This just in:

State PCS





Daily Updates

Governance

Digital Threat Report 2024

  • 18 Apr 2025
  • 8 min read

For Prelims: Digital threats, Artificial Intelligence, Deep fakes, WannaCry ransomware attack, Phishing, Internet of Things, National Cyber Security Policy, Indian Cyber Crime Coordination Centre, Computer Emergency Response Team - India , Cyber Swachhta Kendra , Digital Personal Data Protection Act 2023. 

For Mains: Key Highlights of Digital Threat Report 2024, Key Recommendations for Cyber Security in BFSI sector, Current Major Cyber Threats that India is Facing, Key Government Initiatives Related to Cybersecurity in India. 

Source: PIB

Why in News? 

India has released its first-ever Digital Threat Report 2024, aimed at strengthening cybersecurity in the Banking, Financial Services, and Insurance (BFSI) sector. The report highlights evolving cyber risks and outlines strategic measures to protect the nation’s financial infrastructure, crucial for its digital economy. 

What is the Digital Threat Report 2024? 

  • The Digital Threat Report 2024 is a collaborative initiative by SISA (Strategic Information Services Agreement), a global cybersecurity firm, along with the Computer Emergency Response Team (CERT-In), and CSIRT-Fin 
  • It provides a comprehensive analysis of the escalating cybersecurity risks within India's BFSI sector and guides organizations to adopt stronger security measures, improve compliance protocols, and enhance threat detection capabilities. 

What are the Key Highlights of the Cyber Threat Report 2024? 

  • Surge in Cyberattacks and Data Breach Costs: In 2024, the BFSI sector witnessed a surge in cyberattacks, with global data breach costs rising to USD 4.88 million (a 10% increase from 2023) and USD 2.18 million in India.  
    • BFSI’s digital growth, projected to reach USD 3.1 trillion in payments by 2028, is widening its cyber threat exposure. 
    • Phishing attacks in India surged by 175% in June 2024 compared to 2023. 
  • Crypto Attacks: Crypto exchanges have been targeted by cybercriminals and new malware variants also threaten crypto wallets by extracting private keys for unauthorized access. 
  • Social Engineering Attacks: Business Email Compromise (BEC) and phishing are rising cyber threats, with 54% of BEC cases involving pretexting. 
    •  AI and deepfake technologies are making these attacks more convincing by impersonating executives to manipulate financial transactions or steal sensitive data. 
  • Impact of AI on Phishing: AI is making phishing attacks more convincing by generating emails that mimic trusted entity's tone, style, and branding.  
    • AI-driven chatbot phishing scams engage victims interactively to extract personal data. 
    • Large language models (LLMs) like WormGPT and FraudGPT bots are lowering the barrier for cybercriminals, enabling the creation of more convincing phishing emails and malware. 
  • Stolen Credentials and Malware: Hackers are using stolen login details and malware using techniques like session hijacking, brute-force attacks, deepfake technology, and BOLA vulnerabilities to bypass Multi-Factor Authentication (MFA), mainly targeting SaaS platforms like email and VPN services. 
    • SaaS platforms are a type of digital platform that facilitates the selling, distribution, and management of cloud-based software and services. 
  • Cloud Security Weaknesses: Misconfigured cloud services, such as publicly accessible storage and weak access controls, are major targets.  
    • There has been a 180% increase in attacks exploiting cloud vulnerabilities. 

Key_Anticipated_Cyber_Threats_in_2025

  • Key Recommendations: 
    • It includes adopting a human-centric, leadership-driven approach to cybersecurity, backed by continuous employee training and cyber-awareness to counter emerging threats like AI phishing and deepfakes. 
    • Implement regular Automated Vulnerability Scans, real-time threat intelligence sharing, and a multi-layered “defense-in-depth” strategy with firewalls, endpoint protection and Zero Trust architecture. 
    • Leveraging Technology to ensure timely patching (updates), AI-based threat detection and use of MFA for access control. 

Key_Recommendations_On_Cybersecurity

What are the Key Emerging Cyber Threats in India?  

Click Here to Read: Key Cyber Threats in India

 

Cyber_Threats 

What is the Current Framework for Cybersecurity in India?  

CyberSecurity

Conclusion 

As cyber threats evolve, adopting a proactive, multi-layered cybersecurity approach is crucial for safeguarding critical infrastructure. Prioritizing early vulnerability assessments, AI-driven detection, strong authentication, and securing applications enhances resilience. Embedding cybersecurity into organizational strategies will strengthen India’s digital ecosystem and ensure long-term security. 

Drishti Mains Question: 

What are the key challenges posed by Cyber Attacks on india. How can the government formulate effective strategies to mitigate the risks posed by cyber attacks?

UPSC Civil Services Examination, Previous Year Question (PYQ) 

Prelims 

Q.1 In India, under cyber insurance for individuals, which of the following benefits are generally covered, in addition to payment for the loss of funds and other benefits? (2020) 

  1. Cost of restoration of the computer system in case of malware disrupting access to one’s computer 
  2. Cost of a new computer if some miscreant wilfully damages it, if proved so 
  3. Cost of hiring a specialised consultant to minimise the loss in case of cyber extortion 
  4. Cost of defence in the Court of Law if any third party files a suit 

Select the correct answer using the code given below: 

(a) 1, 2 and 4 only 
(b) 1, 3 and 4 only 
(c) 2 and 3 only 
(d) 1, 2, 3 and 4 

Ans: (b) 

Q.2 In India, it is legally mandatory for which of the following to report on cyber security incidents? (2017) 

  1. Service providers 
  2. Data centres 
  3. Body corporate 

Select the correct answer using the code given below: 

(a) 1 only 
(b) 1 and 2 only 
(c) 3 only 
(d) 1, 2 and 3 

Ans: (d)


Mains 

Q. What are the different elements of cyber security ? Keeping in view the challenges in cyber security, examine the extent to which India has successfully developed a comprehensive National Cyber Security Strategy. (2022)

close
SMS Alerts
Share Page
images-2
images-2