The Government will start operations of its malware and botnet cleaning center from tomorrow, according to a Tweet re-tweeted by Ministry of Electronics and IT (MEITY). The center, set up by CERT-In (Indian Computer Emergency Response Team), will be responsible for helping citizens disinfect their devices of malware, botnets etc.
— Ajay Kumar (@drajaykumar_ias) December 18, 2016
The botnet center will work with ISPs in India for reporting and warning users of malware. According to CERT-In it can easily identify which IP addresses are infected since they send out bots or spam, which can then be reported to ISPs. ISPs can direct users to the CERT-In website, where users will find tools for dealing with the particular infection. Since CERT-In can only detect outgoing attack traffic, it will be useless against viruses that look to attack a user’s system. However, if the agency works as advertised, it should help in stopping major bot networks from forming in the country and preventing DDoS attacks like the one in July that slowed down Internet traffic in Mumbai, prompting MTNL to block port 25 on its network.
Note that it’s not clear which ISPs the agency has currently partnered with, but state telcos like BSNL and MTNL might be a safe bet. It’s also worth noting that the botnet cleaning center was first mulled in 2014, with the Government proposing setting one up through Cert-in, at a cost of Rs 50 crore, as a part of India’s cyber security policy. At the time, the Government said it would partner with ISPs in the next six months, which clearly did not happen. The program was confirmed again in May 2015 with a revised budget of Rs 100 crore, although no timeline was provided then.
What about other types of cybercrime?
While an initiative like this one should help curb the spread of botnets and malware, it does nothing to prevent or report other types of cybercrime, which the Government has proven inept at dealing with. For example, no action was taken against the Mumbai lab which callously published the lab results of over 43,000 people online without securing it in anyway. Similarly, of a total 8045 cybercrimes were reported in 2015, of which only 250 convictions were made. Overall, 11,789 cybercrime cases are pending investigations, and over 6,435, or 90.3% of the cases are pending trials in courts.