UPSC Courses

DNA banner


  • 31 December, 2023

  • 5 Min Read

CYBER CRIME - Ransomware attacks

IT service provider HCL Technologies has shared that it was hit by a ransomware incident within a restricted cloud environment.

What is a ransomware?

  • Ransomware – It is an extortion software designed to lock or encrypt a device or data on a system and then demand a ransom (money) for its release.
  • Attackers usually leave behind a message with instructions on the ransom amount, mode of transfer, or instructions on how to contact them for further guidance.
  • Working
    • Originates from a malicious link, email attachment, exploited vulnerability, attack campaign, or worm.
    • Installs in victim’s machine.
    • Spreads to other devices on a network and connects to a command-and-control server controlled by the attacker.

  • Impact - It can lead to data loss, productivity losses, and reputational damage.

Ransomware-as-a-service business models promote new generation of smaller and smarter gangs are likely to become more prevalent

How does it differ from malware?

Current status of ransomware attacks in India?

  • Indian Ransomware Report – It is released by India’s Computer Emergency Response Team (CERT-In).
    • A 51% increase in ransomware incidents was reported in first half of 2022 as compared to 2021.
    • A majority of these attacks target data centres, IT, and TeS sectors in the country.
  • State of Ransomware 2023 Report -It is a 2023 study by Sophos, a cybersecurity company.
    • Increase in ransomware attack – Attack on organisations is up from 57% the previous year to 73%.
    • Drop in successful encryption of data – It is 77% of reported organisation, a drop from 78% the previous year.
    • Ransom Paid44% of organisations payed the ransom to retrieve their data.
    • Highest Impact – It is in education sector, where 79% of higher education organizations surveyed and 80% of lower education organizations surveyed reported such incidents.

Ransomware Attacks

  • Recent attacks – Akira, Wiperware attacks from Russia and LockBit Black.
  • Ransomware attacks in India – Indian organisations are increasingly targeted by ransomware attacks.
  • In 2023, a US-based subsidiary of Infosys was reportedly targeted by a ransomware attack while Indian drug manufacturer Sun Pharma was hit by a cyberattack.
  • In 2022, a ransomware attack crippled AIIMS for days.

Why do attackers target IT organisations?

  • Repository of valuable data – They hold sensitive information like personally identifiable data of users, intellectual property, access credentials, and even financial information.
  • Higher the value for data, higher the chances that the ransom will be paid.
  • Higher vulnerability of the target – If the data is leaked, it could lead to a drop in their value and replication of software, devaluing the company thus threatening its revenue streams.
  • Successful attacks could potentially open the channel to target supply chains, adding pressure on companies to pay the ransom.
  • Easy target – They are among the 1st to adopt new technologies and use open architecture, which may not have the highest levels of protection against cyberattacks, making them an easy target.

'Police’ and ‘Public Order’ are State subjects as per the 7th Schedule of the Constitution of India. Hence States and UTs are responsible for cybercrime prevention, detection etc.

How to protect against ransomware?

  • Cyber awareness training and education
  • Continuous data backups
  • Patching – Apply recent security updates on system or software.
  • User authentication
  • Reduce the attack surface – By addressing phishing messages, unpatched vulnerabilities, remote access solutions and mobile malware.
  • Deploy anti-ransomware solution.


Pradhan Mantri Suryodaya Yojana

Recently, Prime Minister announced Pradhan Mantri Suryodaya Yojana under which 1 crore households will get rooftop solar power systems. India’s Status of Current Solar Capacity India currently stands at 4th place globally in solar power capacity. As per Ministry of New an

Foreign Contribution Regulation Act (FCRA)- NGO 

The Foreign Contribution Regulation Act, 2010 (FCRA) registration of two prominent non-governmental organisations (NGOs) — Centre for Policy Research (CPR) and World Vision India (WVI) have been cancelled this month. What is FCRA? Key provisions of FCRA, 2010 Key aspects Description

Voice clone-AI

Voice clone fraud has been on the rise in India. AI voice cloning – It is the process of creating a synthetic replica of a person’s voice through machine learning and speech synthesis technology.It is called as voice deepfakesor audio deepfakes. Objective – To achieve a high level of na

Science communication- how to promote

Steps taken by India to promote Science Communication Publications and Information Directorate (PID) - An organisation under Council of Science and Industrial Research (CSIR) established in 1951 for publishing and disseminating scientific information in India. National science magazines- The PI

Universal Basic Income (UBI)- Analysis

Universal Basic Income (UBI) can strengthen welfare architecture and unlock the nation’s latent demographic potential. UBI - It is an income support mechanism typically intended to reach all or a very large portion of the population regardless of their earnings or employment status. Objective- To provide enough to co


Search By Date

Newsletter Subscription
SMS Alerts

Important Links

UPSC GS Mains Crash Course - RAW Prelims Answer Key 2024