DoT’s own websites still running without security audits amid rising cyber attacks

Eight months after the deadline to submit security audit certification of telecom department‘s various websites have lapsed, its security audit wing on Monday asked all web portals and websites under its ambit to submit security certification immediately, or face action.

“Recently it has been observed that data ex-filtration is taking place from one of the web portals of the Department of Telecom and at the same time, it doesn’t have a valid security audit certificate,” the security audit wing of the Department of Telecommunications (DoT) had said in a circular issued in October 2019.

Accordingly, the wing had sought that ‘custodians’ of all web portals and websites within the ambit of DoT arrange to provide the valid security audit certificate in respect of their web portals and websites by November 2019.

The reminder on Monday for a security audit of the websites and portals comes in the backdrop of increasing cyber attacks in the country as border tensions with India’s northern neighbor, China rise.

In case of web portals and websites for which a valid security audit certificate is not readily available, the wing has asked for an immediate security audit of the concerned portal and websites.

Amid global concerns regarding data security architecture followed by Chinese tech companies, the Indian government banned 59 Chinese mobile applications, including top social media platforms such as TikTok, WeChat and Helo, to counter the threat posed by these applications to the country’s “sovereignty and security” .

The ban came soon after the government terminated the automatic route for FDI from countries sharing borders with India, mandating that government authorities scan all future investment from the neighboring countries. The government is further studying the impact of Chinese investments in Indian companies and the data security architecture around those companies.

Source link

Leave a Reply

Your email address will not be published. Required fields are marked *