SEBI Introduces Cyber-Suraksha.ai Task Force to Counter AI-Driven Cybersecurity Risks

The Securities and Exchange Board of India (SEBI) has issued a circular dated May 05, 2026, under Section 11(1) of the SEBI Act, 1992, announcing the introduction of Emerging Advanced Artificial Intelligence (AI) Tools for Vulnerability Detection (like Mythos).

This circular has been issued with an aim to protect investors and reinforce the cybersecurity framework of India’s securities market. SEBI has cautioned financial market entities about the growing new dimensions of risks from advanced AI tools used for vulnerability detection. These key concerns include data confidentiality, application integrity, and reliability of outputs.

In order to prevent a cascading impact, a periodic coordinated approach, information sharing and monitoring/assessment are required due to the interdependency of market participants. According to SEBI, these AI-powered tools are fast in identifying weaknesses in systems, which can ultimately lead to an increase in the chances of cyberattacks, data leaks, and misuse of sensitive information.

To overcome these risks, SEBI has formulated a task force named “cyber-suraksha.ai”. This force includes representatives from Market Infrastructure Institutions (MIIs), Qualified Registrars and Transfer Agents (QRTAs), and other regulated entities. The work of this task force is to study and analyse cybersecurity risks associated with AI models, share threat intelligence, recommend best practices, and review the cybersecurity preparedness of third-party vendors and service providers.

Market participants are being encouraged by SEBI to adopt stronger cybersecurity measures such as Zero Trust Network Access (ZTNA), maintain updated asset inventories, and perform regular risk assessments, including AI-related threat scenarios.

Refer to the official circular for complete information.