The union minister for state for electronics and information technology Rajeev Chandrasekhar has shared a written response with the Parliament on the AIIMs attack based on the probe being carried out by various government agencies. “As per preliminary analysis, 5 servers were compromised in the information technology network of AIIMS by unknown threat actors due to improper network segmentation, which caused operational disruption due to non-functionality of critical applications,” the MoS said in the written reply to Rajya Sabha, adding “CERT-In and other stakeholder entities have advised necessary remedial measures.” The ransomware attack led to encryption of approximately 1.3 terabytes of data, informed the minister.
The minister was responding to a query raised by Bharatiya Janata Party’s (BJP) Sushil Modi, who requested for details on the quantum of data that was compromised during the AIIMS cyber attack in 2022. On the question of the number of cybersecurity incidents reported in the country in the last five years, Chandrasekhar informed that 4.5 million cases were reported and tracked during the said time period.
AIIMS cyberattack probe
The AIIMS servers were hacked for the first time on November 23. A case of extortion and cyber terrorism was registered by the Intelligence Fusion and Strategic Operations (IFSO) unit of the Delhi Police two days later.
Police registered a case of extortion and cyber terrorism. The cyber attack is being jointly probed by several investigative bodies including — the CERT-in, MeitY, IB, CBI, NIA, Delhi cybercrime special cell, Indian Cybercrime Coordination Centre, National Forensic Sciences University and National Critical Information Infrastructure Protection Centre.