Cybersecurity News

Fake job offers on WhatsApp have become a widespread and increasingly sophisticated scam across India in 2026, targeting job seekers with attractive work-from-home opportunities that initially appear genuine. These scams typically follow a structured pattern starting with trust-building conversations, small paid tasks and eventually demanding money for “premium tasks” or fees leading to financial loss and sometimes identity theft. Powered by advanced tactics and even AI-generated communication, these frauds are harder to detect and exploit human psychology, especially during financial stress. Recognizing red flags such as unsolicited job offers, unrealistic salaries and requests for money is crucial, while verifying employers and avoiding sharing sensitive information remain key steps to staying safe.

WhatsApp money fraud cases have surged in 2026, with scammers using tactics like OTP fraud, fake job offers and impersonation scams to steal money. Experts warn users to stay alert, avoid sharing sensitive information and verify requests before making transactions. Authorities recommend reporting incidents immediately to prevent financial loss

Security researchers from Microsoft warn that cybercriminals are increasingly using artificial intelligence to automate phishing campaigns, develop malware, and accelerate multiple stages of the cyberattack lifecycle. According to Microsoft’s threat intelligence research, attackers are leveraging generative AI tools to craft convincing phishing messages, translate content, analyze stolen data and generate malicious code, allowing them to launch large-scale cyber operations more efficiently. Experts say AI currently acts as a “force multiplier,” helping criminals scale attacks faster rather than creating entirely new attack methods. Researchers also warn that future adoption of agentic AI systems capable of autonomous decision-making could further automate cybercrime operations and make attacks even more adaptive and difficult to detect.

Researchers Simon Lermen and Daniel Paleka warn that modern artificial intelligence tools can identify the real identities behind anonymous social-media accounts by analysing small fragments of publicly shared information. Their study shows that AI systems can combine clues such as hobbies, locations, pet names and personal anecdotes from posts and cross-reference them with other online data to accurately match profiles with real individuals. The researchers say this capability raises serious privacy and security concerns, as governments could use it to track anonymous activists while cybercriminals could exploit it for targeted scams like spear-phishing. Experts advise users to limit sharing personal details online and urge social-media platforms to introduce stronger safeguards against automated data scraping and mass information extraction.

Nasscom has urged technology companies to strengthen cybersecurity frameworks and operational preparedness as geopolitical tensions escalate in West Asia following the conflict involving Iran and retaliatory strikes linked to the United States and Israel. The industry body warned that geopolitical crises often trigger cyberattacks, disinformation campaigns and disruptions to global technology infrastructure and advised firms to review business continuity plans, secure cloud and data-centre operations, enforce multi-factor authentication and audit supply chains and third-party vendors in the Middle East. Nasscom also recommended preparing for potential Distributed Denial-of-Service (DDoS) attacks, strengthening network monitoring and increasing employee awareness to prevent social-engineering threats, while markets reacted negatively to the rising tensions amid concerns over oil supply disruptions and global logistics risks.

Google’s Threat Intelligence Group (GTIG) has revealed that state-sponsored hackers from Iran, North Korea, China and Russia are increasingly using AI models like Gemini to strengthen phishing campaigns, reconnaissance, malware development and model extraction attacks. The report highlights emerging AI-powered threats such as HONESTCUE malware, ClickFix campaigns and AI-assisted phishing kits, while confirming that no breakthrough AI capability has yet reshaped the global cyber threat landscape.