Lagatar24 Desk
New Delhi: In the backdrop of escalating tensions between India and Pakistan, cybersecurity experts have issued urgent warnings to Indian internet users. A surge in cyberattacks believed to be originating from Pakistan is targeting personal computers, laptops, and mobile phones across the country.
According to a report by the Economic Times, these attacks primarily involve malicious PDF files posing as official government documents. One such file, titled “Report & Update Regarding Pahalgam Terror Attack”, is laced with phishing links mimicking Indian government domains. Users who download and open these files risk having their devices compromised.
Sophisticated Cyber Espionage Campaigns Uncovered
Vishal Salvi, CEO of Quick Heal Technologies, confirmed that Indian officials have already thwarted multiple cyber intrusion attempts in recent days. “There has been a sharp escalation in Pakistan-backed cyber campaigns targeting Indian defence, government, and critical infrastructure sectors,” Salvi said.
Quick Heal’s research points to the involvement of APT36, also known as Transparent Tribe, a Pakistan-based threat actor. The group has been deploying CrimsonRAT malware via phishing emails and pairing it with a remote monitoring tool called MeshAgent. These campaigns are often synchronized with DDoS (Distributed Denial of Service) attacks and website defacements by hacktivist groups.
Another associated group, SideCopy, has expanded its target list to include India’s railway and oil sectors. The group reportedly uses a new malware known as CurlBack RAT to gain unauthorized access to systems.
A Geopolitical Dimension to Cyber Warfare
Experts emphasize that these incidents are not random but are part of a larger cyber conflict tied to regional geopolitics. Sundareshwar Krishnamurthy, cybersecurity partner at PwC India, highlighted, “Cyberattacks are no longer fringe acts of disruption. They have become deliberate extensions of geopolitical strategy.”
The cyber crossfire comes in response to recent events such as alleged breaches of Pakistani systems by Indian hacktivist group India Cyber Force, and retaliatory attacks by Team Insane PK, including defacing the Indian Army College of Nursing website with inflammatory messages.
How to Stay Safe: Cybersecurity Best Practices
To minimize risk, cybersecurity experts recommend the following steps:
-
Avoid downloading unsolicited PDFs or files, especially those referencing sensitive current events like terrorism or national security.
-
Verify email senders before opening attachments or clicking on links.
-
Cross-check URLs for authenticity and avoid entering sensitive data on suspicious websites.
-
Keep systems and antivirus software updated to defend against evolving malware.
-
Stay cautious online, particularly on unfamiliar websites or those promoting provocative content.
-
Report suspicious activity to your organization’s IT or cybersecurity team immediately.
With cyberattacks now serving as digital extensions of geopolitical tensions, awareness and caution are crucial for safeguarding personal and national digital assets.
