wordpress blog stats
Connect with us

Hi, what are you looking for?

Cyber attacks on critical infrastructure increased during pandemic: Ajit Doval

Ajit Doval

“Various advanced persistent threat [APT] groups became more active targeting our critical infrastructures,” National Security Advisor Ajit Doval said. Phishing campaigns that used COVID-19 related themes to target government, defence and critical infrastructure surged during this period. A number of accounts of Indian government officials and government websites were targeted using spear phishing tactics — targeted phishing campaigns that try to get the victims to give up confidential information by masquerading as trusted senders or companies.

More than 5,000 malicious domains and websites were registered in a short period of time, Doval said. A number of fraudulent UPI IDs and web portals were also created. For instance, within a few hours of the announcement of PM CARES Fund, “several fake Aarogya Setu apps popped up to exploit people’s data”, he said.

The National Security Advisor also said that companies must report any breaches, and have a responsibility to protect both company and consumer data.

These remarks were made in his keynote address at c0c0n, an annual cybersecurity conference organised by the Kerala Police, Information Security and Research Association, and Society for the Policing of Cyberspace (POLCYB).

‘Scale of audits, risk assessments reduced’

“Due to lockdown, audits and risk assessments could not be conducted at requisite scale, thus reducing the protection posture of critical information infrastructure,” Doval said. This problem was exacerbated by the lack of chief information security officers (CISOs) in different organisations, he said.

Advertisement. Scroll to continue reading.

Doval further said that “lack of indigenous apps and solutions, for example lack of collaborative platforms, video conferencing, data sharing facilities, social media platforms, etc. has adversely affected our self-reliance and overall security posture”. Management of security operation centres (SOCs), IT administrations at all levels were a challenge during the lockdown period, he said.

Cybercrimes rose by 500%, financial frauds increased ‘exponentially’

Doval said that the pandemic saw a 500% increase in cybercrime due “to limited awareness and poor cyber hygiene”. As cash handling reduced and dependence on digital payment platforms increased, financial frauds saw “an exponential increase”.

Doval listed other threats that emerged during the pandemic:

  • “Large number of hurried, insecurely developed applications were launched, increasing the vulnerability landscape.”
  • Crisis was exploited by adversaries through “misinformation, fake news and social media campaigns”.

The NSA said that large amounts of “cyber data floating in the cyberspace is a gold mine for extracting information that can undermine the privacy of our citizens and also add to the vulnerability of protected information of the government”. “It also adds to the vulnerability of the vulnerability of the data concerning our critical infrastructure.”

Doval calls for indigenisation of cybersecurity

Citing “no dearth of talent” in India, Doval said that companies’ research and development assignments “must result in creation of intellectual property, development of indigienous products and solutions which can compete globally”.

Just like India’s IT/ITeS sector occupies 55% of the global market, the cybersecurity sector too must tread the same path, Doval said. “This is where our start-ups must come up with solutions which are based on the requirements of the Indian market and extend it to the globe.”

Doval also mentioned that the National Cyber Security Strategy 2020, which will address all aspects of the ecosystem will be released “soon”. National Cyber Security Coordinator Lt Gen. (Dr) Rajesh Pant, at another virtual event on Friday, said the Strategy is awaiting the cabinet’s approval, and he hopes that it will be released in October.

Advertisement. Scroll to continue reading.

Written By

Send me tips at aditi@medianama.com. Email for Signal/WhatsApp.

MediaNama’s mission is to help build a digital ecosystem which is open, fair, global and competitive.



Looking at the definition of health data, it is difficult to verify whether health IDs are covered by the Bill.


The accession to the Convention brings many advantages, but it could complicate the Brazilian stance at the BRICS and UN levels.


In light of the state's emerging digital healthcare apparatus, how does Clause 12 alter the consent and purpose limitation model?


The collective implication of leaving out ‘proportionality’ from Clause 12 is to provide very wide discretionary powers to the state.


The latest draft is also problematic for companies or service providers that have nothing to with children's data.

You May Also Like


Google has released a Google Travel Trends Report which states that branded budget hotel search queries grew 179% year over year (YOY) in India, in...


135 job openings in over 60 companies are listed at our free Digital and Mobile Job Board: If you’re looking for a job, or...


Rajesh Kumar* doesn’t have many enemies in life. But, Uber, for which he drives a cab everyday, is starting to look like one, he...


By Aroon Deep and Aditya Chunduru You’re reading it here first: Twitter has complied with government requests to censor 52 tweets that mostly criticised...

MediaNama is the premier source of information and analysis on Technology Policy in India. More about MediaNama, and contact information, here.

© 2008-2021 Mixed Bag Media Pvt. Ltd. Developed By PixelVJ

Subscribe to our daily newsletter
Your email address:*
Please enter all required fields Click to hide
Correct invalid entries Click to hide

© 2008-2021 Mixed Bag Media Pvt. Ltd. Developed By PixelVJ