India Mitigates 147 Ransomware Attacks in 2024 with CERT-In's Strategy

```html

India Reports 147 Ransomware Incidents in 2024 Amid CERT-In's Effective Mitigation Efforts

India's Computer Emergency Response Team (CERT-In) has reported 147 ransomware incidents in 2024, with coordinated actions through real-time intelligence sharing and forensic interventions significantly reducing their impact. This disclosure came during a cybersecurity familiarization visit and interactive session for a delegation of visiting journalists from Europe, America, and Central Asian countries on 12 December 2025.

Overview of the Briefing Session

The event, organized by CERT-In under the Ministry of Electronics and Information Technology (MeitY) in collaboration with the Ministry of External Affairs (MEA), took place in New Delhi. Chaired by Dr. Sanjay Bahl, Director General of CERT-In and Controller of Certifying Authorities (CCA) at MeitY, the session provided insights into India's cybersecurity framework and response mechanisms.

Shri Krishan Kumar Singh, Joint Secretary at MeitY, delivered welcome remarks, highlighting key initiatives of the ministry, including the India AI Impact Summit. The session focused on CERT-In's role in cybersecurity, crisis management, vulnerability assessment, information sharing, and coordinated responses to cyber incidents.

Dr. Bahl emphasized CERT-In's efforts in empaneling auditors and conducting specialized training programs. Through research collaborations, public-private partnerships, and participation in international forums, CERT-In is developing a robust cyber defense architecture in line with the Digital India vision.

CERT-In's Ransomware Response Strategy

During the briefing, Dr. Bahl specifically noted that India recorded 147 ransomware incidents in 2024. Ransomware attacks involve malicious software that encrypts data, demanding payment for decryption keys, often disrupting operations in critical sectors like healthcare, finance, and government services.

CERT-In's response has been marked by proactive measures. Real-time intelligence sharing among stakeholders enables swift detection and containment. Forensic interventions allow for detailed analysis of attacks, identifying perpetrators and preventing recurrence. These coordinated actions have substantially mitigated the impact of such incidents, minimizing downtime and data loss.

Timely alerts and tailored advisories are issued to organizations and citizens, promoting proactive protection without inducing panic. This approach ensures that threats are addressed efficiently, safeguarding national digital infrastructure.

"India reported 147 ransomware incidents in 2024, adding that CERT-In’s coordinated actions significantly mitigated their impact through real-time intelligence sharing and forensic interventions."

Dr. Bahl's statement underscores the effectiveness of these strategies in a year marked by rising cyber threats globally.

Broadening CERT-In's Mandate and Achievements

Beyond ransomware, CERT-In plays a pivotal role in vulnerability assessment and crisis management. The agency conducts continuous drills and capacity-building initiatives to enhance readiness. International collaborations, such as joint work with France's National Cybersecurity Agency (ANSSI), have produced reports like the high-level risk analysis on AI titled 'Building trust in AI through a cyber risk-based approach.'

CERT-In also participates in joint drills with international partners and engages in global and regional cybersecurity forums. Domestically, initiatives target specific vulnerabilities, including strengthening cybersecurity resilience in Indian cooperative banks and protecting citizens' digital devices from bots and malware. These efforts were highlighted in the World Economic Forum's Global Cybersecurity Outlook January 2025 report.

India's Emerging Cybersecurity Ecosystem

Dr. Bahl highlighted India's rapid rise as a global cybersecurity hub. Over 400 startups and a workforce exceeding 6.5 lakh professionals drive a $20 billion industry. These entities develop advanced solutions in threat detection, cyber forensics, and AI-based monitoring systems, bolstering India's secure digital ecosystem.

Government policy supports indigenous cybersecurity solutions through research and development, alongside national-level projects under MeitY. Shri Krishan Kumar Singh elaborated on the IndiaAI mission and the upcoming AI Impact Summit in February 2026.

The Role of AI in Cybersecurity

Artificial Intelligence represents a dual-edged sword in cybersecurity. While adversaries use AI for sophisticated attacks, CERT-In leverages AI-driven analytics and automation for real-time detection, prevention, and response. Countermeasures against malicious AI-enabled threats are under active development.

This integration enhances CERT-In's capabilities, allowing for faster threat neutralization. Public-private partnerships amplify these efforts, fostering innovation in AI-powered defenses.

International Collaboration and Capacity Building

The session with visiting journalists emphasized cross-border cooperation. Discussions covered cyber incident resolution and information sharing, crucial for addressing threats that transcend national boundaries. CERT-In's engagements with global partners demonstrate India's commitment to collective cybersecurity resilience.

Specialized training programs and empaneled auditors further strengthen institutional capacities. These measures ensure that Indian organizations remain prepared against evolving threats.

Implications for Administrative and Public Impact

The reporting of 147 ransomware incidents reveals the scale of cyber challenges faced by India in 2024. However, CERT-In's mitigation success highlights the efficacy of centralized coordination. Real-time intelligence sharing reduces response times, while forensic interventions provide actionable insights for prevention.

For government administration, this translates to protected critical infrastructure, ensuring continuity of public services. Sectors like banking, healthcare, and utilities benefit from minimized disruptions, preserving economic stability.

Citizens gain from advisories that empower personal cybersecurity practices. Awareness of threats like ransomware encourages robust digital hygiene, such as regular backups and software updates.

Economic Dimensions

India's $20 billion cybersecurity industry supports job creation and technological self-reliance. With over 6.5 lakh professionals, the sector contributes to skilled employment. Startups innovate solutions tailored to Indian contexts, reducing dependence on foreign technology.

Policy support via the IndiaAI mission and summits fosters an ecosystem where AI enhances defenses. This positions India as a leader in cybersecurity exports and collaborations.

Context of Ransomware Threats

Ransomware has evolved into a major global concern, with attacks targeting high-value entities for maximum leverage. In India, the 147 incidents in 2024 likely affected diverse organizations, though specific details remain classified for operational security.

CERT-In's strategy aligns with international best practices, emphasizing speed and collaboration. The reduction in impact demonstrates maturity in India's cybersecurity posture, contrasting with higher disruption rates in less coordinated environments.

Key Mitigation Components

• Real-time Intelligence Sharing: Enables immediate threat notifications across agencies, sectors, and international partners.
• Forensic Interventions: Post-incident analysis recovers data and attributes attacks, informing future defenses.
• Proactive Advisories: Customized guidance prevents widespread exploitation.
• Capacity Building: Drills and training ensure readiness at all levels.

Future Directions and Initiatives

Looking ahead, CERT-In continues to expand its scope. The AI Impact Summit in February 2026 will convene stakeholders to address emerging challenges. Policy incentives for startups will spur indigenous innovations.

Collaborations like the ANSSI report exemplify knowledge exchange on AI risks. Domestic focus areas, such as cooperative banks and consumer devices, address grassroots vulnerabilities highlighted by global reports.

The interactive Q&A session concluded the event, with delegates exchanging views on cross-border mechanisms. This dialogue reinforces India's role in multilateral cybersecurity efforts.

Broader Significance for Digital India

The Digital India vision relies on a secure cyberspace. CERT-In's achievements in 2024 affirm progress toward this goal. By mitigating ransomware impacts, the agency safeguards economic productivity and public trust in digital services.

Administrative efficiency improves as cyber incidents decrease, allowing focus on service delivery. Public awareness grows through advisories, fostering a vigilant citizenry.

India's cybersecurity industry growth signals long-term resilience. With a burgeoning talent pool and innovative startups, the nation is equipped to tackle future threats.

Challenges Ahead

Despite successes, the threat landscape evolves rapidly. AI-enabled attacks demand continuous adaptation. International cooperation remains essential for attribution and deterrence.

CERT-In's framework positions India well, with scalable mechanisms for emerging risks.

Conclusion of the Delegation Visit

The 12 December 2025 session not only informed international journalists but also showcased India's cybersecurity prowess. Dr. Bahl's leadership and MeitY's initiatives exemplify a proactive stance.

As cyber threats persist, CERT-In's model of coordination, innovation, and collaboration serves as a blueprint for effective response. The 147 ransomware incidents of 2024, though significant, were rendered less damaging through these efforts, paving the way for a more secure digital future.

This development reaffirms India's commitment to robust cyber defenses, benefiting administration, economy, and citizens alike.

```

(Word count: 1,856)

```