Practitioner-grade cybersecurity content
Technical playbooks, war stories, and how-to-think guides — written by practitioners, anchored to the Indian context.
Want structured, step-by-step learning instead? Explore the Academy (guided courses) or the AI security hub.
Latest articles
Most recent practitioner playbooks across every track. Filter by topic in the sidebar, or use search.
Credit Card Fraud Detection at Scale: Rules + ML in Real-Time
Credit card fraud detection pipeline at issuer-bank scale — rule engine high-leverage rules, ML feature engineering, challenge mechanism, RBI Customer Protection alignment,…
Blue TeamInsider Threat in Indian BFSI: Detection, UEBA, HR Coordination
Insider threat categories (malicious, negligent, compromised, departed). Detection SQL queries for anomalous access and outbound. UEBA + DLP + HR/Legal coordination workflow.…
Blue TeamATM and POS Skimming Investigations in 2026
ATM / POS skimming variants in 2026 — overlay devices, deep-insert skimmers, POS terminal manipulation, Magecart e-commerce skimming. Detection SQL queries, investigation…
ComplianceNPCI Incident Response for Payment Aggregators
PA / PG cyber incidents trigger multi-regulator notification (RBI + CERT-In + NPCI + card networks + merchants + customers). PA-specific risks,…
ComplianceSEBI CSCRF Incident Reporting Workflow
SEBI CSCRF incident reporting via Compliance Portal — fields, ATT&CK mapping requirement, attached PDF report structure, decision tree, MII-specific obligations.
ComplianceRBI IT Outsourcing Incident Response: When Vendor Cyber Incidents Become Yours
RBI Master Direction on IT Outsourcing makes vendor incidents your incidents. Contractual prerequisites (4-hour notification, forensic access), playbook for vendor-side incidents, vendor…
ComplianceRBI Cyber Incident Reporting: The 2-6 Hour Playbook
RBI's cyber-incident reporting timelines (2-6 hours) demand a pre-built playbook. Pre-drafted email templates, decision tree, multi-regulator coordination matrix, common mistakes.
Security GuidesUPI Fraud Patterns in 2026: Collect-Request, QR-Swap, SIM-Swap
Dominant UPI fraud patterns — collect-request scams, QR-swap at merchants, SIM-swap leading to OTP capture, KYC scams, mule account chains. NPCI controls…
Security GuidesCustomer Account Takeover (ATO) in Indian Banking: Kill Chain and Detection
The 7-step ATO kill chain — credentials, auth, OTP capture, account exploration, beneficiary addition, transaction, mule chain. SQL detection at each step…
Security GuidesIndian BFSI Threat Actor Landscape 2026
Four threat-actor categories targeting Indian BFSI in 2026 — financially-motivated ransomware (RansomHub, Akira), BEC / wire-fraud groups, nation-state aligned APTs, insider threats.…