consultantsreview logo

Consultants Review Magazine

IT Ministry steps up cyberattack vigil and asks companies to raise defence

The Ministry of Electronics and Information Technology (MeitY) has stepped up its vigil against cyberattacks on Indian companies in the vaccine, logistics, pharmaceutical and power sector, and has also asked these to report “any and all major cybersecurity” incidents to the Computer Emergency Response Team (CERT-In) team every week, said senior government officials.

“The frequency of such attacks has definitely increased over the last one year. But for each such attack that gets reported or is flagged by some external agency, at least 10 others are stopped in track before they can do any harm. CERT-In has been in touch with all these companies,” an official said.

Over the past four-five months, especially after cyberattacks on Dr Reddy’s Laboratories and Lupin Ltd in October and November last year, the IT Ministry and its nodal body on cybersecurity, CERT-In, conducted meetings with critical companies in the vaccine, logistics, pharmaceutical and power sectors and assisted them in shoring up their defence, officials said.

The exercise was initiated towards the end of last year over triggers like rising potential cyber threats from countries like China, Russia and Uzbekistan, according to the executive. Another vaccine firm executive told that a government official had come to their office last month “to verify whether we have enough security from an IT perspective as well as general security for vaccine manufacturers.” According to this executive, the official had looked for measures like whether the company had adequate firewalls in place to thwart cyber attack attempts. “There is a lot of renewed interest in Indian vaccine companies,” the executive said.

Depending on the day, we get anywhere between 4-6 cyberattack attempts to as many as 100 attempts. Around 6-8 months ago, we would get 3-4 attack attempts in a month

Following the attacks on Dr Reddy’s Laboratories and Lupin in October and November last year, pharmaceuticals and healthcare companies have been on high alert, according to some industry executives. The number of cyber threats against vaccine makers, especially, has exponentially risen in the last six months alone, they said.

The executive of one such vaccine firm said that it now has to fight “thousands” of attempts to attack its systems every month. “Depending on the day, we get anywhere between 4-6 cyberattack attempts to as many as 100 attempts. Around 6-8 months ago, we would get 3-4 attack attempts in a month,” said the executive, requesting anonymity.

Current Issue