India Cyberattack Surge, Remote Work Risks, Patelco Data Breach

From a product strategy perspective, DMARC reporting is evolving from a security tool to a business intelligence platform, says Brad Slavin, General Manager of DuoCircle. The data in aggregate reports tells you not just who’s spoofing you, but who’s sending legitimate email on your behalf - and whether they’re doing it correctly.

_According to the FBI’s 2022 Internet Crime Report (IC3), 300,497 US-based victims reported phishing incidents in a single year, and Business Email Compromise (BEC) caused more than $2.7 billion in direct losses. DMARC Report

India Cyberattack Surge, Remote Work Risks, Patelco Data Breach

					<button title="Play" aria-label="Play Episode" aria-pressed="false" class="play-btn">
						

Play Episode

					</button>
					<button title="Pause" aria-label="Pause Episode" aria-pressed="false" class="pause-btn hide">
						

Pause Episode

					</button>
					


				

				

					<audio preload="none" class="clip clip-15302">
						<source src="https://media.mailhop.org/dmarcreport/images/2024/08/India-Cyberattack-Surge-Remote-Work-Risks-Patelco-Data-Breach.mp3">
					</audio>
					

						

					

					

						

							<button class="player-btn player-btn__volume" title="Mute/Unmute">
								

Mute/Unmute Episode

							</button>
							<button data-skip="-10" class="player-btn player-btn__rwd" title="Rewind 10 seconds">
								

Rewind 10 Seconds

							</button>
							<button data-speed="1" class="player-btn player-btn__speed" title="Playback Speed" aria-label="Playback Speed">1x</button>
							<button data-skip="30" class="player-btn player-btn__fwd" title="Fast Forward 30 seconds">
								

Fast Forward 30 seconds

							</button>
						

						

							<time class="ssp-timer">00:00</time>
							

/

							<!-- We need actual duration here from the server -->
							<time class="ssp-duration" datetime="PT0H1M55S">1:55</time>
						

					

				

			

								<nav class="player-panels-nav">
												<button class="subscribe-btn" id="subscribe-btn-15302" title="Subscribe">Subscribe</button>
																		<button class="share-btn" id="share-btn-15302" title="Share">Share</button>
										</nav>
						

	



		

						

				

					

					

				

				

					

																																																																								

					

						

RSS Feed

							<input value="https://dmarcreport.com/feed/podcast/dmarc-report" class="input-rss input-rss-15302" title="RSS Feed URL" readonly />
						

						<button class="copy-rss copy-rss-15302" title="Copy RSS Feed URL" aria-label="Copy RSS Feed URL"></button>
					

				

			

									

				

					

					

				

				

					

						Share						

					

						<a href="https://www.facebook.com/sharer/sharer.php?u=https://dmarcreport.com/blog/podcast/india-cyberattack-surge-remote-work-risks-patelco-data-breach/&t=India Cyberattack Surge, Remote Work Risks, Patelco Data Breach" target="blank" rel="noopener noreferrer" class="share-icon facebook" title="Share on Facebook">
							

						</a>
						<a href="https://twitter.com/intent/tweet?text=https://dmarcreport.com/blog/podcast/india-cyberattack-surge-remote-work-risks-patelco-data-breach/&url=India Cyberattack Surge, Remote Work Risks, Patelco Data Breach" target="blank" rel="noopener noreferrer" class="share-icon twitter" title="Share on Twitter">
							

						</a>
						<a href="https://media.mailhop.org/dmarcreport/images/2024/08/India-Cyberattack-Surge-Remote-Work-Risks-Patelco-Data-Breach.mp3" target="blank" rel="noopener noreferrer" class="share-icon download" title="Download" download>
							

						</a>
					

				

				

					

						Link						

					

						<input value="https://dmarcreport.com/blog/podcast/india-cyberattack-surge-remote-work-risks-patelco-data-breach/" class="input-link input-link-15302" title="Episode URL" readonly />
					

					<button class="copy-link copy-link-15302" title="Copy Episode URL" aria-label="Copy Episode URL" readonly=""></button>
				

				

					

						Embed						

					

/*! This file is auto-generated */ ’ title=“Embed Code” class=“input-embed input-embed-15302” readonly/>

					<button class="copy-embed copy-embed-15302" title="Copy Embed Code" aria-label="Copy Embed Code"></button>
				

			

				

Hello everyone! We are back again with this week’s edition of **cybersecurity awareness. We will talk about the sudden spike in cyberattack incidents in India. Also, there will be discussions on how the remote work culture is vulnerable to threat actors. Lastly, we will shed light on how 726,000 Patelco customers were affected by ransomware attacks!

Let’s get started!

Rise in cyberattack cases in India- Critical infrastructure worst hit!

India is gradually embracing digitization. However, the South-Asian country is not yet fully prepared to combat cyber threats. Critical infrastructure, such as finance, healthcare, and government sectors, has undergone rapid digitization. Due to a lack of proper cybersecurity mechanisms, Indian infrastructure is now facing a surge in cyberattacks.

As of 2025, DMARC is mandatory under multiple compliance frameworks. CISA BOD 18-01 requires p=reject for US federal domains. PCI DSS v4.0 mandates DMARC for organizations processing payment card data as of March 2025. Google and Yahoo require DMARC for bulk senders (5,000+ messages/day) since February 2024, and Microsoft began rejecting non-compliant email in May 2025. The UK NCSC, Australia’s ASD, and Canada’s CCCS all mandate DMARC for government domains. Cyber insurers increasingly require DMARC enforcement as an underwriting condition.

India is the fifth-most breached country globally. In the Asia-Pacific region, India ranks fourth, with 83% of Indian organizations experiencing at least one cyberattack in the past year._ _He believes that India’s cybercrime legislation is weak and old and that the country requires a robust, relevant cybersecurity mechanism.

According to the Cybersecurity In India: 2024 Global Digital Trust Insights Survey, Indian organizations are currently busy combatting cloud-related cyberattacks (45%), threats to connected devices (35%), hacking incidents and data leaks (36%), and software supply chain compromises (35%).

The penetration of AI at deeper levels is also a concern for India’s threat landscape. Threat actors are already ahead of the game as they have learned how to make the most out of AI. From malware to phishing, threat actors are leveraging AI at multiple levels. Gopalakrishnan believes that the AI skill gap can be a major threat to India, and regular training is a need of the hour to tackle the increasing impact of AI in cyberattacks. The skill gap is the major reason why threat actors are moving ahead of the cybersecurity experts when it comes to AI deployment.

Remote work setup can be an invitation for cyberattackers!

A **work-from-home culture is definitely a preferred choice among most employees. The freedom to work in your PJs and not having to commute daily in the traffic seems like bliss to many.

However, this comfort of working from your own place can put you on the radar of threat actors.

While working on your home PC, you may install any software without vetting it properly, thereby inviting the prying eyes of threat actors and putting your corporate data at high risk.

There are multiple reasons as to why remote work culture is not cyberattack-proof. For example, your home PC is accessible to multiple users- your family, friends and so on. Secondly, your home networking equipment tends to be simple and easy, as compared to your office device. Lastly, remote employees may use public Wi-Fi while working from a fancy cafe, airport etc., and end up becoming an easy target for the threat actors. Cybercriminals can intercept and gain access to your business data.

In this challenging environment,** implementing robust** email authentication protocols such as SPF, DKIM, and DMARC is crucial for enhancing cybersecurity defenses and mitigating the risks of phishing and email spoofing attacks.

Enterprises should take suitable mitigation steps to safeguard corporate data. The focus should be on **controlling and safeguarding the devices in which employees are carrying out business work. For example, one must keep a tab on inbound network traffic. Securing data storage and transportation can also be of great help. Enforcing secure access to work accounts should also be mandatory.

A whopping 726,000 Patelco customers were affected by a massive data breach!

Cyber attack security and data theft activity concept, confidential or financial information stealing from computer with warning message alert, phishing activity on internet access

Patelco Credit Union’s customer data was published recently on the extortion portal by the RansomHub Gang on 15th August 2024. This American not-for-profit organization offers financial services such as credit cards, loans, investments, and so on. Patelco informed about the **ransomware attack last month on 29th June 2024.

The company had to close the customer-facing banking system for more than two weeks. Meanwhile, Patelco was working on data restoration and IT functionality. While disclosing the news about the ransomware attack, Patelco stayed tight-lipped about the data breach. After investigation, it was found that the attackers stole sensitive customer data as well.

Now, Patelco has come up with a list of customer details that were compromised because of the ransomware attack. These include:

• Social Security Numbers (SSNs)

• Full names

• Email addresses

• Date of birth

• Driving license numbers

Notices have been sent to all the affected customers. They will also be provided **complimentary identity protection coverage for 2 years. The last date for enrollment is 19th November 2024. There is also an advisory on the official website of Patelco, which says that the company will never request sensitive details (card details, CVVs, expiration dates, etc.) from customers. Patelco has also urged customers to stay vigilant all the time and keep a tab on any kind of suspicious activities. Since their data has been published online, the risk of social engineering, phishing, and other scams has increased manifolds.

Keep visiting for weekly news updates. Thanks.

Sources

• CISA Binding Operational Directive 18-01
• Microsoft Outlook DMARC Enforcement May 2025 (2025)
• PCI DSS v4.0 - DMARC Requirement (2025)