New Delhi: There is a cyber security organization in this country but no central body is responsible for safety in the online room, said a cyber top security official on Tuesday.
The National Cyber ​​Security Coordinator (NCSC) Rajesh Pant also said the proposed national cyber security strategy will overcome this gap in the security framework.
He said India had an excellent organization and had a “fantastic” transformation in the cyber security room in the country in the past year.
“In general, the framework is there but there is no central peak organization today in terms of business rules allocation.
There are no ministries or organizations that you can say you are responsible for the security of the nation’s cyber.” It is the first thing we must tackle and it is one of the main results of the strategy, “Pant said on the virtual cyber security dialog held by Microsoft.
He noted that the government had worked on the cyber security framework developed in 2013.” Now what is needed is Cyber ​​security strategy.
That’s before the cabinet for the last stamp.
We need a governance structure.
Today if you look at the way we work under different ministries, we have a very good organization, “said Pant.
Prime Minister Narendra Modi on August 15, 2020 has announced that a new cyber security strategy will be presented to the state as dependence on cyberspace will Increase multi-folds in the coming years.
“That is the first thing we are waiting for.
Strategy is an action-oriented plan.
This gives a goal.
This gives who will give that goal.
It provides funds for the purpose and provides a time line for the achievement of that goal and includes the next 5 years, “said Pant.
According to official estimates, India suffered a loss around Rs 1.24 lakh crore in 2020 because of a cyber attack.
Pants said cyber attacks increased 500 percent during pandemic because digitalization adoption and India have become one of the most attacking countries.
“We found more than 30 percent (attack) from the US,” he added.
He said cyber criminals routes their attacks through three-four different goals And the last point has been found in the US for several attacks.
“The last hop is a country that has a very good relationship, first of all who is democracy and has a strong privacy law.
If you get the last IP and if it is Azure or Google Cloud Server in the US, it is not easy to get information from them because there are many clients and they have privacy rights.
“Countries such as the United States, the Netherlands, Germany who have strong privacy laws are used as the last hop for attacks,” Pant said.
He showed that there was no major impact on the large sector but financial crimes increased and there was a 150 percent increase in a ransomware attack.
Pants also said international rules were not too helpful in handling cyber crime but a group of 32 countries, including India, had gathered to handle the threat of ransomware.
The group focuses on increasing network security and resilience, steps to handle illegal finance, disrupt the villain tissue and handle cyber diplomacy.
He also said India has developed its own malware repository which is similar to a Singapore virustotal entity where malware problems are reported.
“Virustotal now gets all malware data available in India and organizations that might not be the best for national security.
We have created our own national malware repository.
This is in the final phase of beta testing and we have received 75 million samples in that repository,” Pant said.
Microsoft India General Counselor Keshav Dhakad said the company had a ‘global attack surface’ to map the data and got a threat signal of 8.3 trillion a day which helped him in assessing the way new threats developed.
It is used to do analytics, patch and share intelligence with partners and the government.
“India is part of a government security program and we have worked with the government for years and digital crime units are about using that intelligence to identify where signals come from which countries, which cities originate and to be able to do legal action against They.
“We have worked with CBI, the FBI, the Ministry of Justice, Europol, Interpol in dropping many criminal networks,” he said.