- Cybercrime is rising in India’s rapidly digitising economy, especially online financial fraud. To ensure timely response and victim protection, the Ministry of Home Affairs approved an SOP via the Cyber Financial Crime Reporting and Management System (CFCFRMS).
Current Status in India
- Incident Surge: Cybersecurity cases doubled from 10.29 lakh (2022) to 22.68 lakh (2024).
- Financial Losses: Cyber frauds worth ₹36.45 lakh were reported on NCRP (2025).
- Digital Reach: 86%+ households now have internet access.
- Budget Push: ₹782 crore allocated for cybersecurity (Union Budget 2025–26).
Types of Cybercrimes
- Phishing: Sending deceptive emails or messages to trick individuals into revealing personal information, such as login credentials or financial details.
- Identity Theft: Stealing personal information, such as social security numbers or credit card details, to impersonate someone else.
- Denial-of-Service (DoS) Attacks: Overloading a website or network with traffic to make it unavailable to users. This disrupts the targeted service, preventing legitimate users from accessing it.
- Cyber Espionage: Illegally accessing confidential information or trade secrets from governments, businesses, or individuals for economic, political, or military advantage.
- Cyberstalking: It involves online harassment of a user using digital communication tools aimed at causing fear, distress, or discomfort.
- Ransomware Attack: A type of malicious software (malware) that encrypts a victim’s files, making them inaccessible, and demands a ransom payment for their release.
- Advanced Persistent Threats (APTs): Cyber-attacks conducted by highly skilled and organised threat actors, often with specific objectives such as espionage, data theft, or disruption. The attackers maintain a long-term presence within the targeted system while remaining undetected.
- E.g., RedEcho (a cyber security firm) revealed that a China-linked APT group had targeted ten entities in India’s power sector.
- Cyber Kidnapping: it refers to a crime where the kidnappers convince their victim to hide and then contact their loved ones for ransom. The kidnappers are not physically present but monitor the victim online through video-call platforms.
Reasons for Rise in Cybercrime
- Rapid Digitisation: Over 86% of Indian households have internet access, massively expanding digital exposure.
- Low Cyber Awareness: NCRP data shows phishing and online scams as the most reported cybercrime categories.
- Financialisation Online: India processes 10+ billion UPI transactions monthly, increasing real-time fraud risks.
- Technology Misuse: Rise of AI-generated deepfakes and spoofed calls has amplified impersonation fraud.
- Weak Cyber Hygiene: CERT-In reports link many breaches to weak passwords and unpatched systems.
Government Initiatives Against Cybercrime in India
- National Cyber Security Policy (NCSP): It was introduced in 2013 to provide individuals, companies, and the Government with a secure and dependable cyberspace.
- Indian Computer Emergency Response Team (CERT-In): The national nodal agency for responding to cybersecurity incidents. It provides vulnerability management and stakeholder coordination.
- National Cyber Coordination Centre (NCCC): CERT-In established it to provide real-time situational awareness and enable coordination among various agencies to respond effectively to cyber threats.
- Cyber Swachhta Kendra (Botnet Cleaning and Malware Analysis Centre): Launched by CERT-In, it aims to detect and clean malware infections and botnets in citizens’ computers and systems.
- The Indian Cyber-Crime Coordination Centre (I-4C): To tackle cybercrimes and develop effective coordination among law enforcement agencies and stakeholders.
- National Critical Information Infrastructure Protection Centre (NCIIPC): It was established to protect the CII of various sectors.
- Defence Cyber Agency (DCyA): The DCyA is a tri-service command of the Indian Armed Forces responsible for handling cybersecurity threats.
- Awareness Programs: CERT-In, RBI and Digital India jointly carry out a cybersecurity awareness campaign on ‘beware and be aware of financial frauds’ through the Digital India Platform.
Cyber Dome Project
- Meaning: It is a state-level initiative in India, first launched in Kerala, aimed at creating a dedicated cybercrime surveillance, investigation, and forensics infrastructure.
- It integrates technology, law enforcement, and cybersecurity expertise to prevent, detect, and respond to cybercrime.
Role in Controlling Internet Crimes
- Monitoring: Tracks online fraud, phishing, ransomware, and social media crimes in real-time.
- Forensics: Collects, analyses, and preserves digital evidence for legal use.
- Training: Builds the capacity of police, prosecutors, and the judiciary in cyber investigations.
- Awareness: Educates the public on safe internet practices to reduce cyber risks.
- Collaboration: Coordinates with CERT-In, I4C, and agencies for national and cross-border cyber intelligence.
|
Challenges in India
- Increasing Cyber-Attacks: Recent data from the Indian Computer Emergency Response Team (CERT-In) highlights that in 2022, 13.91 lakh cybersecurity incidents were reported.
- Weaknesses in IoT Devices: Default passwords and a lack of regular software updates create vulnerabilities that malicious actors can exploit.
- Rise of E-governance: Data breaches in government databases containing citizens’ personal information, such as Aadhaar details, have raised concerns about the security of sensitive data.
- Shortage of Professionals: India needs around 3 million cybersecurity professionals.
- Limited Awareness: Individuals receiving phishing emails fall victim to Online/cyber fraud due to a lack of awareness.
Way Forward
- Tech Upgradation: Deploy AI and advanced threat detection as cyber incidents rose from 10.29 lakh (2022) to 22.68 lakh (2024).
- Regulatory Reforms: Enforce laws for emerging tech like IoT and blockchain.
- Skilled Workforce: Address the shortage of 3 million cybersecurity professionals through training and recruitment.
- Awareness Drive: Strengthen campaigns via Digital India & CERT-In, since over 86% of households are online, yet phishing remains rampant.
- Critical Infrastructure: Protect sectors like banking and power, with vulnerabilities exposed in ICICI, HDFC, and NPCI systems.
Cybercrime in India poses a growing threat to security and economy; fortifying technology, skills, regulations, awareness, and critical infrastructure is key. As they say, “Vigilance in cyberspace is the first line of defence.”
Reference: The Indian Express
UPSC Mains PYQs –Theme – Cybercrimes in India
- [UPSC 2020 10M] Discuss different types of cybercrimes and measures required to be taken to fight the menace.
- [UPSC 2019 10M] What is the Cyber Dome Project? Explain how it can be useful in controlling internet crimes in India.
PMF IAS Pathfinder for Mains – Question 511
Approach
- Introduction: Write a contextual introduction about the cybercrime in India.
- Body: Write major forms of cybercrime, also mention the factors driving their growth, and suggest measures to ensure a secure cyberspace.
- Conclusion: Emphasis on a coordinated approach to develop a safer cyberspace.
