NEW DELHI: Indian government preparedness in wake of a cyber attack is weak and institutions responsible for identifying and neutralising the threat are unable to take stock of the situation, The Wire revealed in an investigative story.
According to the paper, earlier this year cyber-security firm Symantec stated that it had traced breaches of several Indian organisations mostly financial to a cyber-espionage group called Suckfly, and a week after this revelation another cyber-security firm, Kaspersky Lab shared information of cyber attack on Indian government systems through diplomatic entities.
Suckfly targeted information systems belonged to the central government, a large financial institution, a vendor to the largest stock exchange and an e-commerce company. The espionage activity began in April 2014 and continued through 2015, Symantec said.
It is not unusual for large financial institutions and government networks to face such threats but these attacks on Indian networks were unique in nature as these breaches were reported by third parties while the ‘targets (in this case, Indian organisations and the government) themselves have remained silent’.
The report stated that despite several attempts seeking more information about the attacks there was no or little response from the affected organizations.
‘This collective lack of response across the board indicates a mindset that shows unpreparedness for the cyber threats that are very real, existent and ongoing.’
The Wire report shared a security analysis by KPMG and the Confederation of Indian Industry, published in August: “While traditionally cyber attacks were largely used for causing financial and reputational loss, today they have a potential of posing a threat to human life.”
The Indian government’s Computer Emergency Response Team (CERT-IN), which is responsible for ‘responding to computer security incidents’ has no details to share regarding the latest attack. As of September 12, the website of CERT-IN does not mention the exploits used by Suckfly and Danti and any organization relying on it ‘would be in dark and exposed to breach’.
From mandatory disclosures, to improving CERT-IN’s functioning and transparency, there is much to be done in the event of future cyber attacks, the report added.
-
Pam Bondi, dubbed Trump's Ghislaine Maxwell, gets fired -
Macron slams Trump: ‘Neither elegant nor up to standard’ over mockery -
Storm Dave: Everything you need to know to stay safe this Easter weekend -
Brazil approves law giving separated couples joint custody of pets -
'Poisoned' Mount Everest climbers expose guides' million-dollar fraud scheme -
NASA Artemis II historic rocket launch: Spacecraft successfully enters Earth orbit -
Vanessa Trump remains loyal to Tiger Woods after DUI arrest: Report -
Pink moon 2026: when to see April’s full moon and why it won’t look pink in the sky
-
Reese's Peanut Butter Cups to return to classic chocolate recipe following public backlash -
TDSB vice principal jobs cut as board removes 40 roles amid funding loss, enrolment decline
-
Earthquakes hit Indonesia off Ternate, triggering tsunami warning that is now lifted
-
NASA Artemis II rocket launch: Canada’s Jeremy Hansen makes history in first lunar mission in decades
