Indian sites prone to cyber-attacks by Pak during key events

Washington: India-Pakistan rivalry has spilled over into cyberspace through hacktivism and even “state-sponsored” attacks with popular Indian websites more prone to such strikes during high-profile events like cricket matches and Independence Day, a CIA-backed threat intelligence company has said.


Analysing patterns of cyber-attacks around several events like Independence Day, 26/11 and cricket matches, Boston-based Recorded Future in its report suggested many possible motivations and objectives of the cyber activities between India and Pakistan, ranging from loosely- affiliated hacktivist groups defacing symbols and institutions to more coordinated state-sponsored attacks.

“These are nationalistic hacker groups,” Nagraj Seshadri, co-author of the report ‘Hactivisk: India vs Pakistan’, told PTI after the release of the study yesterday, which he said, is based on information extracted from the public domain.

“The objective mostly is public embarrassment. If there is a big event, or if there is a big anniversary in the physical world or geo-political context, it is important to be vigilant on the cyber context and be prepared as well when it comes to websites or other cyber assets,” Seshadri said.

According to the report, India and Pakistan’s Independence Days, which fall on August 15 and August 14 respectively, create a predictable pattern (at least over the past three years) of attacks and retaliatory strikes by the opposing hacker groups.

An uptick in such activity before and after this year’s Independence Day should not come as a surprise, the report said.

Taking a closer look at the activities of the Pakistan Cyber Army (PCA), the report said it has been consistently active at least since the 2007 hacking, defacing and shutting down high-profile Indian websites.

Government and private sites have been targeted by PCA including Indian Oil and Natural Gas Corporation (a Fortune 500 company), Indian Railways, the Central Bureau of Investigation, Central Bank of India, and the State Government of Kerala.

In fact, investigations by Recorded Future found that PCA has been publicly posting tutorials on some of its social network groups including Facebook on how to hack or deface an Indian website.

“When we investigate the PCA’s TTPs (tactics, techniques, and procedures) to learn how they operate, we find examples like tutorials on how to set up phishing attacks as shown in this Facebook post,” the report said as it showed a snapshot of the Facebook page.

“In some instances the hackers chose to identify themselves — for example, the hacker behind India’s Kerala state website defacement in September 2015 identified himself as ‘Faisal 1337’. But this is rare,” it said.

The report also mentioned several Indian groups which retaliate to the Pakistani cyber attacks. Recorded Future is a five-year-old company backed by the CIA’s investment arm In-Q-Tel, Google and other investors.

It’s core offering is world’s largest open source (OSINT) collection and analysis engine, bigger than anyone operated by either governments or commercial companies.

Seshadri said that websites which are identified or are associated with the government need to be extra careful and take necessary precautionary measures to protect them from cyber-attacks during India-Pak cricket match, or other important events.

Responding to a question, he said one is not sure how big the India-centric Pakistani hacking community is.


  1. “he said one is not sure how big the India-centric Pakistani hacking community is” – OK – so what are those millions of those so called “software engineers” doing? We brag about our software companies and our “software engineers” – are Pakis better than us?

  2. “so what are those millions of those so called “software engineers” doing?” asks Dinesha who holds multiple degrees from schools in London!!!

    Well, this is a national security issue and India needs to have a clear and well-defined strategy to combat this. Honestly, I am more concerned about cyber attacks from much more sophisticated groups in China, not some illiterates in Karachi. As India is far ahead of Pakistaan in web and digital world, it is much easier to find potential targets in India as compared to Pakistan which doesn’t even exist in this space!! Our big corporations are doing a good job of protecting client data and other sensitive information from these attacks. As far as our government goes, I don’t even know if they have a dedicated, sophisticated cyber cell to engage in cyber warfare. Remember – our political leaders are corrupt, shameless, good-for-nothing individuals with no qualification and they have no long-term vision for the country. Again, I am more worried about neighbor to the north, not the sharia hole on our western border.

Leave a Reply