Critical.
Authoritative.
Strategic.
Subscribe to CIO Magazine »

Over 100 Indian govt. websites defaced since January

The government has decided not to host websites that don't have a security audit

A total of 117 Indian government websites were defaced by hackers from January to June this year, prompting the government to take additional security measures, a federal minister told Parliament.

The National Informatics Centre (NIC), which hosts government web sites, has been directed not to host sites which are not audited for cybersecurity, Sachin Pilot, the country's Minister of State for Communications and Information Technology said on Wednesday, according to India's Press Information Bureau.

The government has been embarrassed by some high-profile hacks including two in June by an Indian offshoot of Anonymous on the websites of the Indian army and the NIC. The attack on the army website was quickly reversed after it ran into criticism from Indian supporters of the hacker group.

Last year, the website of India's top investigative agency, Central Bureau of Investigation, took weeks to be restored after a Pakistani group reportedly hacked the site.

All new Government websites and applications are to be audited for security before they are hosted, and websites and applications will also be regularly audited once hosted, Pilot said.

Most of the hacks happen because Indian government departments and agencies do not follow the procedures set for regular audits of the sites, a security official associated with the government, said on condition of anonymity.

Pilot told Parliament in May that according to security guidelines issued by the government no sensitive information is to be stored on systems that are connected to the Internet.

Ministries and departments were also advised to audit their IT systems regularly to ensure they are robust. The Indian Computer Emergency Response Team (CERT-In) has empanelled a number of penetration testing professionals to carry out audits, Pilot said.

About 1,190 Indian websites were defaced during June, according to monthly data from CERT-In, suggesting that the private sector is also vulnerable in India. The comparable figure in May was 1,848 websites. There were other security incidents as well.

John Ribeiro covers outsourcing and general technology breaking news from India for The IDG News Service. Follow John on Twitter at @Johnribeiro. John's e-mail address is john_ribeiro@idg.com

Join the CIO Australia group on LinkedIn. The group is open to CIOs, IT Directors, COOs, CTOs and senior IT managers.

More about: CERT, Computer Emergency Response Team, IDG, NIC, Technology
References show all

Comments

Post new comment

The content of this field is kept private and will not be shown publicly.
Users posting comments agree to the CIO comments policy.
Login or register to link comments to your user profile, or you may also post a comment without being logged in.
Related Coverage
Related Whitepapers
Latest Stories
Community Comments
Tags: CERT-In, security, government, Government use of IT
Latest Blog Posts
Whitepapers
  • Seven Steps to Effective Data Governance
    Creating a framework to ensure the confidentiality, quality, and integrity of data – the core meaning of data governance – is essential to meet both internal and external requirements, such as financial reporting, regulatory compliance, and privacy policies. At its best, data governance roots out risk – both business and compliance risk – by increasing oversight. This white paper provides seven steps for taking such an approach, concluding with a real world example, taking an incremental approach using a repeatable framework that is a practical, proven strategy that any size organization can implement to suit their immediate and long-term needs and budget.
    Learn more »
  • Printer Usage and Cost Management Strategies for the Australian Mid-market, an Unrealised Opportunity
    This whitepaper was commissioned to aid senior business and ICT decision makers of medium-sized government and corporate organisations, including marketing, finance, and technology executives to better understand the current use of print devices including copiers, printers and multi-function Page 19 Reproductions in whole or in part are prohibited. This whitepaper also provides insights into how current management practices can be improved to optimise investments and improve sustainability. Read on.
    Learn more »
  • Oracle Exadata - Extreme performance, lowest cost.
    As organizations contend with escalating demands for greater quantities of information, more sophisticated data analysis, and a burgeoning user population, Oracle Exadata makes database workloads faster, easier to manage, and less expensive. Oracle Exadata is the world’s first database machine to provide extreme performance for both data warehousing and online transaction processing (OLTP) applications. Read this whitepaper.
    Learn more »
All whitepapers
rhs_login_lockGet exclusive access to Invitation only events CIO, reports & analysis.
Recent comments