Phone : +91 9582 90 7788 | Email :

Register & Request Quote | Submit Support Ticket

Home » Cyber Security News » 1.9M attacks on Indian healthcare network from Pak, China this year: Report

1.9M attacks on Indian healthcare network from Pak, China this year: Report

1.9M attacks on Indian healthcare network from Pak, China this year: Report


1.9M attacks on Indian healthcare network from Pak, China this year: Report

As AIIMS struggles to get its servers back to life after a massive ransomware attack, nearly 1.9 million cyber attacks have been recorded on the Indian healthcare network this year, especially from countries like Pakistan, China and Vietnam, a report revealed on Thursday.

The healthcare-based threat intelligence sensors network, deployed by the CyberPeace Foundation and Autobot Infosec Private Ltd, along with the academic partners under CyberPeace Center of Excellence (CCoE), saw a surge in cyber attacks with 18,46,712 hits between January to November 28 from a total number of 41,181 unique IP addresses from nations like Pakistan, China and Vietnam.

The vulnerable Internet-facing systems having Remote Desktop Protocol (RDP), vulnerable SMB and Database services enabled, and old Windows server Platforms were mostly attacked.

The attackers also tried to inject malicious payloads into the network. The deployed network has captured a total of 1,527 unique payloads belonging to Trojan and ransomware, etc., the report mentioned.

After reports surfaced earlier this week that hackers allegedly demanded around Rs 200 crore in cryptocurrency from AIIMS-Delhi, the Delhi Police said in a statement that no such demand has been brought to their notice by the AIIMS administration.

According to the report, cyber attacks on healthcare facilities in India have been rising in recent years, and the pandemic has only worsened matters.

“By deploying the simulated network, we can collect data on attack patterns, the different types of attack vector for the different protocols, and the recent trends of malicious activity,” said a CyberPeace Foundation spokesperson.

Analysis of data has drawn the attention that attackers also tried to exploit ‘DICOM/MYSQL/MSSQL’ protocols to access the sensitive patients data like medical images, diagnostic databases, etc.

DICOM is standard protocol used in most medical and healthcare facilities for the management and transmission of medical images and related data.

“Cyber criminals are taking advantage of the fact that healthcare organisations are under immense strain and are more likely to pay a ransom to get their systems up and running again,” said the spokesperson.

Organisations should ensure their systems are secured by reducing unnecessary data, improving the patch level of software, backup and restore procedures and auditing systems to build awareness of any threats, the report mentioned.

Information Security - InfoSec - Cyber Security - Firewall Providers Company in India

What is Firewall? A Firewall is a network security device that monitors and filters incoming and outgoing network traffic based on an organization's previously established security policies. At its most basic, a firewall is essentially the barrier that sits between a private internal network and the public Internet.


Secure your network at the gateway against threats such as intrusions, Viruses, Spyware, Worms, Trojans, Adware, Keyloggers, Malicious Mobile Code (MMC), and other dangerous applications for total protection in a convenient, affordable subscription-based service. Modern threats like web-based malware attacks, targeted attacks, application-layer attacks, and more have had a significantly negative effect on the threat landscape. In fact, more than 80% of all new malware and intrusion attempts are exploiting weaknesses in applications, as opposed to weaknesses in networking components and services. Stateful firewalls with simple packet filtering capabilities were efficient blocking unwanted applications as most applications met the port-protocol expectations. Administrators could promptly prevent an unsafe application from being accessed by users by blocking the associated ports and protocols.


Firewall Firm is an IT Monteur Firewall Company provides Managed Firewall Support, Firewall providers , Firewall Security Service Provider, Network Security Services, Firewall Solutions India , New Delhi - India's capital territory , Mumbai - Bombay , Kolkata - Calcutta , Chennai - Madras , Bangaluru - Bangalore , Bhubaneswar, Ahmedabad, Hyderabad, Pune, Surat, Jaipur, Firewall Service Providers in India

Sales Number : +91 9582 90 7788 | Support Number : +91-9654016484
Sales Email : | Support Email :

Register & Request Quote | Submit Support Ticket