India combatting Cyber Attacks from Pakistan, and China, launches Cyber Security Strategy

Rajesh Uppal September 8, 2024 Cyber, Doctrine & Strategy, Geopolitics Comments Off on India combatting Cyber Attacks from Pakistan, and China, launches Cyber Security Strategy 3,430 Views

In recent years, India has faced an escalating barrage of cyber attacks originating primarily from neighboring countries like Pakistan and China. These attacks, often aimed at disrupting critical infrastructure, stealing sensitive data, or spreading misinformation, have underscored the urgent need for a comprehensive cyber security strategy. In response to these challenges, India has launched a robust Cyber Security Strategy aimed at fortifying its cyber defenses and safeguarding its digital infrastructure.

The Cyber Threat Landscape

In an era defined by digital transformation and technological advancement, the threat landscape for cybersecurity has become increasingly complex and pervasive. Nowhere is this more evident than in India, where the exponential growth of digital infrastructure has made the nation a prime target for cyber attacks, espionage, and warfare. With fingers often pointing towards neighboring countries like China and Pakistan, India has recognized the urgent need for a comprehensive cyber security strategy to safeguard its digital assets and national interests.

A Multi-Fronted Threat Landscape

State-Sponsored Espionage: Both China and Pakistan are accused of launching cyberattacks to steal sensitive information from Indian government agencies, critical infrastructure providers, and businesses.
Disinformation Campaigns: Social media manipulation and the spread of fake news are used to sow discord and undermine public trust in Indian institutions.
Denial-of-Service (DoS) Attacks: These attacks aim to disrupt access to crucial online services like banking, e-commerce, and government websites.

India’s vulnerability to cyber threats has been underscored by a sharp increase in cyber incidents recorded in recent years. According to the Indian Computer Emergency Response Team (CERT-In), the number of cyber security incidents surged from 44,679 in 2014 to 14.02 lakh in 2021. This alarming trend reflects the evolving tactics of cyber adversaries, ranging from phishing and malware attacks to sophisticated cyber espionage campaigns targeting critical infrastructure and government institutions.

India’s vulnerability to cyber threats has been exacerbated by its rapidly expanding digital footprint and growing reliance on technology across various sectors. Cyber attacks emanating from Pakistan and China have targeted government agencies, critical infrastructure, financial institutions, and businesses, posing significant risks to national security and economic stability. These attacks range from distributed denial-of-service (DDoS) attacks to sophisticated state-sponsored cyber espionage campaigns, highlighting the diverse and evolving nature of cyber threats.

Statistics That Raise Concerns

CERT-In, India’s cyber security watchdog, recorded a significant rise in cyber security incidents:
- 14.02 lakh incidents in 2021
- 2.12 lakh incidents in the first two months of 2022
A report by Quick Heal Technologies revealed over 48,000 malware attacks linked to the WannaCry ransomware outbreak in India.

In 2023, India witnessed a significant surge in cyber attack cases, emerging as the second most targeted nation in the Asia Pacific region, according to a report by cyber security firm Check Point. The data revealed that Indian organizations experienced an alarming increase of 15 percent in weekly cyber attacks per organization compared to the previous year. This surge translated to an average of 2,138 weekly attacks per organization, trailing only behind Taiwan in the region. Additionally, within the Asia Pacific region, India experienced the second highest surge in attacks, following Korea’s 21 percent increase since 2022. Regionally, the Asia Pacific led with the highest average number of weekly attacks per organization, reaching 1,930 attacks, marking a 3 percent increase from the previous year. Conversely, Africa witnessed a substantial 12 percent year-on-year increase, averaging 1,900 attacks per organization.

The report highlighted notable trends in cyber attacks across different sectors. Despite a 12 percent decrease in attacks, the education and research sector remained a prime target, accounting for the highest volume of cyber attacks. Conversely, the retail and wholesale sectors faced a significant 22 percent increase in attacks, indicating a shift in attacker focus. Particularly concerning was the healthcare sector, which experienced a 3 percent increase in attacks, given the critical nature of its services. These findings underscore the evolving landscape of cyber threats and the need for heightened vigilance and robust cybersecurity measures across various industries.

The rise in cyber attacks reflects the growing sophistication and frequency of cyber threats faced by organizations globally. As organizations increasingly rely on digital technologies for operations and data storage, they become more susceptible to cyber attacks. In response, cybersecurity firms and organizations must continuously adapt and innovate to stay ahead of cyber threats. Additionally, collaboration between governments, businesses, and cybersecurity experts is essential to strengthen cyber defense capabilities and mitigate the impact of cyber attacks. Through concerted efforts and proactive measures, organizations can enhance their resilience against cyber threats and safeguard sensitive information and critical infrastructure.

The Growing Cost of Cybercrime

Cybercrimes in India caused an estimated loss of Rs 1.25 lakh crore in 2019.
Large enterprises in India lose an average of $10.3 million due to cyberattacks annually.

China and Pakistan: The Cyber Adversaries

China and Pakistan have emerged as significant challenges from a cybersecurity perspective, with state-sponsored cyber attacks posing serious threats to India’s digital infrastructure and national security. Cybersecurity experts have noted a surge in cyber attacks originating from these countries, targeting critical information infrastructure and government networks. The increasing sophistication of these attacks underscores the need for robust cyber defenses and proactive measures to counter emerging threats.

Cyber Warfare and Espionage

India has also been a target of cyber warfare and espionage campaigns, with adversaries seeking to infiltrate government networks and critical infrastructure. Recent incidents, including breaches traced back to cyber espionage groups like Suckfly and Danti, highlight the persistent efforts to compromise India’s cybersecurity posture. Additionally, tensions in the region have escalated following significant events such as the Pulwama attack, further exacerbating the cyber threat landscape.

Facing the Challenge: Cyber Security Initiatives

Acknowledging the severity of the cyber threat landscape, India has embarked on a multifaceted approach to enhance its cyber defenses and resilience. The government has established agencies such as CERT-In to track and monitor cyber security incidents, while also investing in capacity building initiatives to train a skilled cybersecurity workforce. Additionally, efforts are underway to foster international collaboration and develop indigenous cybersecurity solutions to mitigate emerging threats effectively.

The Ministry of Communications and Information Technology in India has outlined several objectives and strategies to create a secure cyber ecosystem and enhance trust in IT systems and transactions. These objectives include establishing an assurance framework for security policies, strengthening regulatory frameworks, and creating mechanisms for early threat detection and response. Additionally, the ministry aims to improve the visibility and integrity of ICT products, enhance workforce capacity in cybersecurity, provide fiscal benefits for adopting security practices, and protect citizen data and prevent cybercrime through legislative intervention. Strategies to achieve these objectives include promoting open standards, securing e-governance services, fostering research and development, and developing public-private partnerships. Recognizing cybersecurity as an ecosystem requiring harmonization of laws, organizations, skills, cooperation, and technical implementation, the ministry emphasizes the importance of leveraging India’s highly skilled IT workforce and developing a comprehensive cyber defense strategy to defend against threats and potentially counter adversary networks.

The Need for a Cyber Security Strategy

Recognizing the critical importance of cybersecurity in the modern digital age, India has embarked on a comprehensive Cyber Security Strategy to address emerging threats and enhance resilience against cyber attacks.

In response to these challenges, India has formulated a comprehensive National Cyber Security Strategy (NCSS) 2020, aimed at fortifying its cyber defenses and ensuring a safe, secure, and resilient cyberspace. The NCSS encompasses a wide range of objectives, including creating a secure cyber ecosystem, strengthening regulatory frameworks, promoting research and development in cybersecurity, and enhancing international collaboration. By prioritizing these strategic initiatives, India seeks to mitigate cyber threats effectively and uphold its national security interests in the digital domain.

The strategy encompasses a multi-pronged approach, encompassing policy reforms, capacity building, collaboration with international partners, and the deployment of cutting-edge technologies to bolster cyber defenses.

Key Pillars of India’s Cyber Security Strategy

Policy Framework: India’s Cyber Security Strategy involves the development of robust legal and regulatory frameworks to govern cyberspace effectively. This includes enacting stringent cybercrime laws, establishing regulatory bodies to oversee cybersecurity standards, and promoting international cooperation on cyber issues.
Capacity Building: To build a skilled workforce capable of combating cyber threats, India is investing in cybersecurity education and training programs. Initiatives such as cybersecurity awareness campaigns, skill development workshops, and specialized training courses aim to enhance the capabilities of cybersecurity professionals and equip them with the tools needed to mitigate cyber risks effectively.
Technological Innovation: India is leveraging cutting-edge technologies such as artificial intelligence (AI), machine learning (ML), and blockchain to develop advanced cybersecurity solutions. These technologies are being deployed to detect and prevent cyber threats in real-time, automate threat intelligence analysis, and secure critical infrastructure against emerging vulnerabilities.
International Collaboration: Recognizing that cyber threats transcend national boundaries, India is actively engaging with international partners to strengthen cybersecurity cooperation. This includes sharing threat intelligence, participating in joint cybersecurity exercises and initiatives, and collaborating with international organizations to develop global cybersecurity norms and standards.

National Cyber Security Strategy 2023: This comprehensive strategy outlines a multi-pronged approach to:

- Strengthen cyber defenses through technology and skilled professionals.
- Enhance international cooperation for intelligence sharing and combating cybercriminals.
- Promote cyber security awareness among citizens and businesses.

Focus on Indigenous Solutions: The government is encouraging the development of homegrown cyber security solutions to reduce dependence on foreign technology.

Implementation

The success of India’s Cyber Security Strategy hinges on several key factors:

Effective implementation: The strategy needs to be translated into concrete action plans with clear timelines and allocated resources.
Public-private partnerships: Collaboration between the government, private sector, and civil society is essential for a holistic approach to cyber security.
Focus on innovation: India needs to foster innovation in the field of cyber security to develop indigenous solutions and stay ahead of evolving threats.

India has taken significant steps in bolstering its cyber security infrastructure to combat online crimes and threats. The establishment of the Cyber and Information Security Division (CIS) within the Ministry of Communications and Information Technology demonstrates the government’s commitment to monitor and counter cyber fraud, hacking, and other online threats. Additionally, plans for an apex coordination center and cyber forensic training laboratories at the state level underscore the importance of developing specialized investigative skills and tools to address a wide range of cyber crimes. The creation of the Indian Cyber Crime Coordination Centre (I4C) further strengthens coordination between central and state authorities, with a focus on monitoring social media and vernacular content.

Recognizing the strategic significance of cyberspace, the Prime Minister’s Office appointed a National Cyber Security Coordinator in 2014 to implement policies and coordinate efforts across agencies like the National Technical Research Organization (NTRO), National Intelligence Grid, and National Information Board. Entities such as the Computer Emergency Response Team (CERT-IN) and the National Critical Information Infrastructure Centre (NCIIC) play crucial roles in forecasting cyber incidents, protecting critical assets, and promoting public-private partnerships in cyber security. However, there remains a need for more robust security testing infrastructure and greater participation from the private sector to develop indigenous cyber security solutions and mitigate cyber attacks effectively. Establishing a dedicated industry forum for cyber security could help address these challenges and foster innovation in the sector.

Tata Communications’ Cyber Security Response Centre (CSRC), established in Chennai in September 2018, serves as a crucial hub for monitoring and responding to various cyber threats. Equipped with honeypot servers and leveraging commercial feeds alongside open-source data, the centre detects a spectrum of attacks, including phishing, malware, and botnets. However, the shortage of skilled cyber security professionals remains a challenge, prompting collaborations with educational institutions like Sastra University to bridge the skill gap through internships and guest lectures.

Additionally, initiatives like the Cyber Range Centre at the International Institute of Digital Technologies in Tirupati aim to train students in combating cyber threats. Similarly, the partnership between IIT Jodhpur’s Technology Innovation and Start-up Centre (TISC) and WhizHack Technologies introduces a Dual Certificate in Cyber Defense, addressing the shortage of skilled professionals and offering training on emerging threats like IoT-based attacks.

Internationally, India is forging partnerships with countries like the United States, Japan, and Israel to bolster its cyber security infrastructure. Memorandums of Cooperation (MoC) with these nations aim to enhance information sharing, cooperation in cyber incident management, and protection of critical infrastructure against cyber threats.

These collaborative efforts underscore India’s commitment to fostering a secure cyber ecosystem and addressing the evolving challenges posed by cyber threats, while also leveraging emerging technologies for economic growth and innovation.

Challenges and Opportunities

Despite these proactive measures, India faces significant challenges in its cybersecurity journey, including a shortage of skilled cybersecurity professionals, inadequate funding, and the evolving nature of cyber threats.

India’s commitment to cybersecurity measures appears insufficient compared to other nations, as highlighted by the Global Cybersecurity Index 2017 (GCI) released by the International Telecommunication Union (ITU). Ranking 23 out of 193 member countries, India falls behind countries like Singapore, the United States, and Malaysia, among others. Similarly, the National Cyber Power Index 2020 (NCPI) developed by the Belfer Center for Science and International Affairs underscores India’s limited cyber power, positioning it at 21st place overall. Despite being one of the most cyber-attacked nations globally, India is categorized as a “low-intent, low-capability” cyber power, signaling a gap in strategic cyber defense capabilities, especially amid ongoing border tensions and evolving threats from neighboring nations like China.

Despite the growing demand for cybersecurity professionals in India, there persists a significant skills gap in the workforce. Estimates by the Data Security Council of India suggest a need for approximately 1 million cybersecurity professionals in the country. However, a PwC study reveals a concerning surge of 117 percent in cyberattacks on Indian enterprises in 2019, exacerbating the demand for skilled talent. Insufficient funding and the reluctance of businesses to invest in cybersecurity training contribute to the widening gap between demand and supply. Many corporations opt to hire experienced professionals rather than invest in training, perpetuating the scarcity of skilled individuals. Additionally, the limited availability of educational institutions offering cybersecurity training further compounds the issue, leaving many companies struggling to recruit qualified personnel. Despite the potential revenue opportunity and job prospects highlighted by NASSCOM, addressing the shortage of cybersecurity professionals remains imperative for India’s digital resilience and economic growth in the coming years.

Addressing these challenges will require concerted efforts from government, industry, and academia to bridge the cybersecurity skills gap, enhance investment in cybersecurity infrastructure, and foster innovation in cybersecurity technologies.

Looking Ahead: A Secure Digital Future

India’s Cyber Security Strategy signifies a critical step towards securing its digital space. By investing in cyber defenses, fostering collaboration, and promoting cyber awareness, India can build a more resilient cyberspace and protect its national security interests. In an increasingly interconnected world, a secure India in cyberspace contributes to a safer global digital environment for all.

As India continues to navigate the complexities of the digital age, the importance of cybersecurity cannot be overstated. A resilient cyber defense posture is essential to safeguarding national interests, protecting critical infrastructure, and fostering trust in the digital economy. Through strategic initiatives like the National Cyber Security Strategy, India aims to position itself as a global leader in cybersecurity, capable of addressing emerging threats and ensuring a secure and prosperous future in the digital era.

Conclusion

India’s Cyber Security Strategy represents a proactive and forward-thinking approach to combating cyber threats and safeguarding the nation’s digital infrastructure. By prioritizing policy reforms, capacity building, technological innovation, and international collaboration, India is laying the groundwork for a more secure and resilient cyberspace. As cyber threats continue to evolve in complexity and sophistication, India’s commitment to cybersecurity will play a crucial role in ensuring the nation’s digital sovereignty and economic prosperity in the years to come.