A recent study conducted by Positive Technologies reveals significant insights into the landscape of cyber threats in India, particularly concerning the distribution of breached personal data and emerging trends in the realm of cybersecurity. The report, authored by analyst Anastasia Chursina, highlights that a considerable portion of data belonging to Indian residents is not sold on the dark web, but rather made available for free. This phenomenon is attributed to a range of activities spearheaded by various cybercriminals and hacktivist groups operating within the country.
The study notes that advertisements concerning databases constitute a staggering 42% of all messages on the dark web in India. This positions the country among the top three nations globally in terms of the volume of database leak advertisements. Worryingly, the analysis indicates that only 29% of data currently available is being sold, while a notable 66% is distributed at no cost. Chursina elaborates that this distribution model may indicate a growing presence of hacktivist activity, alongside successful extortion operations and the often inadequate cybersecurity measures employed by Indian organizations.
Highlighting the current climate of cyber threats, the study outlines that hacktivist groups in India are especially active, closely monitoring the local news cycle on social media platforms. Their operations frequently involve launching Distributed Denial-of-Service (DDoS) attacks, defacing websites, and perpetrating various cyber intrusions. The report reveals a startling 50% surge in DDoS attacks targeting Indian infrastructure since the start of 2024. A majority, around 85%, of these attacks are directed at the financial sector, with government agencies accounting for the remaining 15%. The motivation behind these hacktivist attacks is often not financial gain but the desire to draw attention to their causes, evidenced by their tendency to release data obtained during breaches for public consumption.
The investigation into the underground market further indicates that a significant proportion of freely distributed data—approximately 25%—is associated with educational institutions, while 20% pertains to financial entities. The report underscores that educational organisations often manage vast amounts of sensitive information, rendering them prime targets for cyberattacks. Additionally, breaches involving financial institutions pose substantial risks, as they can disrupt operations and incur heavy financial losses. The report identifies that 61% of database leaks comprise personal data, including names, birth dates, email addresses, and identification information. Such data, once exposed, paves the way for ensuing phishing and extortion attacks aimed at individuals.
Moreover, concerns regarding governmental cybersecurity are on the rise, with the report identifying a 15% uptick in cyberattacks throughout India during 2023, escalating to a notable 46% increase in the second quarter of 2024 compared to the previous year. As the country grapples with an acute shortage of skilled cybersecurity professionals, the situation is exacerbated by rapid digital transformation and considerable investments in new technologies. Such developments necessitate thorough security assessments before implementation, lest they become avenues for exploitation.
The compounded issues of rising cyber threats and a deficit of qualified professionals present formidable challenges for organisations across various sectors, significantly impacting the public sector. Chursina underscores the urgent need to cultivate a robust cadre of cybersecurity experts in India. She advocates for the adoption of global best practices and pragmatic training programmes tailored to address contemporary cyber threats, asserting that integrating insights garnered from extensive security analyses and penetration tests can help bolster India's defence against cybercrime.
In conclusion, the landscape of cybersecurity in India is fraught with challenges, necessitating a concerted effort to enhance both the skills of cybersecurity professionals and the protective measures employed by organisations. As the digital realm continues to expand, so too must the strategies to safeguard it.
Source: Noah Wire Services