The digitization of critical infrastructure sectors in India has led to an increase in cyberattacks and cyber threats across various industries, from finance to government systems and healthcare. In a shocking revelation, a hacking group leaked 7.5 million records containing personal information stolen from India’s leading manufacturer of wireless audio and wearable devices, Boat, earlier this year. This incident underscores the vulnerability of companies to cyber breaches in the digital era.

Moreover, the Reserve Bank of India (RBI), the nation’s central bank, recently highlighted the risks associated with increased digitization in the financial sector. The number of cyber incidents against finance institutions handled by the national CERT team surged to 16 million in 2023, a significant rise from 53,000 incidents in 2017, as per a report by the RBI. This alarming trend is a cause for concern for banks and non-bank financial companies (NBFCs) in India, as cybersecurity has emerged as a major challenge hindering their transition to digital technologies.

The concerns raised by the RBI are valid, given that cyber fraudsters are increasingly targeting financial institutions globally. The growing reliance on digital platforms opens up avenues for cybercriminals to exploit vulnerabilities in the system, leading to data breaches and financial instability. It is imperative for organizations in India to bolster their cybersecurity measures to safeguard against potential cyber threats.

In addition to the financial sector, public sector entities and government systems in India have experienced a surge in cyberattacks. Various installations have reported a significant increase in cyber incidents, raising red flags about the cybersecurity posture of these institutions. Hackers targeted government agencies and energy companies with a Trojan named HackBrowserData, highlighting the sophisticated nature of cyber threats facing the nation.

Notably, neighboring countries like Pakistan and China have also been implicated in cyber operations against Indian organizations. Recent operations like Cosmic Leopard by a Pakistani hacking team have underscored the cross-border cyber warfare tactics employed by threat actors in the region. These incidents highlight the need for robust cybersecurity defenses and proactive measures to mitigate cyber risks effectively.

According to a Cloudflare report, 83% of organizations in India reported at least one cybersecurity incident in the last year, positioning the country at fourth place in the Asia-Pacific region for such incidents. The prevalence of cyber threats underscores the urgent need for organizations to prioritize cybersecurity and take proactive steps to safeguard their digital assets.

Partha Gopalakrishnan, founder of PG Advisors, emphasizes the importance of enhancing cybersecurity measures in India, citing the outdated Information Technology Act 2000 as a key legislative framework governing cybercrime. As the fifth most breached nation globally, India must focus on strengthening its cybersecurity posture to mitigate the evolving cyber threats effectively.

Indian organizations are particularly concerned about cloud-related threats, attacks on connected devices, hack and leak operations, and software supply chain compromises, as per PwC’s The C-Suite Playbook report for India. The adoption of emerging technologies like AI and cloud has necessitated a stronger focus on cybersecurity defenses to combat evolving cyber threats effectively.

Manu Dwivedi, partner and leader for cybersecurity at consultancy PwC India, highlights the importance of addressing AI-enabled phishing and ransomware attacks alongside cloud-related threats. The interconnectivity between IT and OT environments, coupled with the usage of open-source components in software, has expanded the attack surface for threat actors. Indian organizations must fortify their systems against insider threats through strategic planning, training, and governance processes.

The growing demand for AI has also reshaped the threat landscape in India, with threat actors experimenting with AI models and techniques, as noted by PwC India’s Dwivedi. The potential misuse of AI by threat actors to generate customized malware poses a significant challenge for cybersecurity professionals. Additionally, the AI skills gap in India underscores the importance of training in AI and cybersecurity to combat evolving cyber threats effectively.

As organizations in India navigate the complex cybersecurity landscape, proactive measures and continuous vigilance are essential to mitigate cyber risks effectively. By prioritizing cybersecurity, investing in robust defense mechanisms, and fostering a culture of cybersecurity awareness, Indian entities can bolster their resilience against cyber threats in an increasingly digitized world.

Source link