The Indian Computer Emergency Response Team (CERT-In) released a blueprint on May 25 outlining strategies for defending against AI-assisted cyber threats, according to medianama.com. The advisory document details measures organisations should adopt to protect themselves from emerging AI-driven attacks.
The blueprint covers nine key areas across 14 sections and provides a three-phase implementation roadmap. It advises organisations to govern AI systems, patch critical vulnerabilities within hours, prepare for deepfake impersonation attacks, and maintain a dedicated AI asset inventory. The document highlights threats such as AI-enabled reconnaissance that accelerates vulnerability exploitation, AI-driven phishing and social engineering using personalised deepfake content, and AI-generated malware that adapts to evade detection.
This release is significant as AI is increasingly used by attackers to automate and scale cyberattacks, compressing timelines from weeks to hours. The advisory aims to help organisations strengthen their cybersecurity posture against sophisticated AI-powered threats, which include executive impersonation and business email compromise at scale. The blueprint’s comprehensive approach reflects growing concerns about AI’s role in evolving cyber risks.
CERT-In’s blueprint is advisory and not mandatory but offers a structured framework for organisations to enhance AI threat defenses. The phased roadmap allows gradual adoption of recommended practices. Stakeholders should monitor how organisations implement these guidelines and whether further regulatory measures follow to address AI-assisted cyber threats comprehensively.