171/68 Tuesday, May 13, 2025
Following the April 22, 2025, shooting incident targeting tourists in Pahalgam, Kashmir, tensions between India and Pakistan have rapidly escalated into the cyber domain. Hacktivist groups from across Asia, the Middle East, and North Africa (MENA) have united under an operation dubbed #OpIndia, targeting Indian government agencies and critical infrastructure. According to cybersecurity firm NSFOCUS, cyberattacks against India surged by 500%, while attacks on Pakistan rose 700% in the days following the incident. Retaliatory cyber operations by India have also intensified, particularly after the launch of “Operation Sindoor” on May 7, 2025.
Reports from cybersecurity companies Cyble and Radware reveal that the most common attack method has been Distributed Denial-of-Service (DDoS) attacks, accounting for over 50% of all incidents. This is followed by website defacement at approximately 36%, with primary targets including Indian government entities, financial institutions, and telecommunications companies. In response to the escalating situation, India’s Computer Emergency Response Team (CERT-In) has issued alerts and specific cybersecurity guidelines—particularly for the financial sector—to bolster defensive measures. Meanwhile, both the Bombay Stock Exchange (BSE) and National Stock Exchange (NSE) have proactively restricted foreign IP access to mitigate rising threats.
On the attackers’ side, recent intelligence indicates participation from over 40 hacktivist groups from countries including Bangladesh, Pakistan, Egypt, Morocco, Kuwait, Indonesia, and Vietnam. Many are believed to operate under a collective banner known as the “Holy League,” which shows apparent alignment with pro-Russia, pro-Palestine, and pan-Islamic sentiments. At the same time, counterattacks have been launched against Pakistan’s Ministry of Commerce and universities in Islamabad. While a May 9, 2025 report by Radware indicates a decline in attack volume, cybersecurity experts warn that Fridays and weekends remain high-risk periods due to reduced vigilance by many organizations.
Source https://www.darkreading.com/cyberattacks-data-breaches/pahalgam-attack-hacktivists-unite-opindia
