CERT-In mandates AI testing and faster patching for Indian firms
India's top cybersecurity agency, CERT-In, just dropped new guidelines to help tech companies keep up with fast-evolving AI threats.
Now, hardware makers, software developers, cloud services, and managed IT firms have to use AI tools to test their security, and they're required to report big vulnerabilities right away and roll out fixes faster.
The goal: stay one step ahead as hackers use AI to find and exploit weaknesses more quickly than ever.
Vendors must track full tech stacks
A big part of the update is making vendors track everything in their tech stack (software, hardware, cryptography tools, AI parts, and third-party add-ons) to spot risks early.
Industry leaders are backing the move; Atul Arya, founder and CEO of Blackstraw. AI, called out how "This advisory solves the immediate problem well, faster patching and real visibility into what organizations are running is exactly what's needed against AI-accelerated attacks."
As Sunil Sharma, managing director and vice president-sales (India & Saarc) at Sophos, put it: "Attackers are not waiting for vendors to get their house in order."