Latest news with #GIREM
India Today
2 days ago
- Business
- India Today
India's Rs 22,800 cr cybercrime hydra: How to defang it
In February, Jharkhand's Jamtara police struck a blow against a syndicate that trafficked in malicious Android applications—Android Package Kits (APKs) designed to defraud citizens who believed they were claiming government subsidies. At the helm of it was 25-year-old Mahboob Alam, a Class 10 dropout turned self-taught coder, who weaponised readily available AI tools to sharpen his digital innocuous names such as 'PM Kisan and 'PM Fasal Bima his creations promised farmers legitimately owed dues, but instead granted remote access to their bank accounts and personal data. Investigators recovered more than a hundred such APKs, which between them intercepted nearly 270,000 messages and siphoned off some Rs 11 crore from over 2,800 and his cohort sold more than a thousand of these apps in the past year at Rs 25,000-30,000 apiece, fuelling a thriving black market for industrial-scale startling episode proves two stark things: first, that readily accessible AI can elevate even a school-dropout into a technically proficient architect of sophisticated deceit; second, India's explosive growth in smartphone ownership has simultaneously amplified ranks of the digitally uninitiated, rendering vast new cohorts vulnerable to precisely these exploits. Yet the Jamtara case is far from singular. India's digital leap—set to encompass over 900 million internet users by the end of 2025—has ushered in prosperity, convenience and a parallel surge in cybercrime. According to the Global Initiative for Resilient Emerging Markets (GIREM) Report 2025: The Rise of AI-Powered Cybercrime, Indians lodged over 1.92 million cybercrime complaints in 2024, a staggering uptick from 1.56 million in 2023 and nearly 10 times the total of just five years losses reached Rs 22,812 crore in that single year, almost three times Rs 7,496 crore in 2023 and nearly 10 times the Rs 2,306 crore lost in 2022. Over the past four years, criminals have siphoned off an aggregate of Rs 33,165 crore from individuals and businesses report was released on June 25 in Bengaluru by Dr M.A. Saleem, director general and inspector general of Karnataka police; Tekion founder and CEO Jay Vijayan; and Shyam Sundar S. Pani, chairman, GIREM (research partner).What makes India uniquely exposed is not simply the sheer scale of its digital expansion but the cultural texture of that journey. Millions, from urban swathes to remote villages, have leapfrogged straight into mobile banking, e-commerce and social media without any foundational training in digital hygiene. This is the internet adopted, not inherited; in the yawning chasm between enthusiasm and awareness, swindlers have found fertile Bengaluru's gleaming glass towers to sleepy roads in Jamatara, scams flourish in every milieu. Bengaluru, the country's Silicon Valley, recorded 17,623 cyber-fraud cases in 2023, a 77 per cent leap from the previous year. In the agrarian districts of Karnataka, rural complaints nearly doubled from 880 in 2022 to 1600 in 2024. No corner of India is criminal playbook is a taxonomy of evolving depravity. Phishing remains the quotidian workhorse: emails, SMSs and WhatsApp messages posing as banks, telecom providers or government bodies, and each click a potential catastrophe. A single link can drain a lifetime of phishing, or 'vishing', exploits the ingrained respect for authority: a curt phone call from a supposed bank official, brimming with urgency and performed with practiced diction, can cajole an unsuspecting pensioner into divulging an and spyware, once the province of remote syndicates, now arrive in innocuous-sounding APKs. In one incident in Tamil Nadu, a university student downloaded pirated software for coursework, only to install a keylogger that exfiltrated his personal files and emails. The attacker then threatened to circulate intimate photographs—and demanded Rs 15,000 to keep them secret. That extortion narrative repeats itself in countless variations across the these familiar stratagems is a potent new variable: artificial intelligence. The GIREM report dubs AI a 'double-edged sword'. In 2024, an estimated 82.6 per cent of phishing campaigns worldwide were crafted with generative AI, spawning emails of uncanny authenticity, interactive dashboards that mirror trusted brands, and deepfake videos to impersonate relatives or executives. AI democratises deception, industrialising fraud: what once required technical prowess now demands little more than a chatbot prompt and a stolen November 2024, two Bengaluru residents became victims of a sophisticated online share trading fraud after being misled by deepfake videos portraying two top names from the business world. The scam led to financial losses totalling Rs 8.7 use of deepfakes featuring influential public figures has emerged as a growing tactic among cybercriminals seeking to manipulate unsuspecting targets. Officials have recommended heightened scrutiny of social media content that appears to show high-profile individuals promoting investment human cost is profound. Senior citizens are bewildered by spoofed tax notices, often too ashamed to report the indignity. Young job-seekers fall prey to phoney recruitment portals that demand 'registration fees' for non-existent posts. Small businesses pay phantom invoices to 'suppliers' who send nothing but malware. Shame and fear silence most victims; when one's dignity is hacked, the first reaction is often to suffer in the GIREM report insists this avalanche can be arrested through a cultural reimagining of cybersecurity—one rooted in collective responsibility and pre-emptive defence. Digital literacy must begin early, embedded into school syllabuses, reinforced by community workshops, and tailored for women, children and the elderly alike. Public-awareness campaigns in regional languages can dismantle the myth that 'it cannot happen to me'.advertisementIndia's law-enforcement apparatus, too, must evolve. Cybercrime cells are proliferating, but require real-time data feeds, skilled forensic experts and decentralised response units to shorten the chase between offence and arrest. A fast-track digital FIR system, modelled on e-governance platforms, could ensure timely redress for must keep pace as well. Data-protection standards need legislative teeth, secure-app frameworks must be mandated at the development stage, and public–private alliances forged to share threat intelligence. Banks, telecom companies and platform providers bear a duty not only to secure their infrastructures but also to educate their technology itself must be weaponised for defence. India possesses the home-grown talent to build AI-powered guardians: anomaly-detecting bots, real-time scam-alert platforms, and algorithms that recognise fraud patterns across geographies. Already, Bihar's police have deployed geo-tracking mobile apps to pre-empt syndicates before they strike—and have seen measurable drops in local complaint rates. This spirit of grassroots innovation must be scaled nationally, backed by funding, shared expertise and political cybercrime resembles a public-health campaign: success lies not only in curing infections but in preventing contagion. Just as vaccination protects both individuals and communities, so must cybersecurity practices evolve into social norms. We must move beyond reactive defence into anticipatory governance—training sensibilities as much as today's world, a smartphone is one's identity: banking credentials, personal memories, health records. Mercenary spyware does more than steal data—it watches your life unfold, frame by frame. India's digital leap has been a remarkable chapter in its modern odyssey. But unless we fortify our ramparts, the windows we have thrown open to the world may also admit the wolves. Our digital future is not merely to be defended; it is to be shaped—deliberately, democratically and to India Today Magazine- Ends
New Indian Express
4 days ago
- New Indian Express
AI driving force behind 82.8 per cent of phishing emails in Karnataka
BENGALURU: Artificial Intelligence (AI) was involved in approximately 82.8 per cent of all phishing email scams, while cybercrime incidents in rural Karnataka nearly doubled in recent years, according to the 'State of AI-Powered Cybercrime Threat and Mitigation Report 2025', released on Wednesday. The report, jointly published by the Global Initiative for Restructuring Environment and Management (GIREM) and automotive retail tech firm Tekion, was unveiled by Director General and Inspector General of Police MA Saleem. The study highlights how AI has become a powerful tool in the hands of cybercriminals, and outlines a series of mitigation strategies. According to report findings from KnowBe4's 2025 Phishing Threat Trends Report, the study notes that AI tools were used in about 82.6% of phishing emails in India in 2024, making AI a driving force in nearly 8 of every 10 phishing campaigns. India emerged as the second-most targeted nation for cryptocurrency-related cyberattacks in 2024, with 95 reported incidents, second only to the United States. The country also saw year-on-year increases in malware (11%), ransomware (22%), Internet of Things (IoT) attacks (59%), and an alarming 409% spike in crypto-related cyberattacks. The report further reveals that vulnerable populations such as senior citizens, women and children are increasingly being targeted in financial scams, online harassment and blackmail. Geographically, while Bengaluru recorded a 77 per cent increase in cybercrime cases (from 9,940 in 2022 to 17,623 in 2023), rural Karnataka saw cases nearly double — from 880 in 2022 to 1,600 in 2024. For the first time, tribal areas also reported cybercrime incidents, with 12 cases in 2024 compared to none in 2022. The report also mentioned the rise of 'cyber slavery', a form of modern human trafficking in which victims are forced to conduct cybercrimes such as phishing and online scams, often from compounds located in lawless regions like Cambodia and Myanmar. Tens of thousands of victims, including Indians, are believed to be trapped in such operations. The report recommends a multi-pronged strategy likes promoting digital literacy in schools, improving cybercrime investigation training for police. Mandating cybersecurity education in workplaces, setting up cybersecurity labs in educational institutions, the report also suggests developing AI-based threat detection systems and strengthening monitoring of cyber terrorism.
Time of India
4 days ago
- Business
- Time of India
Rs 938 crore lost to cybercrooks since Jan
Bengaluru: As the financial landscape races ahead in its digital journey, a chilling new report warns of the dark flipside: Artificial intelligence (AI) rapidly emerging as the most-dangerous weapon in the cybercriminal's arsenal. In the first five months this year, Rs 938 crore was lost to cybercriminals across the state and a whopping 6,000 cases were registered. Data collated by state police shows cybercrooks made away with Rs 2,396 crore in 2024, Rs 562 crore in 2023 and Rs 113 crore in 2022. The state is seeing over 22,000 cybercrime cases per year. What is interesting is that a majority of them have been committed by deploying AI tools. "Cybercrimes are increasingly penetrating society, targeting even vulnerable senior citizens. Awareness must be created to educate society about the emerging threats," said DG&IGP MA Saleem after releasing "The State of AI-Powered Cybercrime: Threat & Mitigation Report-2025'. You Can Also Check: Bengaluru AQI | Weather in Bengaluru | Bank Holidays in Bengaluru | Public Holidays in Bengaluru The report, which was prepared by GIREM (Global Initiative for Restructuring Environment and Management) and automotive tech firm Tekion, throws light on cyber threats faced by the country following deployment of AI. The report highlights how cybercriminals are leveraging AI to craft phishing emails, clone websites and even spin up deepfake-driven scams. AI tools were involved in 80% of phishing mails, which, in other words, means that they were deployed in 8 out of every 10 phishing campaigns. "AI is transforming the cybercrime landscape, enabling attackers to execute faster, targeted and personalised attacks like never before," the report warned. "This report is a wake-up call. It doesn't just document cyber threats, it reveals the human cost behind them," said Jay Vijayan, founder and CEO of Tekion.
The Hindu
4 days ago
- Business
- The Hindu
AI becoming formidable tool for cybercriminals: Report
The report, The State of AI-Powered Cybercrime: Threat & Mitigation Report 2025, recently released by the Global Initiative for Restructuring Environment and Management (GIREM), in partnership with automotive retail technology company Tekion, has highlighted how Artificial Intelligence (AI) is becoming a formidable tool in the hands of cybercriminals. According to the report, AI tools were involved in approximately 82.6% of all phishing emails, positioning AI in nearly eight out of every 10 phishing campaigns. In addition to the email text, AI is used to spin up realistic dashboards, register typo-squatting domains, and create dynamic, interactive phishing pages, making these attempts far more convincing and effective, it states. The study was officially unveiled by Dr. M.A. Saleem, Director-General & Inspector-General of Police of Karnataka. Escalating crimes The report recorded a trend of escalating cybercrimes and unprecedented financial losses in the country. According to it, India registered over 19.18 lakh cybercrime complaints in 2024, up from 15.56 lakh in 2023, reflecting a tenfold jump since 2019. 'Financial fraud remains the dominant motive, with Indian citizens losing an unprecedented ₹22,812 crore to cybercrime in 2024, nearly three times the losses recorded in 2023 (₹7,496 crore) and almost ten times that of 2022 (₹2,306 crore). Over the past four years, cybercriminals have siphoned off a staggering ₹33,165 crore from individuals and businesses across the country, with 'digital arrest' fraud alone contributing nearly ₹1,936 crore loss in 2024,' it noted. India ranked second globally in terms of being the most-targeted nation for crypto attacks in 2024, with 95 incidents, following the U.S. The country has also witnessed significant year-on-year increases in malware (11%), ransomware (22%), Internet of Things (IoT) attacks (59%), and an overall staggering 409% surge in crypto attacks. Vulnerable population The report also observed that senior citizens, women, and children are increasingly targeted by specific forms of cybercrime, including financial scams, harassment, and blackmail. In Karnataka, while Bengaluru saw a 77% increase in cybercrimes, cases in rural Karnataka nearly doubled (880 in 2022 to 1,600 in 2024). Tribal areas reported 12 cases in 2024 as against none in 2022. It has been found that cybercriminals have been increasingly deploying fake applications that mimic government platforms or bank helpdesks to install malware and steal sensitive data, including UPI IDs and PINs. Strengthening cyber resilience Increased digital literacy in schools, improved police training, mandatory cybersecurity education in the workplace, establishing cybersecurity labs in educational institutions, developing AI-based threat detection tools, monitoring cyberterrorism, and enhancing alert mechanisms for preparedness are some of the recommendations the report provides to enhance cyber resilience. 'Cybercrimes are increasingly penetrating society, targeting even vulnerable senior citizens. Awareness must be created to educate society about the emerging threats. Karnataka has been at the forefront of tackling cybercrimes. This report will complement our efforts,' said Mr. Saleem releasing the report.
Time of India
5 days ago
- Time of India
AI-driven cybercrime threatens India's digital future, Rs 23,000 crore lost in 2024
Karnataka DG & IGP M A Saleem releases 'The State of AI-Powered Cybercrime: Threat & Mitigation Report 2025' report readied by GIREM and Tekion in Bengaluru. BENGALURU: As India races ahead in its digital journey, a chilling new report warns of the dark flipside: Artificial Intelligence (AI) is rapidly emerging as the most dangerous weapon in the cybercriminal's arsenal. A whopping Rs 22,812 crore ($2.78 billion) was lost to digital frauds in 2024 alone, most of it triggered by AI frauds and committed not just in cities like Bengaluru but also in the rural parts of the country. The findings were part of 'The State of AI-Powered Cybercrime: Threat & Mitigation Report 2025' jointly released by GIREM (Global Initiative for Restructuring Environment and Management) and automotive tech firm Tekion. The report was unveiled in Bengaluru by Karnataka's director general and inspector general of police (DG&IGP) M A Saleem on Wednesday. You Can Also Check: Bengaluru AQI | Weather in Bengaluru | Bank Holidays in Bengaluru | Public Holidays in Bengaluru The report highlights how cyber criminals are leveraging AI to craft phishing emails, clone websites, and even spin up deepfake-driven scams. AI tools were involved in 80 per cent of the phishing mails, which, in other words, mean that AI was deployed in eight out of every 10 phishing campaigns. AI is transforming the cybercrime landscape, enabling attackers to execute faster, targeted and personalise attacks like never before, the report warned while pointing out that Indian users were frequently targeted through imitation dashboards, spoofed brand communications, and malicious mobile apps. 'This report is a wake-up call. It doesn't just document cyber threats, it reveals the human cost behind them,' said Jay Vijayan, founder and CEO of Tekion. 'Phishing scams, identity theft, cyber slavery are no longer abstract dangers. AI has turned them into a daily reality,' he added. The report warned that organised e-crime syndicates such as FIN7, which have been targeting the auto industry in the US, have started using AI to target hospitality chains and restaurants in India, an indication of how even well-defended corporate networks are now vulnerable. India registered a record 1.91 million cybercrime complaints in 2024, up from 1.55 million the previous year — a nearly ten-fold increase since 2019. The losses, particularly in financial fraud, have tripled in just one year. Digital frauds under the guise of police or government impersonation, dubbed 'digital arrest' scams, alone accounted for Rs 1,936 crore in 2024. Cumulatively, cybercriminals have siphoned off over Rs 33,000 crore from individuals and enterprises in the last four years in India. In Karnataka, the police said, there was a five-fold increase in cybercrime reports over the last two years, with complaints rising from 20,894 in 2022 to 97,929 in 2024. Financial losses surged from Rs 113 crore in 2022 to Rs 2,396 crore in 2024. Bengaluru alone recorded 12,356 cybercrimes in the first eight months of 2024, with losses exceeding Rs 1,242 crore. Citing a recent threat report, the police said the state witnessed around 11.46 million malware detections and 1.78 million ransomware attacks in 2024, many of which leveraged AI techniques to evade detection and adapt continuously. Cyber criminals are also using AI to develop counterfeit apps that mimic official government services such as Parivahan or fake bank helplines. These apps are often used to deploy malware and steal sensitive financial information, the report stated. India is now the second most targeted country in the world, after the US, for crypto-related cyberattacks, the report stated. 'The rise in cyber threats underscores the critical need for stronger cybersecurity measures and a robust awareness at every level of the society,' said GIREM chairman Shyam Sundar S Pani. To combat these threats, Karnataka has established India's first Cyber Command Centre, unifying 45 cybercrime police stations to address financial frauds, ransomware, identity theft, and other cybercrimes. 'Awareness is being created to educate the people about the emerging threats,' DG&IGP Saleem added. On the cyber defence measures to be taken, the report suggested integrate digital safety and cybersecurity education in schools and workplaces; establishing advanced cybercrime labs in universities and police departments; deploying AI-based threat detection systems across critical infrastructure; launching public awareness campaigns in regional languages; and strengthening international cooperation to combat cyber slavery and transnational crimes.
