In a recent report by the Indian Computer Emergency Response Team (CERT-In), concerning data on cyber attacks from April-June 2018, it has been revealed that the majority of cyber attacks on official Indian websites originate from China, followed by the US and Russia. This report has been submitted to the National Security Council Secretariat (NSCS) and other security agencies for further analysis and subsequent action.
Cyber Attacks: Geographical Spread
As per CERT-In’s findings, a significant portion (35%) of all cyber attacks on Indian websites comes from China, with the United States (17%), Russia (15%), and Pakistan (9%) following suit. The list is rounded off by Canada and Germany, responsible for 7% and 5% of attacks respectively. It is important to note that these attacks often use trusted sources to ask for sensitive information such as bank details and passwords, typically employing phishing emails with malware attachments.
Intruding Activities Linked To Pakistan
The report highlights some peculiar intruding activities originating from Canadian and German cyberspace. These are suspected to be masterminded from Pakistan targeting Indian websites. A number of institutions affected by these malicious activities have been issued preventive advice. The list includes major names like Oil and Natural Gas Corporation (ONGC), multiple banks, and state data centres.
Role of CERT-In
CERT-In, operating under the Ministry of Electronics and Information Technology, Government of India, provides crucial services to safeguard India’s cyberspace. It serves as the focal agency in addressing cybersecurity threats such as hacking and phishing. In addition to collecting, analysing, and circulating information on cyber incidents, CERT-In also issues alerts on cybersecurity incidents and provides Incident Prevention and Response Services as well as Security Quality Management Services.
Government Initiatives For Cyberspace Security
To formulate a secure and resilient digital environment, the government launched the National Cyber Security Policy in 2013. The policy is crafted with the intent to protect cyberspace information and infrastructure, build aptitudes for responding to cyber attacks, and limiting damages through collaborative efforts of institutional structures, people, processes, and technology.
Cyber Swachhta Kendra: A Step Towards Cyber Security
In an effort to curb cyber security violations and prevent their proliferation, CERT-In launched the ‘Cyber Swachhta Kendra’ in 2017. This novel initiative aims at providing both desktop and mobile security solutions for cyber security in India while also creating mechanisms for security threats and responses.
National Computer Emergency Response Team (CERT-In) As Nodal Agency
CERT-In operates as the central agency coordinating all cybersecurity efforts, emergency responses, and crisis management. The importance of this role was underscored in 2014 when the Prime Minister’s Office created the position of the National Cyber Security Coordinator. Furthermore, the National Critical Information Infrastructure Protection Centre (NCIIPC), a governmental body formed under Section 70A of the Information Technology Act, 2000 (amended in 2008), works closely with CERT-In to strengthen India’s cybersecurity measures.