![\"\"](\"\/\/www.iser-br.com\/Themes\/Release\/images\/responsive\/ettelecom-default.jpg\")
NEW DELHI: India cannot afford to lower its guard against the global ransomware<\/a> attack as the world has not seen the last of the virus yet, the head of the country’s cybersecurity agency warned.\n
Although its impact on India has been relatively less, WannaCry<\/a> — the largest ransomware attack to have hit the world — has not “seen its end” as multiple modules can still emerge and cause disruptions, said Sanjay Bahl, director general of the Indian Computer Emergency Response Team (CERT-In), in an interview to ET.
\n
The threat is far from over because smartphones could be the next target for the cyber-attackers, Bahl said. The WannaCry ransomware has since Friday infected hundreds of thousands of desktops and laptops running on the Windows<\/a> operating system.
\n
“The larger operating system is on the mobile, which is Android<\/a>. We don’t know what will happen if that gets hit. That will be a different ballgame altogether,” Bahl said, adding that CERT-In is preparing for that eventuality.
\n
\n“Hackers<\/a> will always be two steps ahead. We do not know what is going to come next and whether this is the end of this particular (attack) or if there will be a variant of it coming.”
\n
\n
\n
\nFor individuals, CERT-In put out an advisory on its website and conducted a webcast on Monday. The agency used its Facebook page and Twitter handle as well as the MyGov platform to spread the word, Bahl said.
\n
\n“There was a massive outreach programme initiated on Saturday. It was a crisis situation and a lot of people were working behind the scenes,” said Bahl. “We are utilising all available channels… Going forward, we are going to leverage more,” he said.
\n
India has been able to shield itself from the attack better than several other countries, with CERT-In receiving reports of only 85 machines infected as on Wednesday evening. Industry<\/a> experts peg the number of infected computers at more than 40,000 across industries including banking, retail and manufacturing.
\n
\nGlobally, the virus is reported to have infected at least 200,000 computers across 150 countries. Bahl said CERT-In has been carrying out cybersecurity drills for government departments, providing them with crisis management plans and the steps to be taken in the case of an attack.
\n
\n“We have 32 empanelled auditors who carry out technical audits, which help organisations fix (cybersecurity) gaps,” he said, adding that CERT-In has conducted training and awareness sessions for government administrators and CEOs. “I am not saying that everyone has participated but we have done it across the sectors.”
\n
\nAfter news of the WannaCry ransomware attack broke, the agency carried out a massive outreach operation covering the Union and state governments as well as agencies such as the National Informatics Centre and the Unique Identification Authority of India that issues the Aadhaar digital identity numbers.
\n
\nAlerts were also sent to the stakeholders in the defence, health and other sectors, the Reserve Bank of India, the Securities and Exchange Board of India, Airports Authority of India, the Railways, the academia, and state IT secretaries, Bahl said. “We reached out to everyone on Saturday, most of them personally on the telephone itself so that they can kickstart their operations on Saturday and complete it on Sunday.”
\n
\nBahl added that companies and government organisations affected by cyber-attacks should inform CERT-In because it is mandatory under the IT Act and as the information can help the agency improve its response. CERT-In’s network with other national cybersecurity agencies across the world also helped, Bahl said.
\n
“Spain was one of the first to be impacted. Spanish CERT<\/a> developed a detection-and-cleaning tool that we put out in our advisory. Though it is in Spanish, it will still help people,” he said.
\n
\nCERT-In is increasing its capacity by launching sectoral CERTs for the financial, power and telecom industries, Bahl said. “This particular case has shown that there is a community of people willing to safeguard the digital assets that has come forward to hold hands and has worked very hard.”
\n\n<\/body>","next_sibling":[{"msid":58727391,"title":"TRAI suggests Aadhaar eKYC for internet and broadband connections","entity_type":"ARTICLE","link":"\/news\/trai-suggests-aadhaar-ekyc-for-internet-and-broadband-connections\/58727391","category_name":null,"category_name_seo":"telecomnews"}],"related_content":[],"seoschemas":false,"msid":58727485,"entity_type":"ARTICLE","title":"Cyber attack ain\u2019t over yet, India cannot afford to lower its guard: CERT-In chief","synopsis":"The threat is far from over because smartphones could be the next target for the cyber-attackers, Sanjay Bahl, director general of the Indian Computer Emergency Response Team said.","titleseo":"telecomnews\/cyber-attack-aint-over-yet-india-cannot-afford-to-lower-its-guard-cert-in-chief","status":"ACTIVE","authors":[{"author_name":"Surabhi Agarwal","author_link":"\/author\/479241991\/surabhi-agarwal","author_image":"https:\/\/etimg.etb2bimg.com\/authorthumb\/479241991.cms?width=250&height=250","author_additional":{"thumbsize":false,"msid":479241991,"author_name":"Surabhi Agarwal","author_seo_name":"surabhi-agarwal","designation":"Correspondent","agency":false}}],"Alttitle":{"minfo":""},"artag":"ET Bureau","artdate":"2017-05-18 09:00:01","lastupd":"2017-05-18 09:02:41","breadcrumbTags":["Hackers","industry","android","Windows","hacking","hack","CERT","Ransomware","wannacry"],"secinfo":{"seolocation":"telecomnews\/cyber-attack-aint-over-yet-india-cannot-afford-to-lower-its-guard-cert-in-chief"}}" data-authors="[" surabhi agarwal"]" data-category-name="" data-category_id="" data-date="2017-05-18" data-index="article_1">
新德里:印度不能降低防范全球ransomware攻击是世界上还没有看到最后的病毒,这个国家的网络安全机构的负责人警告说。尽管它对印度的影响相对较少,WannaCry——最大的ransomware袭击了世界——没有“结束”视为多个模块还可以出现并引起中断,桑杰巴尔说,印度计算机紧急响应小组的总经理(、)、面试等。
威胁远未结束,因为智能手机可能被网络黑客的下一个目标,巴尔说。自上周五以来的WannaCry ransomware已经感染了成千上万的台式机和笔记本电脑上运行窗户操作系统。
“更大的移动操作系统,这是安卓。我们不知道会发生什么,如果被击中。这将是一个完全不同的球赛,”巴尔说,、是可能发生的事做准备。
”黑客永远是两个步骤。我们不知道接下来会是什么,是否这是结束这个(攻击)或者将会有一个变体来了。”
为个人、、扑灭一个顾问周一在其网站上,进行网络直播。该机构利用其Facebook页面和一个推特处理以及MyGov平台传播消息,巴尔说。
“有一个巨大的外展计划星期六开始。这是一个危机,很多人在幕后工作,”巴尔表示。“我们正在利用所有可用的频道…,我们要利用更多,”他说。
印度已经能够保护自己免受攻击比其他几个国家,、接收报告周三晚上只有85台机器被感染。行业受感染的电脑专家挂钩的数量超过40000各个行业,包括银行、零售和制造业。
据报道,在全球范围内,病毒感染至少150个国家的200000台电脑。巴尔说、一直为政府部门实施网络安全演习,为他们提供危机管理计划和步骤的攻击。
“我们有32记入审计人员进行技术审核,帮助组织修复(网络安全)的差距,”他说,并补充说、进行了培训和意识会话为政府管理者和ceo。“我并不是说每个人都有参与,但我们做到了整个行业。”
的消息后Wa乐动扑克nnaCry ransomware攻击了,该机构进行大规模推广操作覆盖联邦和州政府机构如国家信息中心和印度问题的唯一标识权威Aadhaar数字身份号码。
警报也发送给利益相关者在国防、医疗和其他领域,印度央行(Reserve Bank of India),印度证券交易委员会,机场管理局印度铁路,学术界,和国家秘书,巴尔说。“我们每个人都伸出周六,他们中的大多数个人电话本身,这样他们就可以启动业务周六和周日完成它。”
巴尔说,公司和政府机构受到网络攻击下应该通知、因为它是强制性的行为和信息可以帮助该机构提高其响应。、与其他国家网络安全机构在世界各地的网络也帮助,巴尔说。
“西班牙是第一个受到影响。西班牙语CERT开发了一种detection-and-cleaning工具,我们在咨询扑灭。虽然它是用西班牙语,它仍然会帮助人们,”他说。
、增加能力,推出金融行业确实的事情,电力和电信行业,巴尔说。“这个特定的案例已经表明,有一个社区愿意维护数字资产的人,上前握手,工作很努力。”
评论
现在评论 阅读评论(1)所有评论
找到这个评论进攻?
下面选择你的理由并单击submit按钮。这将提醒我们的版主采取行动