Top 20 Major Cyber Attacks in India That Shocked the Nation

The digital age we live in has become a double-edged sword—offering immense opportunities for growth while presenting unprecedented risks. India continues to embody the wonders of technology, from a vast network of mobile users to smart cities and digital financial ecosystems. Meanwhile, cybercriminals are also becoming more sophisticated and deceptive in their attacks. These cyber attacks are not limited to individuals but threaten national security, critical infrastructure, and economic stability. Cyber attacks, which once seemed petty crimes, have evolved into highly organized operations with deep consequences.

As digital transformation sweeps across India, one might wonder how secure the nation’s cyberspace truly is. The country has faced its fair share of breaches, highlighting the vulnerabilities within its cyber defense infrastructure. From ransomware attacks to complex data breaches of personal, corporate, or government entities, all these instances have been a stern reminder that cybersecurity is a never-ending battle that needs constant vigilance, action, and innovative approaches.

Also Read: Why Every Organization Needs a Cybersecurity Awareness Program

We are presenting you the top 20 significant cyber attacks that have rocked India in recent times. It includes a range of cyber breaches affecting millions of citizens to incidents involving major corporations and government entities. These incidents serve as a warning as well as a learning experience for the nation to bolster its security framework and cultivate a cybersecurity-first approach.

1. WannaCry Ransomware Attack

In May 2017, India fell victim to the global WannaCry ransomware attack. This attack had crippled systems in several cities, including Kolkata, Delhi, Pune, Mumbai, and Bhubaneswar. WannaCry ransomware targeted computers that were running MS Windows, locking the users until they paid a ransom to the attackers. This attack is an example of how ransomware could paralyze multiple sectors, including healthcare and banking, with disastrous consequences for the digital infrastructure of India.

2. Canara Bank ATM Cyberattack

Cybercriminals attacked Canara Bank's ATMs in 2018. They used skimming devices to steal card data. This attack resulted in a theft of approximately 20 lakh rupees from customers. This breach exposed the ingrained vulnerabilities in the ATM security system of India and raised questions about the safety of card transactions. 

3. Aadhaar Data Breach

Occurring in 2018, this is counted as one of India’s largest cybersecurity disasters in which hackers infiltrated the Aadhaar system (UIDAI) of the country. Sensitive information of over 1.1 billion Indian citizens got exposed in this attack. This breach demonstrated that India’s biometric identification system has numerous flaws, sparking widespread concerns about privacy and identity theft.

4. SIM Swap Scam

The modus operandi behind the SIM swap scam involved cyber attackers gaining access to SIM cards of various victims and using them for fraudulent financial transactions. This attack happened in the year 2018 and was caused by 2 hackers from Navi Mumbai. Perpetrators of this incident were later arrested for stealing 4 crore rupees from several bank accounts using SIM swap technology. This scam underscored the need for stronger mobile security practices and greater awareness of digital fraud.

5. Healthcare Website Hacks

Various healthcare websites in India were targeted by cybercriminals in 2019. This attack compromised sensitive medical records of thousands of patients.  It affected several websites, including sites of private hospitals and clinics. Through this attack, cybercriminals exposed millions of people at risk of identity theft and fraud. It also highlighted the vital need for improved security protocols in the health sector.

6. State Bank of India Data Leak

State Bank of India (SBI), which is India's largest bank, was left exposed to a massive data breach in the year 2019. It was the result of an unprotected server that led to the leaking of personal data from over 422 million customers. Some of the details that got revealed in this attack were the names, phone numbers, and account details of the customers.  This breach unveiled glaring susceptibilities in data security practices within large financial institutions.

7. Ransomware Attacks on Indian Companies

India witnessed a significant rise in ransomware attacks during 2020. These ransomware attacks hampered the working of nearly 82% of Indian companies. Digital intruders encrypted the data of businesses in the country and demanded exorbitant demands for decryption keys. A significant rise in such attacks forced businesses to reevaluate their cybersecurity measures which included data backups and encryption protocols.

8. Juspay Data Breach

Juspay is an Indian fintech company that suffered a massive data breach in 2021. The hacker compromised the personal information of more than 100 million Juspay users, revealing their email IDs, full names, phone numbers, and credit and debit card data. All the information was then listed for sale on the dark web. This incident brought out the inefficiencies of vulnerable online payment systems and laid emphasis on the importance of securing customer data against unauthorized access.

9. Air India Cyberattack

In 2022, Air India became the victim of a cyberattack. This attack impacted around 4.5 million customers, compromising their personal data. There was a third-party vendor’s system that was involved in this breach, unmasking sensitive travel details, passport numbers, and credit card information of the clients. This cyberattack proved to be a significant concern for both privacy and security in the airline industry.

10. AIIMS Cyberattack

All India Institute of Medical Sciences (AIIMS), one of the largest hospitals in India run by the Indian government, fell victim to a cyberattack that disabled its servers for nearly two weeks. Hackers encrypted important data and allegedly asked for a ransom of Rs 200 crore. The incident caused a disruption in health care services, requiring the institution to disable access to millions of medical records. This attack underlined weaknesses in India's health care infrastructure and served as an eye-opener for authorities.

11. ABB Ransomware Attack

ABB is a leading global industrial technology company based in Switzerland with over 100,000 employees. This company got hit by a ransomware attack on May 7th, 2023. The attack is believed to have been executed by the notorious ransomware group Black Basta. It interfered with internal networks, such as ABB's Active Directory, and resulted in delays in business operations. Moreover, the attack also affected ongoing projects through data exfiltration and system disruptions. This breach underscored the vulnerability of India's industrial sector to growing threats from well-equipped cybercrime groups operating against major global players.

12. National Disaster Management Authority (NDMA) Data Breach

NDMA suffered a data breach in 2023, which exposed the personal data of 93,000 volunteers.  The hacker, going by the pseudonym/alias "infamous," accessed and put the personal data up for sale on the dark internet. The breach had implications for the security of essential disaster management information and volunteer systems.

13. BOAT India Data Breach

BOAT is a famous consumer electronics brand in India. It suffered a data breach in 2024, wherein the digital system of the company was hacked, exposing the personal information of over 7.5 million users. The hack was reportedly conducted by a hacker known as 'ShopifyGUY.'. The hacker released sensitive personally identifiable information (PII) like names and email addresses of the customers on dark web platforms.

14. Hyundai Motor India Data Leak

Hyundai Motor India (automotive company) suffered a serious data breach due to a web link vulnerability shared via WhatsApp after customers had their cars serviced at official Hyundai service centers. The breach revealed personal data and car details, such as registration numbers, colors, engine numbers, and mileage. Hyundai promptly resolved the issue and promised customers that their data would be more secure in the future. This simple bug triggered customer privacy concerns and highlighted the value of protecting sensitive information.

15. Burger Singh Website Hack

On February 27, 2023, Burger Singh's website was hacked by the group Team Insane PK, who defaced it with a provocative promo code. In reaction, the company went to X (formerly Twitter) and welcomed the defacement, referring to it as an "open mic night for hackers." Burger Singh was not deterred by the disruption and was confident in overcoming the setback. This event also underscores the perpetual risk of cyberattacks and the necessity for companies to remain on guard, nimble, and resilient in response to changing threats.

16. WazirX Crypto Exchange Breach

WazirX, a crypto exchange, suffered from a data breach in 2024. The multisig wallet managed by Liminal’s custody services was compromised. This resulted in a theft of over $230 million from the accounts of the company. Despite the strong security features of the platform, the attackers breached discrepancies in the transaction information to get unauthorized access. WazirX suspended deposits and began recovery procedures for the stolen amount afterwards.

17. Multiple Cyberattacks on Indian Government Systems

In 2024, Transparent Tribe exploited multiple sensitive sectors in India's government, such as defense companies, through phishing emails to obtain access to sensitive systems. The Department of Defence Production was targeted in particular, indicating the weaknesses in India's national security infrastructure.

18. BSNL Data Breach

Bharat Sanchar Nigam Limited (BSNL) got hit by a data breach in 2024. The telecom organization suffered a significant data breach exposing sensitive information about millions of users, including IMSI numbers and SIM card details.  The hack, which was caused by a hacker known as 'kiberphant0m,' saw more than 278GB of data stolen and later put up for sale on the dark web. The Indian government reacted by starting an inter-ministerial committee to enhance telecom security.

19. Hackers Targeting the Indian Energy Sector

A cyber espionage campaign struck India's energy sector in early 2024, stealing sensitive information about government and private energy firms. The attackers were able to steal 8.81GB of data, marking a menacing threat to the nation's critical energy infrastructure. The attack highlighted the urgent need for solid cybersecurity measures to guard the energy industry.

20. UP Marriage Assistance Scheme Fraud

An online fraud of more than Rs. 1 crore took place in 2024 when anonymous hackers breached the website of the Uttar Pradesh Marriage Assistance Scheme. With the ID of a government official, the hackers made unauthorized transfers to ineligible applicants. The matter is under investigation, and relevant authorities are trying to trace back the swindled money.

India’s Response to the Rising Threat of Cyber Attacks

Various cyberattacks mentioned in this article further highlight the dynamic and sophisticated nature of cyber threats that India is exposed to. These attacks, from financial crimes to espionage against national security, reflect the necessity for a strong and dynamic cybersecurity framework.

Indian authorities and various industrial entities have made various attempts at tightening cybersecurity, such as strengthening the National Cyber Security Policy and passing stronger data protection legislation. However, the magnitude and complexity of attacks in recent times have brought forth the reality that there is still a long way to go before India can fully protect its digital environment.

There are several steps that the Indian government and private sector companies are taking to improve the security of digital assets in the country.

1. Strengthening Cybersecurity Infrastructure:

• India is spending a lot on cybersecurity, targeting strategic sectors such as defense, energy, telecom, and healthcare.

• Cybersecurity task forces specializing in certain areas and overall digital system audits are being established.

• The government is enacting stricter regulatory frameworks for industries handling sensitive data.

2. Increased Government Budget Allocation:

• • The Union Budget 2025-26 has provided more than ₹1,900 crore for cybersecurity, an increase of 18% over the last year.

• It is indicative of a renewed thrust towards eradicating cybercrime, which is responsible for over ₹11,300 crore in damages.

• Funding is intended to increase research and innovation and aid cybersecurity start-ups to strengthen India's digital ecosystem.

3. Public Awareness and Education:

• Most of the cyber attacks in 2024, such as the WazirX hack and SIM swap scam, could have been prevented with enhanced public awareness.

• The government and private sector are placing focus on public education regarding cybersecurity best practices, such as the utilization of multi-factor authentication (MFA), not becoming victims of phishing attacks, and having encrypted communications.

4. Industry Collaboration:

• There is a focus on cross-sector cooperation to detect and mitigate cybersecurity weaknesses before exploitation.

• India promotes cooperation among technology firms, banks, and cybersecurity companies to exchange threat intelligence and adopt optimal industry approaches.

Conclusion

The digital ecosystem in India is also vulnerable to growing and sophisticated cyber attacks targeting economically important sectors such as finance and national security. Cyber attacks are a perpetual war for the country's digital security, highlighting the need for greater vigilance, infrastructure, and awareness among the public. Professionals can enhance their cyber knowledge through various cybersecurity courses dedicated to protect digital assets of the organization. While there has been a significant improvement in securing systems, every incident is a learning experience, calling for greater defenses, new technologies, and policies to remain one step ahead of cybercriminals.

Also Read: Cyber Security for Business: Importance, Benefits, Use Cases, Tips