While calling the AIIMS server attack a “big conspiracy,” Union Minister of State for Electronics and IT Rajeev Chandrasekhar speculated that it could be the work of a “state actor” or large organised gangs. Chandrasekhar told IANS that the server attack was definitely part of a larger conspiracy.
He stated that the situation is being investigated by the Indian Computer Emergency Response Team (CERT), the National Investigation Agency (NIA), and the Delhi Police. He went on to say that while the government makes different provisions to protect government institutions from cyber-attacks, AIIMS, as an autonomous institution, hires private agencies to do so.
According to him, the government is considering establishing a standard to prevent such incidents, which would be provided to institutions such as AIIMS as an advice, pushing its adoption. The minister described it as a ransomware issue, saying that patients’ data had not yet been leaked, but it had been made inaccessible from the hospital.
He referred to it as a cyber security issue. Chandrasekhar went on to say that the government would introduce a Digital Personal Data Protection Bill about data theft, after which victims would be able to complain about their data privacy breach by contacting the Data Protection Board.