Cyberattacks Now Physical Risks
Security leaders warn cyber threats are evolving from data theft into attacks that can cause physical harm—targeting power, healthcare and critical infrastructure with potentially life‑threatening consequences. Reports also detail China‑linked actors planting stealth malware deep in global telecom networks, underscoring systemic exposure across the stack. (m.economictimes.com) (ciso.economictimes.indiatimes.com)
Deloitte’s cyber lead Gaurav Shukla noted the global population of roughly 8 billion is surrounded by over 30 billion IoT sensors—an average of more than 3.5 sensors per person. (economictimes.indiatimes.com) (economictimes.indiatimes.com) Deloitte said it is advising about 24 countries on building their own versions of India’s Digital Public Infrastructure (India Stack), and noted DPI already accounted for roughly 80% of India’s digital payments in January. (economictimes.indiatimes.com) (economictimes.indiatimes.com) Deloitte opened a 4,500‑sq‑ft ConnectSafe cybersecurity facility on March 10, 2026 to simulate live attack scenarios across automotive, healthcare, manufacturing and other connected OT/IoT environments. (ciol.com) (ciol.com) Deloitte’s cyber practice has been growing at about a 33% compound annual growth rate over the past four to five years, and the firm said it intends to continue that trajectory through FY2030. (businessworld.in) (businessworld.in) Rapid7 Labs published a March 26, 2026 investigation attributing a long‑term campaign to a China‑nexus actor tracked as “Red Menshen,” which embedded stealthy BPFdoor implants as persistent sleeper cells inside global telecommunications infrastructure. (rapid7.com) (rapid7.com) Security researchers and reporting show BPFdoor leverages the Berkeley Packet Filter to run as a kernel‑level backdoor that can be activated via specially crafted packets and avoid traditional C2 visibility, a technique first observed in related campaigns dating back to 2021. (trendmicro.com) (trendmicro.com) Rapid7 and follow‑on reporting say the campaign’s objective appears to be long‑term intelligence collection—giving adversaries visibility into signaling, subscriber identifiers and authentication flows across multiple countries—rather than immediate disruption. (cybersecuritydive.com) (cybersecuritydive.com) U.S. and allied authorities warned in a CISA advisory (AA25‑239A, last revised Sept. 3, 2025) that PRC‑linked actors focus on backbone, provider‑edge and customer‑edge routers and have modified routers to maintain persistent access inside telecom networks. (cisa.gov) (cisa.gov)
