Cyber Security – CERTs, Policy, etc

35% of cyber attacks on Indian sites from China: official reportDOMRPrelims OnlyPriority 1


Mains Paper 3: Internal Security | Cyber Security

From UPSC perspective, the following things are important:

Prelims level: Highlights of the report

Mains level: Rising threat of cyber attacks and data leakages


CERT-In Report on Cyber Attacks

  1. The report, prepared by the Indian Computer Emergency Response Team (CERT-In), which comes under the ministry, analysed cyber attacks from April-June 2018.
  2. It said that the maximum number of cyber attacks on official Indian websites is from China, US and Russia.
  3. It has also flagged the possibility of “malicious actors from Pakistan using German and Canadian cyberspace for intruding into Indian cyberspace and carrying out malicious activities”.

Highlights of the report

  1. According to the report, it has been observed that China continues to “intrude” Indian cyberspace in a significant way.
  2. The cyber attacks from China made up 35% of the total number of cyber attacks on official Indian websites, followed by US (17%), Russia (15%), Pakistan (9%), Canada (7%) and Germany (5%).
  3. They are targeting by sending spear phishing emails with malware attachments.
  4. Phishing attacks are usually in the form of an email from a trusted source where they ask for personal details such as bank details personal details, passwords.
  5. Many of the institutions impacted by the malicious activities have been identified, and they have been advised to take appropriate preventive action.
  6. These include ONGC, NIC, and IRCTC, Railways, Centre for Railway Information Systems (CRIS) and some banks like PNB, Oriental Bank of Commerce, SBI and state data centres, particularly in Maharashtra, Madhya Pradesh and Karnataka.

About CERT-In

  1. CERT-In is the nodal agency which deals with cyber security threats like hacking and phishing.
  2. It collects, analyses and disseminates information on “cyber incidents”, and also issues alerts on “cyber security incidents”.
  3. The activities relating to intruding into the cyberspace are being regularly monitored.

Leave a Reply

Please Login to comment
Notify of