Mumbai, New Delhi, and Bengaluru are attracting the maximum number of cyberattacks
Smart cities, financial services, and transportation sectors lead the sectoral rankings in terms of cyberattacks
The unit cost of malware rises leading to hackers procuring malware from new sources to target the country
The number of cyberattacks registered a 26 percent jump in the quarter
A strong correlation between cyberattacks and regional geopolitical episodes
Corrosion attacks on firmware register a significant rise
Connected infrastructure components linked to smart cities, industries, transportation infrastructure and data centers clear targets for hackers
The study identified over 3500 modular malware samples in the country registering a whopping 37 percent increase. Malware of varying degrees of sophistication are being reported from a variety of deployments including new projects surrounding renewable energy. Most malware detected (36 percent) could be traced to sources on the Darkweb while as much as 14 percent of malware couldn’t be traced to a known source pointing to the arrival of new actors and malware shops on the scene.
The detection of malware connected with critical infrastructure projects has also registered an increase. This implies that hackers are targeting large scale disruption and are working to increase the cost associated with managing such projects as also negatively impact future investments in them. High reconnaissance activity detected points to hackers monitoring systems and response mechanisms to thwart and limit attempts to intervene to detect malware, contain the infection and also trace the sources of cyberattacks.
Activities linked to cyberattacks are concentrated in Bangalore, New Delhi, and Mumbai. These three cities together accounted for roughly 38 percent of all attacks registered by us.
Independent hackers are increasingly feeling the need to monetize cyberattacks as the unit cost of malware has risen in the last quarter. Further, it is becoming increasingly difficult to source high-grade malware from multiple sources due to various factors.
“The volume and complexity of malware detected in the country are a clear source of concern. As the digital footprint of India increases through capital intensive projects, hackers are targeting data and large scale disruption like never before. The increase in cyberattacks against the country and the strong geopolitical correlation indicate high levels of interest in targeting our critical infrastructure. At both ends of the spectrum i.e., high-quality malware deployed for strategic objectives and operational malware meant for a specific purpose, hackers are working to improve their ability to monetize cyberattacks. We hope this report helps frame a coordinated response to the challenge posed by hackers and adversarial groups,” said Vinod Kumar, Managing Director and CEO, Subex.
Subex will also be releasing similar state of IoT Security reports for ASEAN and the Middle East over the next few weeks while a global version of the report is expected to come out in early December.