India has witnessed a dramatic rise in cyberattacks targeting government bodies, marking a 138% increase in the number of such incidents from 2019 to 2023. The government’s response to this large increase of cyberattacks, as outlined in a recent report submitted to the Rajya Sabha.
Between 2019 and 2023, the number of cyberattacks on Indian government entities rose sharply from 85,797 in 2019 to 2,04,844 in 2023. This staggering increase highlights a sharp escalation in cyber threats targeting Indian government infrastructure.
Surge in Cyberattacks on Indian Government
According to the Ministry of Electronics and Information Technology, as reported by the Indian Computer Emergency Response Team (CERT-In), the number of cybersecurity incidents recorded for government organizations has been steadily rising each year.
In 2020, the number of cyber incidents dropped to 54,314, but this was followed by a significant uptick in 2021 with 48,285 reported incidents. In 2022, the number surged to 1,92,439, and the trend continued into 2023 with 2,04,844 incidents, a 138% increase over the four-year span.
In response to the increasing cyber threats, the Indian government has emphasized its commitment to improving its cybersecurity posture. Jitin Prasada, the Minister of State in the Ministry of Electronics and Information Technology, assured the Rajya Sabha that measures were being taken to counter these growing threats and safeguard critical government information infrastructure, reported The Tribune.
Measures to Combat Cyberattacks on Indian Government
The government’s efforts to tackle the surge in cyberattacks on government entities are multifaceted. One of the most important steps has been the implementation of policies that require the appointment of Chief Information Security Officers (CISOs) in all central ministries, departments, and state and union territories. This initiative is designed to ensure that there is a dedicated focus on cybersecurity issues at all levels of government.
Additionally, the National Critical Information Infrastructure Protection Centre (NCIIPC) has been established to protect the country’s critical infrastructure from cyberattacks and cyber-terrorism. Under the provisions of Section 70-A of the Information Technology (IT) Act, 2000, the NCIIPC provides vital services such as threat intelligence, situational awareness, alerts, and advisories, which are crucial for preventing cyberattacks.
The National Cyber Coordination Centre (NCCC), implemented by CERT-In, also plays a pivotal role in monitoring cyberspace across the country. The NCCC operates as a central hub, scanning and detecting cyber threats, facilitating coordination between various government agencies to mitigate cybersecurity risks. The NCCC gathers metadata from cyberspace and shares it with relevant agencies, ensuring a timely and efficient response to online threats.
Furthermore, CERT-In has developed a “Cyber-Crisis Management Plan” to manage and respond to cyberattacks, with the plan set to be adopted by all ministries, state governments, and critical sectors. The creation of a specialized response team, the “Computer Security Incident Response Team-Finance Sector,” also aids in containing cybersecurity incidents in the financial sector, ensuring a coordinated national response to cyber threats.
Notable Cyberattacks on Indian Government Infrastructure
The rise in cyberattacks on government organizations has not been limited to small-scale incidents. In September 2023, during the G20 summit in New Delhi, Indian cybersecurity agencies successfully thwarted a massive cyberattack aimed at the official G20 summit website. The attack involved 16 lakh cyber intrusions per minute, primarily in the form of Distributed Denial of Service (DDoS) attacks, which have become a major concern for internet security worldwide.
In addition to this high-profile attack, India has faced a series of cybersecurity incidents over the past few years. From 2020 to 2022, the government reported 492 instances of phishing and smishing attacks, 35 ransomware incidents, and 151 cases of hacking involving government websites and departments. One of the most disruptive attacks in recent years occurred in late 2022 when hackers paralyzed the servers of All India Institute of Medical Sciences (AIIMS), New Delhi. This attack disrupted healthcare services at India’s top government hospital for nearly two weeks.
Conclusion
The surge in cyberattacks on Indian government entities highlights the critical need for enhanced cybersecurity measures. As these attacks become increasingly sophisticated and frequent, they pose a serious threat to national security and economic stability.
While India has made strides in strengthening its cybersecurity defenses, the rising complexity and frequency of these cyber threats indicate that much more needs to be done.
Moving forward, it is essential for the Indian government to prioritize cybersecurity, investing in advanced capabilities and response strategies to protect against online threats and ensure the country’s preparedness for future digital challenges.
