and siphon funds through mule accounts.
2. Ten Held in ‘Digital Arrest’ Scam for Impersonating Police and Government Officials
Police have arrested ten individuals involved in a “digital arrest” scam where victims were coerced through video calls by fraudsters posing as police and government officials. The gang allegedly threatened legal action and extorted money by exploiting fear of arrest and prosecution.
3. Pan-India Cyber Fraud Syndicate Busted; Six Accused Taken into Custody
A coordinated police operation has led to the arrest of six members of a pan-India cyber fraud syndicate operating across several states. The group allegedly ran online scams using fake identities and digital platforms, defrauding citizens of large sums through organised and layered transactions.
4. Mumbai: Retired Banker Duped of ₹20 Lakh in 90-Minute Cyber Fraud Operation
A retired banker from Mumbai’s Lalbaug area lost ₹20 lakh in a cyber fraud that unfolded within 90 minutes. Fraudsters allegedly manipulated the victim through deceptive phone calls and online instructions, convincing him to transfer funds to accounts later found to be fraudulent.
5. Lucknow Police Bust ₹1.5-Crore ‘Digital Arrest’ Scam, Rescue 75-Year-Old Widow
Lucknow police have busted a ₹1.5-crore cyber fraud involving a “digital arrest” scam and arrested several accused. A 75-year-old widow was rescued after being held under psychological pressure by fraudsters impersonating law enforcement officials and demanding money to avoid arrest.
INTERNATIONAL
6. Fragmented Cyber-Fraud Systems Hindering Timely Detection of Security Breaches
Poor integration between cyber-fraud monitoring tools and security operations is delaying breach detection across organisations, experts warn. Disconnected systems limit real-time threat visibility, slow incident response, and allow attackers to exploit gaps between fraud analytics, cybersecurity teams, and law-enforcement coordination frameworks.
7. Amazon Reveals Years-Long GRU Cyber Espionage Campaign Targeting Energy and Cloud Networks
Amazon has disclosed a sustained cyber espionage campaign linked to Russia’s GRU that targeted energy firms and cloud infrastructure over several years. The activity involved stealthy reconnaissance, credential theft, and persistence techniques, highlighting the growing risks to critical infrastructure and cloud service providers.
8. Fortinet Warns of Active Exploitation of FortiGate SAML SSO Authentication Bypass
Fortinet has issued an alert over active exploitation of a SAML single sign-on authentication bypass vulnerability affecting FortiGate devices. Attackers are abusing the flaw to gain unauthorised access, potentially enabling network compromise, lateral movement, and persistent control of affected enterprise environments.
9. React2Shell Flaw Actively Exploited to Install Linux Backdoors, Researchers Warn
Security researchers have reported active exploitation of the React2Shell vulnerability to deploy Linux-based backdoors. The attacks allow remote code execution, enabling threat actors to establish persistence, exfiltrate data, and potentially expand access within compromised systems across targeted networks.
10. Google to Discontinue Dark Web Monitoring Service in February 2026
Google has announced plans to shut down its dark web monitoring tool in February 2026. The service, which alerts users if their personal data appears on illicit forums or marketplaces, will be discontinued as the company reviews its consumer security offerings and integration with broader protection tools.
