CERT-In Unveils New Cybersecurity Blueprint to Combat AI-Powered Threats

CERT-In releases a new framework to combat AI-powered cyber-attacks, urging faster patching, stronger defenses, and rapid incident reporting

India’s cybersecurity watchdog, the Indian Computer Emergency Response Team (CERT-In), has introduced a comprehensive framework aimed at helping organizations defend against the rising threat of AI-powered cyber-attacks. The newly released 38-page document outlines strategies to improve threat detection, accelerate incident response, strengthen reporting mechanisms, and reduce exposure to vulnerabilities in critical digital infrastructure.

Faster Patching to Counter AI-Driven Threats

The blueprint, titled “Blueprint for Reducing Exposure and Defending against AI-Assisted Vulnerabilities Exploitation in Digital Infrastructure,” highlights how advances in artificial intelligence have dramatically shortened the time between vulnerability discovery and exploitation. To address this challenge, CERT-In recommends that organizations patch known vulnerabilities affecting internet-facing and mission-critical systems within 12 hours whenever feasible.

The agency further advises that critical externally exposed vulnerabilities should be mitigated within 24 hours, while high-severity vulnerabilities should be addressed within five days. Systems considered high-value assets should have vulnerabilities resolved within three days.

Growing Risks from AI-Powered Cyber Attacks

CERT-In warned that AI-powered cyber-attacks are becoming increasingly sophisticated as threat actors leverage generative AI, large language models, autonomous agents, and automation tools. These technologies enable attackers to conduct rapid reconnaissance, automate vulnerability discovery, launch highly targeted phishing campaigns, and develop adaptive malware capable of evading traditional security controls.

According to the agency, organizations can no longer rely solely on static cybersecurity models or periodic security audits. The rise of autonomous AI agents presents a significant risk, as these systems can potentially automate multiple stages of cyber operations, including reconnaissance, exploitation, privilege escalation, lateral movement, and data theft.

Key Threat Areas Identified

The framework highlights several major threats associated with AI-powered cyber-attacks, including:

• Automated vulnerability discovery and exploit development
• Deepfake-enabled fraud and executive impersonation
• AI-generated malware and malicious scripts
• Large-scale phishing and social engineering campaigns
• Adaptive evasion techniques that bypass conventional defenses
• Attacks targeting AI systems through prompt injection, data poisoning, and model theft

CERT-In also cautioned organizations against unrestricted use of public AI platforms, citing potential security and privacy concerns.

Strengthening Cyber Resilience

To improve preparedness against AI-powered cyber-attacks, CERT-In recommends adopting a “zero trust” security model, implementing multi-factor authentication (MFA), privileged access management (PAM), micro-segmentation, and continuous monitoring.

The agency also emphasized the importance of Software Bills of Materials (SBOMs), AI Bills of Materials (AIBOMs), and related frameworks to enhance transparency across software supply chains.

While the blueprint does not introduce new legal obligations, CERT-In reiterated its requirement that cyber incidents be reported within six hours. The framework signals India’s growing focus on proactive cybersecurity measures as AI continues to reshape the global threat landscape.