The “rivalry” between India and Pakistan is considered to be an inherent part of both countries’ history and culture, influencing every field, from sports, movies to even marketing campaigns. It should therefore come as no surprise to the current tech-savvy crowd that cyber attacks have been added to this list.
Every few months, we hear about some independent and “talented” group of hackers – boasting colourful names like Pakistan Cyber Army, Indian Cyber Army, Pakistan Hackers Club, Pakhaxors, Predators PK, Hindustan Hackers Organisation and so on – defacing yet another Indian or Pakistani website. Mostly, the homepage is littered with poorly-worded patriotic statements and taunts that often provoke the other nation’s hacking groups to retaliate.
Although these attacks have been occurring intermittently since the late 90s, they seem to have escalated since the Mumbai terrorist attacks in 2008. While previously these hacks targeted popular but harmless websites, the trend has gradually moved to defacing major government and law enforcement websites.
Anatomy of an attack In this context, a cyber attack is usually triggered by some act of violence or aggression from the rival country. Within a span of hours, these groups of hackers locate a high-value website that doesn’t have adequate cyber security in place, and gains root access to the Web server by hacking into it.
The homepage is defaced and replaced with juvenile comments. Often, these hackers block visitors’ access to important information. Such acts, of course, lead to more cyber defacements, with the most “coveted” targets being government websites.
Some of the notable attacks from the recent past are listed below:
November 2010: A fresh round of the India-Pak cyber war kicked off last year when a group known as the Indian Cyber Army hacked around 40 high-profile government websites, including that of the Pakistan Army, Ministry of Education, Ministry of Finance, and the Ministry of Foreign Affairs. The apparent motive behind this was to protest against the Mumbai attacks.
The title page of these websites was imaginatively replaced with the famous World War II image of soldiers struggling to raise the US flag in Iwo Jima (of course, in this case, the Indian flag replaced the American flag).
December 2010: In retaliation to the attack mentioned above, the Pakistan Cyber Army (PCA) successfully hacked around 270 Indian websites with the most notable being of the high-profile Central Bureau of Investigation (CBI). Again, the homepage was vandalised with insulting comments regarding India’s cyber-security.
The PCA also promised that a widespread defacement of Indian websites would be carried out if further attacks [on Pakistani websites] occurred. The attack raised enough eyebrows for India to start a probe into Pakistan’s cyber attack capabilities and register a case against the PCA for hacking and defacing its official websites.
The Pakistan Cyber Army, however, soon released a statement calling for a ceasefire between the two countries’ hacking groups, insisting that they had only retaliated against the hacking of the Pakistani government websites by the Indian Cyber Army.
The group further said that not a single record from the CBI website database had been deleted or tampered with. Their plans to mass-deface Indian government websites had also been dropped. Ironically, they also advised the younger generation not to emulate them and instead focus on their studies.
July 2011: Although things appeared to have cooled off after the apparent ceasefire, the 2011 Mumbai bomb blasts once again triggered off cyber attacks, with the Indian Cyber Army defacing the popular Pakistani website Songs.pk. The message posted on the website warned “anti-Indians” that the group was “coming with huge speed,” and that “there will be no one to save” them.
September 2011: The website of the Supreme Court of Pakistan was hacked by a group of hackers that demanded stronger action to be taken against objectionable websites and made snide remarks about the Chief Justice of Pakistan. Soon after, the website of Pakistan Telecommunication Authority (PTA) was also hacked with the same protests advocated. What made this attack unique was that it was committed internally, showing that hacktivism was now a definite reality in Pakistan.
October 2011: The homepage of Criminal Investigation Department (CID), of the Indian West Bengal was hacked by a group calling itself the Muslim Liberation Army. Protesting against the killing of civilians in Jammu and Kashmir, the attackers demanded the Indian government take measures to stop such actions. Through analysis of the server logs, CID officials stated that they had traced the attackers to Lahore via a proxy server in the US.
Combating the “Armies” The attacks mentioned here is only the tip of the iceberg, but they all point to the fact that government websites are now in the cross-hairs of hackers – local and international. It is no secret that government entities are on an entirely different level from private organisations, with numerous bureaucratic hurdles in place for even the most trivial tasks.
However, cyber attacks occur in real-time and slow response to such attacks is unacceptable for any nation. Similarly, even a superfluous survey of government organisations will reveal that there is little awareness of information security among the employees, with security audits rarely being conducted.