It is well known that websites of Government of India hosted at NIC are not adequately protected against cyber attacks. It has now been admitted that “The defacement and hacking of government websites have not only brought to the fore security lapses, but also resulted in financial losses to the exchequer”
According to the Reserve Bank of India, between 2009 and 2011, 489 e-fraud cases were registered, and these led to a loss of about Rs 28.46 crore. Separately, the Central Bureau of Investigation’s economic offences unit registered nine financial fraud cases between 2009 and 2012 (February). These led to a loss of Rs 43.92 crore….More in Business Standard Report
As a remedy the report suggests that the Government is trying to adopt ISO 27001 audits. This is a step in the right direction but again indicates that the Government is unable to make a distinction between technical aspects of security and techno legal aspects of Information Assurance. Hence the measures of the Government are unlikely to be considered “Adequate” in any proper CAG audit.
Naavi