Ransomware attacks cripples AIIMS service

Subject : Science and Technology

Context:

AIIMS Delhi hospital was hit by ransomware which crippled important services for over 30 hours

What is the issue:

The National Informatics Centre (NIC) at AIIMS Delhi on Wednesday said that a ransomware attack affected the hospital server due to which day-today activities including OPD registrations and blood sample reports remained halted at the premier institute

What is Ransomware attack:

A ransomware attack is a cyberattack using malware that encrypts the victim’s files and requires users to pay a ransom to decrypt the files.
It is often designed to spread across a network and target database and file servers, and can thus quickly paralyze an entire organization.
Unlike other cyber-attacks, in this form of attack, the user is notified of the attack.
Ransomware spreads easily when it encounters unpatched or outdated software.

Some history of Ransomware attack:

The first ever recorded use of ransomware occurred as early as 1989 in the form of the AIDS Trojan,
However, this method gained prominence only after the unleashing of the WannaCry Ransomware in 2017. This was a massive attack that affected more than 200,000 systems in some 150 countries and accounted for a loss of several million dollars.
Since then, the use of ransomware attacks has seen an upward trend for committing cyber-crime.

What are some safeguards available in India against Cyber Threats

Information Technology Act, 2000 (Amended in 2008): It is the main law for dealing with cybercrime and digital commerce in India.
National Critical Information Infrastructure Protection Centre (NCIIPC) was created under Section 70A of IT Act 2000 to protect Cyber infrastructure.
CERT-In (Cyber Emergency Response Team, India): It is National Nodal Agency for Cyber Security and is Operational since 2004
National Cyber Security Policy, 2013: The policy provides the vision and strategic direction to protect the national cyberspace.
Cyber Swachhta Kendra: Cyber Swachhta Kendra helps users to analyse and keep their systems free of various viruses, bots/ malware, Trojans,
Indian Cyber Crime Coordination Centre (I4C): Launched in 2018, It is an apex coordination center to deal with cybercrimes.
Cyber Surakshit Bharat: It was launched by the Ministry of Electronics and Information Technology in 2018 with the aim to spread awareness about cybercrime and building capacity for safety measures for Chief Information Security Officers and frontline IT staff across all government departments.
The Cyber Warrior Police Force: It was organised on the lines of the Central Armed Police Force in 2018.