Since the terror strike in Pahalgam on April 22, India has been battling a massive surge in cyberattacks. Sources indicate that Indian systems have faced over 10 lakh cyber-attacks. Initially targeting the financial sector, the attacks have broadened to encompass critical infrastructure, including the power sector. The nature of these attacks varies, with a significant portion identified as Distributed Denial of Service (DDoS) attacks, aimed at disrupting services and defacing government websites.

In response to this escalating threat, the Indian Computer Emergency Response Team (CERT-In) has issued multiple advisories to bolster secure communication protocols. Furthermore, the government convened a crucial meeting with key stakeholders from the technology and communication sectors, including representatives from NASSCOM and the Data Security Council of India. The objective was to highlight potential cyber threats and advocate for enhanced security measures across all critical data centers. The industry has also been urged to prepare to support governmental efforts in safeguarding the national cyber infrastructure.

According to the Maharashtra Cyber department, these cyberattacks have originated from various countries, including Pakistan, the Middle East, Indonesia, and Morocco. Some of the hacking groups involved have claimed affiliations with Islamist groups, raising concerns about potential cyber warfare. While many attacks have been successfully thwarted, the sheer volume underscores the persistent and evolving nature of the threat.

Maharashtra Cyber has identified several Advanced Persistent Threat (APT) groups, primarily linked to Pakistan, as being responsible for a significant portion of these attacks, specifically targeting critical infrastructure websites. These groups employ a range of tactics, including malware deployment, DDoS attacks, and the dissemination of misinformation. While the success rate of these attacks has been relatively low, the potential for disruption and damage remains a serious concern.

Despite a ceasefire agreement between India and Pakistan, cyberattacks from the neighboring country, as well as from Bangladesh and the Middle Eastern region, have persisted. This highlights the complex nature of cyber warfare, where geographical boundaries offer little impediment to malicious actors.

In addition to direct attacks on infrastructure, there has been a notable increase in misinformation and fake news related to India-Pakistan military conflicts circulating on social media. Maharashtra Cyber has taken steps to identify and remove thousands of instances of such content, demonstrating the importance of addressing the information warfare aspect of these cyber campaigns.