India's cybersecurity landscape | Jan-June review

As we cross the halfway mark of this year, we need to evaluate and understand the rising complexity of cyberthreats that are transforming our digital landscape.

From disruptive phishing campaigns to AI-exploited threats, cybercrime in India is escalating. Yet, amid the whirlwind of high-profile data breaches, we witness the resilience of our digital fortress with proactive measures from government agencies, businesses, and individuals. In this post, we will look into key events, trends, and initiatives shaping India’s cybersecurity trajectory. Let us delve in!

The state of cybersecurity in India

Rolling into the midpoint of 2023, India’s cybersecurity landscape is evolving rapidly in response to increasing cyberthreats. A sharp rise in cyberattacks on Indian government bodies, beginning in late 2022, includes the notable breach of All India Institute of Medical Sciences-Delhi servers. The alarm this rings has led to beefed up efforts from the Ministry of Home Affairs, with cyber-forensic training for officers ramping up in preparation of an anticipated spike in cybercrime. In addition to the usual phishing campaigns, cybercriminals now leverage AI technology, empowering those with minimal technical expertise to create malware using natural language processing tools.

In response to these challenges, the Ministry of Electronics and Information Technology has adopted a proactive strategy by proposing a rule that requires social media platforms to delete content that has been flagged as false by the fact check unit of the Press Information Bureau.[1] To strengthen the sector further, the 2023 cybersecurity budget saw a hike, with ₹625 crores allocated towards cybersecurity projects and the Indian Computer Emergency Response Team (CERT-In).[2]

However, the cybersecurity struggle does not end there. The rise in sophisticated Unified Payments Interface (commonly known as UPI), the software from the National Payments Corporation of India, related scams, and the surge in data breaches emphasize the evolving nature of cybercrime. Hackers are stepping up their game, with some seeking advanced fraud technique training from established cybercrime networks in Nigeria and then setting up shop in India.[3]

India’s cybersecurity challenges: Key incidents this year

In the first half of 2023, India has witnessed several key cybersecurity incidents, from financial frauds to data breaches. These episodes put the spotlight on the importance of cyberdefense strategies.

The Odisha Economic Offenses Wing arrested 60 fraudsters involved in a diverse financial hoax, including online scams, that yielded ₹100 crore.[4] The Kangra Co-operative Bank fell victim to a ₹7.79 crore cyber fraud, highlighting the pressing need for stronger cybersecurity in the banking sector.[5]

In another incident, a major data breach hit the Ministry of Health and Family Welfare. A notorious hacking group called Phoenix allegedly breached the Health Management Information System, jeopardizing sensitive data across the nation’s hospitals.[6] Simultaneously, a scam targeted Indian investors, exploiting the rising popularity of cryptocurrencies. Phony platforms lured unsuspecting investors into parting with over ₹1,000 crore, underscoring the need for heightened investor awareness within the crypto space.[7]

These incidents expose the multi-layered challenges faced by India in the realm of cybersecurity. From the financial sector to critical infrastructures, the threats are manifold, and the potential consequences are severe.

Emerging cyberthreats in 2023

Adapting to the evolving digital terrain, cybercriminals are honing their craft and exploiting emerging vulnerabilities. A notable cyberthreat of 2023 is the exploitation of popular software and applications. For instance, CERT-In flagged vulnerabilities in Microsoft Windows and Google Chrome exposed millions of users to the risk of unauthenticated remote attacks and sensitive data theft, highlighting the urgent need for regular software updates and rigorous digital hygiene practices.[8]

Another emergent concern is the misuse of AI tools, such as ChatGPT, for crafting sophisticated phishing attacks. Cybercriminals use AI-generated content to create persuasive phishing emails and messages, leading to unwary individuals or organizations sharing sensitive information or installing malware. IoT has also proven a fruitful ground for cyberthreats. With India’s move towards smart cities, IoT vulnerabilities pose serious security challenges.

Lastly, an alarming trend of fake loan apps is gaining momentum. These apps exploit gullible users seeking small loans. They access personal data such as contacts and photo galleries, and use the threat of leaking this information as a method to intimidate and exploit users.[9]

Response to cyberthreats: Initiatives, strategies, and collaborations

In the face of escalating cyberthreats, India’s cybersecurity landscape is witnessing an impressive response. Different entities, from businesses and individuals to the government, are joining forces to implement potent strategies to safeguard their digital domain.

One notable initiative is the collaboration between national security agencies and the Defence Cyber Agency for rigorous cyber defense exercises.[10] Additionally, the Union Home Ministry has established a dedicated helpline to aid individuals defrauded by cyber scams. This initiative not only aims to block stolen funds and refund victims within 24 hours, but also to raise awareness about the importance of not sharing sensitive information online.[11]

Taking a step further, initiatives such as the National Counter Ransomware Task Force reflect India’s proactiveness in countering specific threats like ransomware. Alongside the International Counter Ransomware Task Force’s formation, involving nations like Australia, the United Kingdom, and the United States, exemplify India’s willingness to collaborate at the global level for stronger cybersecurity.[12]

Simultaneously, Indian businesses and individuals are adopting a proactive stance against cyberthreats. Embracing online courses offered by entities like the Defence Research and Development Organisation on cybersecurity and AI is helping equip them with the necessary expertise.[13]

Innovative tools like USB Pratirodh and AppSamvid, designed to provide greater control and protection against malware, reflect India’s tech-enabled approach to cybersecurity. The game-changing Artificial Intelligence and Facial Recognition powered Solution for Telecom SIM Subscriber Verification, more commonly known as ASTR, is a facial recognition tool developed to combat fraudulent mobile connections. It showcases the advanced tech adoption in India’s cybersecurity landscape.[14]

Trends and predictions: What to expect in the second half of 2023

As criminals harness advanced technologies like AI and ML, we can expect a marked increase in sophisticated cyberattacks. Organizations must respond by integrating these same technologies into their cybersecurity strategies, proactively identifying and mitigating potential threats.

The second wave of technology disruption, fueled by the rollout of 5G services and increased use of cloud computing, is likely to amplify cybersecurity risks. The second half of 2023 will likely see a rise in attacks on social media platforms, the spread of fake mobile applications, and even the exploitation of AI applications. Moreover, with a billion people’s data stored online, cybersecurity measures for government ICT infrastructure and public digital platforms are more vital than ever.

As the threat landscape expands to include power grids, transportation systems, and other IoT devices, the costs associated with cybercrime will rise exponentially. Concurrently, the regulatory landscape will also shift. We anticipate stricter cybersecurity frameworks from bodies like the Securities and Exchange Board of India, the Insurance Regulatory and Development Authority of India, and others to address this rising threat.

However, a silver lining is the fact that India, as the current G20 presidency holder, is paving the way for international cybersecurity cooperation. We also anticipate an increased demand for skilled cybersecurity professionals and an exciting potential for job growth in this field. With this comes the opportunity to bridge gender and regional diversity gaps in the workforce, enriching our cyberdefense with varied perspectives.

In conclusion, as we take stock of the first half of 2023, clearly the cybersecurity landscape in India is both exciting and demanding, filled with vast opportunities and challenging threats. As we stand in the face of ever-evolving cyberthreats from the rise of AI-exploited risks to sophisticated scams, we also note the powerful steps taken by India to strengthen its digital defenses. It is clear that government initiatives, corporate efforts, and individual awareness are all key in bolstering the country’s cybersecurity.

Amidst the complexity of this landscape, we are reminded that cybersecurity is a shared responsibility. Whether you are an individual or part of a large organization, staying informed and proactive is a must to navigate the digital era safely. Regular software updates, cautious online behavior, and the adoption of advanced security solutions, like ManageEngine Log360, will play a significant role in fortifying your organization’s digital assets.

Remain vigilant, stay informed, and explore Log360, a comprehensive SIEM solution to secure your environment. Log360 performs the three major types of threat detection―security event threat detection, network threat detection, and endpoint threat detection. Discover more on your own with a free, 30-day trial download, or schedule a free product demo with one of our solution experts to see Log360 in action and receive answers to your questions. The cybersecurity battle is tough, but together, we can triumph.