wordpress blog stats
Connect with us

Hi, what are you looking for?

8 months after deadline, DoT reminds govt websites to submit security audit certificates

cybersecurity, cyber attack, website security, vpn

All websites and portals that come within the ambit of the Department of Telecommunications must submit a valid security audit certificate for their website, the DoT said in a circular issued on July 17. If a security audit certificate is not available, the websites have to immediately carry out a security audit. This includes websites run by NIC, all websites run by agencies and units within the DoT including MTNL, BSNL, TCIL, ITI Limited and BBNL. The circular has also been sent to TRAI and TDSAT.

The DoT had asked for this certificate to be submitted by October 31, 2019 in October 2019 but even more than eight months after the deadline passed, and seven months after a reminder was sent, “the requisite information is still awaited”. The memo was issued in 2019 after data was exfiltrated from one of the web portals of the Department that did not have a valid security audit certificate.

DoT had issued a circular about best practices for cybersecurity on July 8. As per that, the most common tactic, techniques and procedures (TTPs) used to compromise computers are spear-phishing emails, distributed denial of service (DDoS) attacks, evading traffic analysis, exploiting web application vulnerabilities, and creating dubious apps.

Citing unnamed government officials, the Indian Express reported that attacks on Indian websites have increased significantly since the clash between Indian and Chinese troops on June 15 and the subsequent ban on 59 China-linked apps. Quoting an official, the report said that most of the command and control servers for these attacks and malware are located in China, and right after the border clashes, officials had observed up to 10,000 attacks per day, a number that has since decreased.

The DoT has reportedly submitted a report to the Indian Computer Emergency Response Team (CERT-In) on possible cyber-attacks and security aspects of sensitive government websites and portals. It has also reportedly asked all other ministries and departments to migrate their websites and web portals to the gov.in domain by August 31.

Advertisement. Scroll to continue reading.

Written By

Send me tips at aditi@medianama.com. Email for Signal/WhatsApp.

MediaNama’s mission is to help build a digital ecosystem which is open, fair, global and competitive.

Views

News

When news that Walmart would soon accept cryptocurrency turned out to be fake, it also became a teachable moment.

News

The DSCI's guidelines are patient-centric and act as a data privacy roadmap for healthcare service providers.

News

In this excerpt from the book, the authors focus on personal data and autocracies. One in particular – Russia.  Autocracies always prioritize information control...

News

By Jai Vipra, Senior Resident Fellow at Vidhi Centre for Legal Policy The use of new technology, including facial recognition technology (FRT) by police...

News

By Stella Joseph, Prakhil Mishra, and Yash Desai The Government of India circulated proposed amendments to the Consumer Protection (E-Commerce) Rules, 2020 (“E-Commerce Rules”) which...

You May Also Like

News

Rajesh Kumar* doesn’t have many enemies in life. But, Uber, for which he drives a cab everyday, is starting to look like one, he...

News

By Aroon Deep and Aditya Chunduru You’re reading it here first: Twitter has complied with government requests to censor 52 tweets that mostly criticised...

Advert

135 job openings in over 60 companies are listed at our free Digital and Mobile Job Board: If you’re looking for a job, or...

News

Google has released a Google Travel Trends Report which states that branded budget hotel search queries grew 179% year over year (YOY) in India, in...

MediaNama is the premier source of information and analysis on Technology Policy in India. More about MediaNama, and contact information, here.

© 2008-2021 Mixed Bag Media Pvt. Ltd. Developed By PixelVJ

Subscribe to our daily newsletter
Name:*
Your email address:*
*
Please enter all required fields Click to hide
Correct invalid entries Click to hide

© 2008-2021 Mixed Bag Media Pvt. Ltd. Developed By PixelVJ