Indian Cyber Warefare Capability : Discussions and Infosec news

tommy

Regular Member
Joined
Jan 16, 2013
Messages
101
Likes
440
I am quite skeptical about all these rankings from UN. In all these rankings there will be some point or factor which brings in the freedom/human rights narrative.
 

Jimih

Senior Member
Joined
May 20, 2021
Messages
4,796
Likes
26,517
Country flag
Indian military personnel to train in US on cybersecurity, command in the offing

The proposed cyber command will marry the individual capabilities of all the three services to protect the military from being vulnerable to cyber-attacks from India’s adversaries.

 

apoorv465

Regular Member
Joined
Apr 13, 2016
Messages
793
Likes
4,259
Country flag

Hariharan_kalarikkal

𝕱𝖔𝖔𝖑𝖘 𝖗𝖚𝖘𝖍 𝖆𝖓𝖉 𝖆𝖓𝖌𝖊𝖑𝖘 𝖋𝖊𝖆𝖗
Banned
Joined
Aug 28, 2019
Messages
5,091
Likes
24,430
Country flag
India jumps to No.10 on Global Cyber Security Index; China at 33, Pakistan 79: UN study


3-4 minutes



Foreign Secretary Harsh Vardhan Shringla | Photo Credit: ANI

Key Highlights
  • Digital gaps amongst nations create an unsustainable environment in the cyber domain: India at UNSC

  • 'Growing digital reliance in post-COVID era has exposed digital disparities which must be bridged through capacity building'

  • Foreign secretary calls on UNSC member states to tackle implications of terrorist exploitation of cyber domain
New Delhi: India is now ranked at No. 10 on the Global Cyber Security Index, up from No. 47 in 2019, as per a study by the United Nations. The same index ranks China at No. 33 and Pakistan at No. 79.

How are the countries ranked
As in, what criteria
 

sorcerer

Senior Member
Joined
Apr 13, 2013
Messages
24,677
Likes
87,813
Country flag
Turn off, turn on: Simple step can thwart top phone hackers


Regularly rebooting phones won’t stop the army of cybercriminals or spy-for-hire firms that have sowed chaos and doubt about the ability to keep any information safe and private in our digital lives. But it can make even the most sophisticated hackers work harder to maintain access and steal data from a phone.


“This is all about imposing cost on these malicious actors,” said Neal Ziring, technical director of the National Security Agency’s cybersecurity directorate.


The NSA issued a “best practices” guide for mobile device security last year in which it recommends rebooting a phone every week as a way to stop hacking.


well!! not really when an App or code is involved
 

not so dravidian

Regular Member
Joined
Feb 3, 2021
Messages
474
Likes
2,151
Country flag
Y'all
Tamilnadu was the first to adopt BHARAT OS, however, adoption wasn't full fledged

I guess this cud be the work of local hackers???

TN Public Dept. attacked by ransomware, sensitive documents encrypted

The suspects have demanded the payment of a ransom in cryptocurrency; experts say old operating systems and lack of security software could have led to the attack


A ransomware attack is said to have encrypted certain sensitive documents of the Tamil Nadu Public Department since Friday morning. Some of the files encrypted relate to VIP visits, their programmes and related arrangements made by State Protocol officials, official sources said.
While the suspect has demanded payment of 1,950 USD in cryptocurrency as ransom for handing over the decryption code, cyber security experts from the Centre for Development of Advance Computing (C-DAC) and Computer Emergency Response Team are trying to retrieve the encrypted documents, sources in the State Secretariat here told The Hindu on Saturday.
Soon after the ransomware attack, officials from the C-DAC, with whom the State Government’s Electronics Corporation of Tamil Nadu (ELCOT) has a tie-up for e-governance and cyber security management issues, inspected the desktop computers that displayed a message from the suspect demanding payment of ransom in cryptocurrency, the sources said.

Outdated OS
Of the 12 desktop computers used at the particular section in the Public Department, about 8 were found to be operating on the Windows-7 Operating System which, cyber security experts said, was an outdated platform with little or no support from Microsoft. Because of the this, the desktop computers had no security/software updates and anti-virus mechanism to prevent ransomware or other cyber attacks.

Though officials were trying to retrieve the content of files that remain encrypted from other sources, cyber security officials from the Tamil Nadu police who inspected the desktop computers said there was no compromise whatsoever on VIP security protocol or any other matter that could affect the routine functions of the State government.

Policy matter
“We need an effective IT security policy and First Responders in computer forensics to handle such situations. Use of outdated operating systems with no software updates and anti-virus protection remains a threat. The ransomware is click-based and could have landed in the form of a Whatsapp message (opened on a desktop computer), email, pop-up etc,” a senior official who is part of the investigation team said.

According to cyber experts, there has been an increase in ransomware attacks in recent times. Suspects operating from unknown locations often target prominent personalities and demand payment of ransom by claiming that they had access to sensitive personal data or websites visited by them.

“Even if a few respond and make payments, that’s good enough for the suspects. Awareness on cyber safe practices when it comes to internet usage and updated systems supported by secure networks is the key,” the official said, adding that a formal complaint would soon be lodged with the police.
 

sorcerer

Senior Member
Joined
Apr 13, 2013
Messages
24,677
Likes
87,813
Country flag
Government releases guideline for the Cyber Security in Power Sector


Posted On: 07 OCT 2021 8:08PM by PIB Delhi



Under direction of Union Power and New & Renewable Energy Minister Shri R K Singhthe Central Electricity Authority, Ministry of Power has prepared the guideline for the Cyber Security in Power Sector and it has been released today.


CEAunder the provision of Section 3(10) on Cyber Security in the “Central Electricity Authority (Technical Standards for Connectivity to the Grid) (Amendment) Regulations, 2019” has framedGuideline on Cyber Security in Power Sector to be adhered by all Power Sector utilities to create cyber secure eco system.This is the first time that a comprehensive guideline has been formulatedon cyber security in power sector. The guidelinelays down required actionsfor cyber security preparedness across various utilities in power sector so as to raise the level of cyber security preparedness for power sector.


The Guideline has been prepared after intensive deliberations with stakeholder and inputs from expert agencies in the field of cyber security, such as CERT-In, NCIIPC, NSCS, IIT Kanpur and subsequent deliberations in Ministry of Power as well.


The Guidelinehave been issued with the objective of creating a cyber secure ecosystem. It lays down a cyber assurance framework, the strengthens the regulatory framework, puts in place mechanisms for security threat early warning, vulnerability management and response to security threats, securing remote operations and services, protection and resilience of critical information infrastructure, reducing cyber supply chain risks, encouraging use of open standards, promotion of research and development in cyber security, human resource development in the domain of Cyber Security, Developing effective public private partnerships and information sharing and cooperation.


Guideline are applicable to all Responsible Entities as well as System Integrators, Equipment Manufacturers, Suppliers/Vendors, Service Providers, IT Hardware and Software OEMs engaged in the Indian Power Supply System for protection of Control Systems for System Operation and Operation Management, Communication System and SecondaryAutomation and Tele control technologies.


These Guideline are mandatory requirements to be met by all stakeholders and lay emphasis on establishing cyber hygiene, training of all IT as well OT Personnel on Cyber Security, designating of Cyber Security Training Institutes as well as Cyber Testing labs in the Country. The Guideline mandates ICT based procurement from identified “Trusted Sources” and identified “Trusted Products” or else the product has to be tested for Malware/Hardware Trojan before deployment for use in power supply system network when system for trusted product and service is in place. It will promote research and development in cyber security and open up market for setting up Cyber Testing Infra in Public as well as Private Sector in the country.


CEA is also working on cyber security regulations. This Cyber Security guideline is precursor to the same.


The guideline is available the website of CEA for downloading (https://cea.nic.in/wp-content/uploa..._on_Cyber_Security_in_Power_Sector_2021-2.pdf)
 

sorcerer

Senior Member
Joined
Apr 13, 2013
Messages
24,677
Likes
87,813
Country flag
India Explores Creating Domestic Operating System to Improve Cybersecurity Infrastructure


The Ministry of Electronics and Information Technology (MeitY) is planning to create a domestic operating system to boost the government’s capabilities to deal with potential internal and external threats as it formulates a comprehensive cybersecurity framework.


A few technology giants have their own cybersecurity infrastructure from the primary layer onwards and have software to protect stored data. The government plans to do the same. It also proposes to establish a dedicated team of professionals to evaluate how the infrastructure needs to evolve to keep with the latest developments in the technological field. With the advent of 5G, the Internet of things (IoT), and the growth in cybercrime, there is a need for a more comprehensive framework that addresses national security threats.

 

backburner

Regular Member
Joined
Sep 21, 2021
Messages
111
Likes
361
Country flag
India Explores Creating Domestic Operating System to Improve Cybersecurity Infrastructure


The Ministry of Electronics and Information Technology (MeitY) is planning to create a domestic operating system to boost the government’s capabilities to deal with potential internal and external threats as it formulates a comprehensive cybersecurity framework.


A few technology giants have their own cybersecurity infrastructure from the primary layer onwards and have software to protect stored data. The government plans to do the same. It also proposes to establish a dedicated team of professionals to evaluate how the infrastructure needs to evolve to keep with the latest developments in the technological field. With the advent of 5G, the Internet of things (IoT), and the growth in cybercrime, there is a need for a more comprehensive framework that addresses national security threats.

the chinese already have their own known as UBUNTU KYLIN
it's free like any other linux os
https://www.ubuntukylin.com/downloads/show.php?id=451&lang=en
 

ajay7322

Senior Member
Joined
Dec 11, 2020
Messages
1,510
Likes
7,282
Country flag

backburner

Regular Member
Joined
Sep 21, 2021
Messages
111
Likes
361
Country flag

Latest Replies

Global Defence

New threads

Articles

Top