#FactCheck: Old clip of Greenland tsunami depicts as tsunami in Japan

India’s cities are rapidly embracing digital technologies, transforming the way essential urban services operate. From traffic management and water supply to online grievance redressal, connected systems are making city life more efficient. As the Prime Minister has emphasised, smart cities are not just a fancy  concept; they aim to ensure basic services, including housing and infrastructure for the urban poor, are delivered comprehensively and equitably.

But improved cybersecurity has become essential with th increasing reliance on digital systems in daily life. A single breach in digital public systems could jeopardise citizen data and interrupt vital services. In light of this, MoHUA organised the National Conference on Making Cities Cyber Secure in collaboration with MHA and MeitY. This is in spirit with the goal of Digital India, which is to create a safer online environment for all.  More than 300 representatives from Central Ministries, National Cybersecurity Agencies, State Governments, State IT and Urban Development Secretaries, Additional Director Generals, Municipal Commissioners, CEOs of Smart Cities, and representatives from organisations like CERT-In, NCIIPC, I4C, and STQC attended the conference.

Key Initiatives Presented

MoHUA showcased a series of city-level cybersecurity initiatives designed to create a common framework for all smart cities. These include:

• Mandatory appointment of Chief Information Security Officers (CISOs) at city level which maintain and oversee the security of digital infrastructure in smart cites 
• Completion of regular cybersecurity audits to identify and address vulnerabilities in there seem 
• Consistent Risk Management Across Services: A structured approach to risk management will be used so that critical areas like traffic systems, utilities and public services all follow the same high standards of protection.

CISOs and Cybersecurity Frameworks

At the conference,  the Union Home Secretary underscored a clear message: every city needs its own Chief Information Security Officer (CISO) backed by a capable technical team. This isn’t just a box-ticking exercise. A dedicated CISO brings focus to meeting national security norms, coordinating quick responses to cyber incidents, and lifting the overall level of cyber hygiene in the city.

Naming a single officer also creates accountability and gradually builds local expertise instead of constant dependence on outside consultants. Over time, this leadership position can help cities develop their own in-house capacity to manage the increasingly complex digital systems that keep public services running.

The SPV Dimension: Beyond Implementation

An important theme of the conference was the future of Special Purpose Vehicles (SPVs)(SPVs means government-backed companies set up under the Companies Act, 2013 with joint shareholding between State/UT administrations and Urban Local Bodies to implement the Smart Cities Mission) which have been the implementing arms of the Smart Cities Mission. Drawing from Advisory No. 27 (June 2025), stakeholders discussed repositioning SPVs as dynamic, innovation-driven bodies capable of supporting long-term urban development beyond the initial project phase.

Key points included:

• Expanding SPVs’ role in consultancy, investment facilitation, technology integration, and policy research.
• Ensuring SPVs act as hubs of expertise and innovation, rather than just project managers.
• Aligning SPV functions with the evolving cybersecurity and technology needs of urban local bodies.

This expanded mandate could allow SPVs to become sustainable institutions that continuously support cities in managing digital risks and adopting new technologies responsibly.

Building a Culture of Cyber Preparedness

One clear takeaway from the conference was that cybersecurity can’t just be added on later — it needs to be part of every step in the digital planning process, from purchasing technology and designing systems to daily operations. Experts from the Intelligence Bureau (IB) pointed out that as more government services go online, the potential risks grow, and cities must always be ready to respond. They  highlighted emerging cyber risks linked to the rapid digitisation of governance. 

Some of the practical steps highlighted included regular security audits, penetration testing, staff training, and campaigns to raise awareness among citizens. Equally important to have CISO which lead cybersecurity and  creating strong communication channels between city teams, state agencies, and national cybersecurity bodies, so that information is shared promptly and responses can be coordinated effectively

Conclusion

The Ministry of Home Affairs’ directive on strengthening cybersecurity in smart cities represents a major milestone in safeguarding India’s urban digital infrastructure and shows the government's proactive step in cybersecurity . By mandating the appointment of Chief Information Security Officers (CISOs), enforcing regular audits, and promoting structured risk management, the MHA has set clear expectations for city administration. The conference also highlighted the evolving role of Special Purpose Vehicles (SPVs) in supporting long-term technological resilience. Embedding cybersecurity at every stage of planning, from system design to daily operations, signals a shift toward a culture of proactive defence. As highlighted by the Intelligence Bureau, emerging cyber risks linked to the rapid digitisation of governance make robust cybersecurity measures the need of the hour for India’s smart cities.

1. https://www.pib.gov.in/PressReleasePage.aspx?PRID=2146180 
2. https://www.pib.gov.in/PressReleasePage.aspx?PRID=2135474 
3. https://m.economictimes.com/news/economy/infrastructure/pm-narendra-modi-launches-smart-city-projects/articleshow/52916581.cms 
4. https://the420.in/mha-orders-stronger-cybersecurity-in-smart-cities/ 
5. https://www.newindianexpress.com/nation/2025/Sep/20/tighten-cyber-security-measures-in-smart-cities-mha-to-housing-ministry 

‍

Introduction

In today’s digital age, everyone is online, so is the healthcare sector worldwide. The latest victim of a data breach is Hong Kong healthcare provider OT&P Healthcare, which has recently suffered a data loss of 100,000 patients that exposed their medical history, and caused concern to the patients and their families. This breach has highlighted the vulnerability in the healthcare sector /industry and the importance of cybersecurity measures to protect sensitive information. This blog will explore the data breach, its impact on patients and families, and the best practices for safeguarding sensitive data.

Background: On 13 March 2023, an incident took place where the Cybercriminals deployed a variety of methods to breach the data, which included phishing attacks, malware, and exploiting software vulnerabilities. OT&P Health Care exploits the sensitive data of the patients. According to OT&P Healthcare, it is working together with law enforcement and has hired a cybersecurity firm to investigate the incident and tighten its security procedures. Like other data breaches, the inquiry will most certainly take some time to uncover the actual source and scope of the intrusion. Regardless of the cause of the breach, this event emphasises the significance of frequent cybersecurity assessments, vulnerability testing, and proactive data protection measures. Considering the dangers in the healthcare sector must be cautious in preserving the personal and medical records of the patients as they are sensitive in nature.

Is confidentiality at stake due to data breaches?

Medical data breaches represent a huge danger to patients, with serious ramifications for their privacy, financial security, and physical health. Some of the potential hazards and effects of medical data breaches are as follows:

• Compromise of patient data: Medical data breaches can expose patients’ sensitive information, such as their medical history, diagnoses, treatment, and medication regimens. If history is highly personal and reaches the wrong hands, it could harm someone’s reputation.
• Identity theft: the data stolen by the cybercriminals may be used by them to open credit accounts and apply for loans, Patients can suffer severe financial and psychological stress because of identity theft since they may spend years attempting to rebuild their credit and regain their good name.
• Medical Fraud: Medical data breaches can also result in medical fraud, which occurs when hackers use stolen medical information to charge insurance companies for services that were not performed or for bogus treatments or procedures. Medical fraud may result in financial losses for patients, insurance companies, and individuals obtaining ineffective or risky medical care.

Impact on patients

Data breach does not cause financial loss but may also profoundly impact their mental health and emotional well-being. let’s understand some psychological impacts:

• Anxiety and Stress: Patients whose medical data has been affected may experience feelings of stress and anxiety as they worry about the potential consequences of the data loss can be misused.
• Loss of faith: Patients may lose faith in their healthcare providers if they believe their personal and medical information needs to be properly As a result, patients may be reluctant to disclose sensitive information to their healthcare professionals, compromising the quality of their medical care.
• Sense of Embarrassment: Patients may feel disregarded or ashamed if their sensitive medical information is revealed, particularly if it relates to a sensitive or stigmatised This might lead to social isolation and a reluctance to seek further medical treatment.
• Post-Traumatic Stress Disorder (PTSD): Patients who have experienced a data breach may have PTSD symptoms such as nightmares, flashbacks, and avoidance behaviour. This can have long-term consequences for their mental health and quality of life.

Legal Implications of Data Breach

Patients have certain legal rights and compensations when a healthcare data breach occurs. Let’s have a look at them: –

• Legal Liability: Healthcare providers have a legal obligation to protect data under various privacy and security laws if they fail to take appropriate measures to protect patient data, they may be held legally liable for resulting harm.
• Legal recourse: Patients whose healthcare data leak has impacted them have the legal right to seek compensation and hold healthcare providers and organisations This could involve suing the healthcare practitioner or organisationresponsible for the breach.
• Right to seek compensation: the patients who have suffered from the data loss are liable to seek compensation.
• Notifications: As soon as a data breach takes place, it impacts the organisation and its customers. In this case, it is the responsibility of the OT&P to
• notify their patients about the data breach and inform them about the consequences.
• Take Away from OT &P Healthcare Data Breach: with the growing data breaches in the healthcare industry, here are some lessons that can be learned from the Hong Kong data breach.
• Cybersecurity: The OT&P Healthcare data breach points to the vital need to prioritisecybersecurity in healthcare. To secure themselves, hospitals and the healthcare sector must use the latest software to protect their data.
• Regular risk assessments: These assessments help find system vulnerabilities and security issues. This can assist healthcare providers and organisationsin taking the necessary actions to avoid data breaches and boost their cybersecurity defences.
• Staff Training: Healthcare workers should be taught cybersecurity best practices, such as detecting and responding to phishing attempts, handling sensitive data, and reporting suspected security breaches. This training should be continued to keep workers updated on the newest cybersecurity trends and threats.
• Incident Response Strategy: Healthcare providers and organisations should have an incident response policy in place to deal with data breaches and other security concerns. This strategy should include protocols for reporting instances, limiting the breach, and alerting patients and verified authorities.

Conclusion

The recent data breach in Hong Kong healthcare impact not only the patients but also their trust is shaken. As we continue to rely on digital technology for medical records and healthcare delivery, it is essential that healthcare providers and organisations take proactive steps to protect patient data from cyber-attacks and data breaches.

References

https://www.marketing-interactive.com/otp-healthcare-apologises-over-data-breach-patients-reportedly-impacted

https://www.scmp.com/news/hong-kong/health-environment/article/3219827/personal-data-medical-history-100000-patients-may-have-been-leaked-cyberattack-hong-kong-healthcare

https://www.teiss.co.uk/news/hong-kongs-otp-healthcare-exposes-the-medical-history-of-100000-patients-12170

Executive Summary:

Amid the ongoing conflict between the United States, Israel, and Iran, a video circulating widely on social media claims to show American soldiers kneeling and surrendering to Iranian forces. In the clip, several soldiers appear to be sitting on their knees in front of armed personnel, creating the impression that they have been captured on the battlefield.

The video is being shared with the claim that the Iranian military has taken US soldiers prisoner during the war.

However, an research by the CyberPeace found that the claim is false. The viral clip is not authentic and has been generated using artificial intelligence. There is no credible evidence to support the claim that American soldiers have been captured by Iranian forces.

‍

Claim

‍

A Facebook user named “News Tick” shared the video on March 12, 2026, claiming that Iran had released footage of captured US soldiers. In the clip, the soldiers can be seen kneeling while armed personnel stand around them, giving the scene a highly dramatic appearance.

• https://www.facebook.com/reel/1619184822538210 

‍

‍

Fact Check

‍

To verify the claim, we first searched the internet using relevant keywords. We found no credible reports from reputable news organizations confirming that US soldiers had been captured by Iran during the conflict. A closer examination of the video revealed several visual inconsistencies. The weapons carried by the soldiers appear unclear and oddly shaped. Additionally, the background looks unusually blurred and overly dramatic. The lighting and textures in the footage also appear artificial—common indicators of AI-generated visuals.

To confirm this suspicion, we analyzed the clip using multiple AI detection tools. The tool Hive Moderation indicated a 99% probability that the video was created using artificial intelligence.

‍

‍

‍

Further analysis using Sightengine also suggested that the video was likely AI-generated, estimating an 80% probability of AI creation.

‍

‍

Conclusion

‍

Our research shows that the viral video claiming to depict American soldiers surrendering and being captured by Iranian forces is fake. The footage has been generated using AI and does not represent a real incident.

‍