India must act swiftly to secure its digital future in an era where technological prowess is now essential for national security
Today, cyber-attacks impact every aspect of life, from government agencies and corporations to individuals’ personal data and privacy. While the reach of cybercrime is vast, the underlying complexity remains poorly understood by many, with significant security consequences for nations that fail to address these threats adequately. Cyber-attacks threaten national security and underscore the vulnerabilities associated with our increasing dependence on digital infrastructure. Although the internet has revolutionised the world by providing incredible convenience, connection and comfort, these benefits come with the challenge of safeguarding critical data and infrastructure. As cybersecurity becomes the essential defense for peace, prosperity, and privacy in the digital age, recent incidents such as the breach of 7.9 million customer records at India’s stockbroking firm Angel demonstrate the necessity of strengthening digital protections. While the internet facilitates ease of access, it also introduces serious vulnerabilities that call for immediate, concerted efforts.
The recent cyber-attack on Iran marks a chilling advance in digital warfare, illustrating that no nation is immune to the risks of a hyperconnected world. As countries, corporations, and citizens expand their online presence, the scope for potentially devastating cyber-attacks rises dramatically.
This incident serves as a reminder of the need for nations to address cyberspace’s complex, escalating risks. India, for example, is undergoing a digital revolution with over 936 million internet users as of December 2023. These “Digital Nagriks” fuel a dynamic digital economy, supporting critical sectors such as healthcare, education, finance and agriculture. However, the rapid pace of digital adoption has outpaced India’s cybersecurity measures, creating opportunities for cybercriminals to exploit these gaps.
According to the 2024 Cisco Cybersecurity Readiness Index, only 4 per cent of Indian companies are fully prepared to counter cyber threats, exposing significant vulnerabilities within the nation’s digital framework. These threats arise not only from criminal organisations but also from state-sponsored entities targeting India’s economic and strategic assets.
Moreover, emerging technologies like artificial intelligence (AI) enable more sophisticated cyber-attacks, including deepfake technology and disinformation campaigns, adding complex layers to cyber defenses.
In today’s world, technological prowess in fields such as AI and cybersecurity equates to national security, rivaling traditional military strength. However, India faces several challenges in coordinating an effective cyber defense.
While initiatives like Cyber Surakshit Bharat have shown early progress, a comprehensive national cybersecurity strategy is still missing, which limits effective threat response and assessment. A recent step forward has been the Prime Minister’s Office’s appointment of a cybersecurity oversight official, but gaps remain in the infrastructure needed to support comprehensive defence. Cyberspace’s borderless nature complicates defence efforts, as attacks can target both military and civilian assets globally, bypassing traditional political and geographic constraints.
India has implemented several initiatives to tackle cyber threats. For instance, the Cyber Fraud Mitigation Centre (CFMC) at the Indian Cybercrime Coordination Centre in New Delhi unites major players—including banks, telecom providers and law enforcement agencies—to combat online financial crimes. This initiative, exemplifying “Cooperative Federalism,” enables swift responses to fraud. The government has also introduced the Samanvaya Platform, a centralised repository of cybercrime data to foster interagency cooperation. Despite these initiatives, further action is required to establish a comprehensive cybersecurity framework. Without unified regulatory standards, gaps remain in protecting the public and private sectors, especially for small businesses that may lack the resources for robust cybersecurity protocols.
This vulnerability could undermine both national security and public trust in India’s digital infrastructure. Programs like Cyber Surakshit Bharat, the National Cybersecurity Coordination Centre (NCCC), and CERT-In have all aimed to strengthen India’s defences, with additional measures such as the Information Security Education and Awareness Project (ISEA) helping to create a culture of security consciousness among citizens. The 2023 Digital Personal Data Protection Act reinforces this commitment by aligning with global data security standards to improve transparency and accountability among companies.
(The writer is an assistant professor, Indian Institute of Information Technology, Sonepat; views are personal)
