India’s Cybersecurity Crisis: Urgent Need for Strengthening Defenses and Building a Skilled Workforce


May 15th, 2023

The Indian healthcare sector has been witnessing a surge in cyberattacks over the past couple of years, exposing significant vulnerabilities in the country’s cybersecurity infrastructure. Recent incidents, such as the ALPHV Ransomware Group’s attack on Sun Pharmaceuticals, the AIIMS cyber-attack, and the hacking attack on Safdarjung Hospital, have underscored the pressing need for stronger cybersecurity measures in the healthcare industry.

According to data published by cybersecurity think tank CyberPeace Foundation and Autobot Infosec Private Ltd., the healthcare industry in India faced a staggering 1.9 million cyberattacks in 2022 until November 28th. These attacks not only lead to sensitive data leaks but also result in substantial financial losses, disruption of operations, and damage to the reputation of healthcare organizations. To mitigate these risks, it is crucial for healthcare organizations to invest in robust cybersecurity measures.

However, the challenges faced by the Indian cybersecurity landscape extend beyond the healthcare sector. Government figures claim a reduction in reported cybercrimes in 2022 compared to the previous year, but experts argue that these numbers fail to reflect the ground realities. Cyber police officials and top experts in the country assert that the existing laws are ineffective, cybersecurity systems are outdated, and agencies are unprepared to handle the growing number of cyber cases.

The inadequacies in India’s cybersecurity defenses are further exacerbated by the lack of stringent provisions for punishing cybercriminals. Mausmi Patil, a Police Inspector with the Cyber Police in Mumbai, highlights that cybercriminals have become more advanced than law enforcement agencies. They employ sophisticated techniques, such as creating fake bank pages, to deceive unsuspecting victims. Furthermore, the delay in reporting cybercrimes and the lack of cooperation from social media intermediaries during investigations create additional hurdles for law enforcement agencies.

Fortinet, a cybersecurity company, reported that a staggering 92% of Indian companies experienced cyber breaches. While the Indian government’s figures indicate 13.91 lakh cybersecurity incidents in the country last year, many experts argue that these figures do not accurately represent the ground reality. Underreporting of cybercrimes is a significant problem, as India lacks a dedicated cybersecurity law, and the existing provisions under the Indian Information Technology Act of 2000 are insufficient to address the growing threats.

To address these challenges, there is a critical need for a comprehensive cybersecurity strategy that includes the enactment of a dedicated cybersecurity law, improved reporting mechanisms, and enhanced collaboration between law enforcement agencies, social media intermediaries, and cybersecurity professionals. Additionally, creating awareness among the public about cybercrimes and their prevention is vital.

In light of these urgent cybersecurity concerns, we invite you to join our upcoming webinar on May 21st, 2023, where industry experts will shed light on the gravity of the cybersecurity crisis in India and discuss new career options in the field. The webinar aims to educate participants about the importance of cybersecurity and equip them with the knowledge and skills to contribute to building a more secure digital ecosystem. Don’t miss this opportunity to be part of the solution and shape the future of cybersecurity in India.

Register now for the webinar and join us in taking a stand against cyber threats and fostering a safer digital environment for all. Together, we can make a difference and safeguard the integrity and security of our nation’s digital landscape.