CyberManipal.

Tech news from MIST

DoT's own websites still running without security audits amid rising cyber attacks

Vulnerabilities
@NithinChowdary

Nithin Chowdary

July 20, 2020

Telecom Departments security audit wing asked all web portals and sites under it to submit security certification immediately or face action, eight months after the deadline to submit security audit certifications. In October 2019, The security audit wing of DoT said in a circular, " they observed the data ex-filtration is taking place from one of the web portals of the Department of Telecom, and at the same time it doesn't have a valid security audit certificate." Accordingly, the wing set out a deadline(November 2019) to provide the valid security audit certification of their web portals and websites. As a backdrop of increasing cyber attacks in the country as border tensions with China, On Monday(July 20th,2020), the wing has asked for an immediate security audit of portals and websites for which a valid security audit certificate is not readily available. The ban of Chinese apps came soon after the government terminated the automatic route for foreign direct investment from countries sharing borders with us, mandating all future investments. The government further studies the impact of Chinese investments in Indian companies and security around those companies.

Abridged fromET CISO

Click here to see the original post

Share this article