https://threatfeed.niradnetworks.com Global threats, decoded for Indian defenders. Bharat-first threat intelligence. en-in https://threatfeed.niradnetworks.com/issues/ai-watch-2026-06-19.html https://threatfeed.niradnetworks.com/issues/ai-watch-2026-06-19.html AI Threat Watch Fri, 19 Jun 2026 09:00:00 +0530 The AI-security vertical of the Nirad Bharat Threat Feed. Twice weekly, Bharat-first, for CISOs, SOCs and AI builders — as CERT-In's AI-exploitation blueprint puts AI security on the compliance clock. https://threatfeed.niradnetworks.com/issues/ai-watch-2026-06-16.html https://threatfeed.niradnetworks.com/issues/ai-watch-2026-06-16.html AI Threat Watch Tue, 16 Jun 2026 09:00:00 +0530 An AI gateway under live exploitation, a verdict that prompt injection is here to stay, and AI-assisted attacks moving from forecast to baseline - the week's signal for Indian CISOs, SOCs and AI builders. https://threatfeed.niradnetworks.com/issues/2026-06-12.html https://threatfeed.niradnetworks.com/issues/2026-06-12.html Weekly Brief Fri, 12 Jun 2026 09:00:00 +0530 A patch-heavy week for Indian defenders: an exploited ERP zero-day, several edge and VPN flaws under active attack, and a Pakistan-aligned group still grinding at Indian government desktops. Six things to have acted on. https://threatfeed.niradnetworks.com/issues/ai-watch-2026-06-11.html https://threatfeed.niradnetworks.com/issues/ai-watch-2026-06-11.html AI Threat Watch Thu, 11 Jun 2026 09:00:00 +0530 This week: a credential-harvesting worm reaches into AI coding assistants, OpenAI ships a structural fix for prompt injection, and OWASP confirms prompt injection is now woven through most agentic-AI risk - read through the lens of the Indian SOC and AI builder. https://threatfeed.niradnetworks.com/issues/2026-06-05.html https://threatfeed.niradnetworks.com/issues/2026-06-05.html Weekly Brief Fri, 05 Jun 2026 09:00:00 +0530 A heavy week across the whole stack: an exploited mobile zero-day, perimeter VPN/SD-WAN flaws under active attack, a freshly weaponised container-escape bug, a VPN bug feeding ransomware, a memory-exhaustion DoS against the major web servers, and self-propagating npm supply-chain worms — against a regulator now expecting hours-not-weeks remediation. https://threatfeed.niradnetworks.com/issues/sector-bfsi-2026-06.html https://threatfeed.niradnetworks.com/issues/sector-bfsi-2026-06.html BFSI Sector Edition Mon, 01 Jun 2026 09:00:00 +0530 Black Kite's *2026 State of Financial Services Report* (3 June) frames a two-front year: Q1 2026 direct ransomware attacks on financial institutions rose **76% year-on-year (65 incidents)**, while roughly half of financial-sector vendor ecosystems carry critical vulnerabilities — and 48 distinct threat groups now target finance, led by Qilin, Akira and Kill Security after the LockBit/ALPHV takedowns. For Indian BFSI, the soft entry point is increasingly the edge appliance and the third party, not the core. https://threatfeed.niradnetworks.com/issues/sector-ci-2026-06.html https://threatfeed.niradnetworks.com/issues/sector-ci-2026-06.html Critical Infrastructure Sector Edition Mon, 01 Jun 2026 09:00:00 +0530 Monthly intelligence for Indian critical-infrastructure CISOs, SOCs and boards. This edition tracks pre-positioning by China-nexus actors, GNSS/PNT manipulation against aviation and telecom timing, and the tightening regulatory perimeter around power and telecom. Every item below is drawn from public reporting with the publication date stated. India is the lens. https://threatfeed.niradnetworks.com/issues/sector-edu-2026-06.html https://threatfeed.niradnetworks.com/issues/sector-edu-2026-06.html Education Sector Edition Mon, 01 Jun 2026 09:00:00 +0530 Monthly threat intelligence for Indian higher-education and schooling CISOs, SOC leads, and governing boards. This edition tracks a destructive month for the sector: a global student-information-system zero-day cutting straight at university ERP, a high-volume assault on a national examination portal, and curated Indian student data flowing into fraud pipelines. Agentic AI-driven, source-attributed, human-validated. https://threatfeed.niradnetworks.com/issues/sector-govdef-2026-06.html https://threatfeed.niradnetworks.com/issues/sector-govdef-2026-06.html Government & Defence Sector Edition Mon, 01 Jun 2026 09:00:00 +0530 For CISOs, SOC leads and security leadership across Indian central/state government, defence and public-sector bodies. The picture is continuity, not novelty: Pakistan-aligned espionage (APT36/Transparent Tribe + SideCopy) remains the dominant — and now multi-platform — threat, while an Exim mail-gateway RCE, a Chrome zero-day and a Linux root flaw raise the floor for everyone on @gov.in. https://threatfeed.niradnetworks.com/issues/sector-health-2026-06.html https://threatfeed.niradnetworks.com/issues/sector-health-2026-06.html Healthcare Sector Edition Mon, 01 Jun 2026 09:00:00 +0530 Monthly threat intelligence for Indian healthcare CISOs, SOC leads and hospital boards. This edition covers verified developments from approximately May–June 2026: a sustained ransomware surge against care providers, deepening exposure of connected medical devices, and the maturing DPDP and ABDM compliance clock. Every item below is tied to public reporting with a publication date. India is the operating lens; figures are reported as published and not re-dated. https://threatfeed.niradnetworks.com/issues/2026-05-29.html https://threatfeed.niradnetworks.com/issues/2026-05-29.html Weekly Brief Fri, 29 May 2026 09:00:00 +0530 Global threats decoded for Indian defenders, plus the India-targeted picture. Week of 25–29 May 2026. https://threatfeed.niradnetworks.com/issues/2026-05-22.html https://threatfeed.niradnetworks.com/issues/2026-05-22.html Weekly Brief Fri, 22 May 2026 09:00:00 +0530 Week of 18–22 May 2026 · Global threats decoded for Indian defenders, plus India-targeted activity https://threatfeed.niradnetworks.com/issues/2026-05-15.html https://threatfeed.niradnetworks.com/issues/2026-05-15.html Weekly Brief Fri, 15 May 2026 09:00:00 +0530 A rare quiet Patch Tuesday masked a louder week underneath it: SAP HotNews flaws reaching CVSS 9.6, a fourth-generation self-replicating npm worm hijacking a trusted CI/CD pipeline, and fresh data ranking India as APAC's most-attacked nation. The supply chain, not the perimeter, was where the damage landed. https://threatfeed.niradnetworks.com/issues/2026-05-08.html https://threatfeed.niradnetworks.com/issues/2026-05-08.html Weekly Brief Fri, 08 May 2026 09:00:00 +0530 Global threats decoded for Indian defenders: a perimeter firewall under live attack, a one-command root flaw in nearly every Linux box, and an extortion crew turning a global SaaS platform against its own users.