he problem with the security and intelligence agencies in India is the lack of communication and the greed for credit and power. India is not the only exception or victim of such traits. Politics inside the bureaucracy and the power game is almost the same in all the other countries of the world too, but the very basic difference between them and us is the fear of getting caught and getting punished. Deterrence of getting caught and failing in investigation and punishments somewhat control their greed.
We lack proper laws and proper implementation of the same. Those in the power have every knack and control over twisting the law as per their convenience. Those in power and those who have the power are the two most dangerous factors in administration. For example, there are a couple of “information and security research organisations” operating from India but the research they do here is for the foreign countries. We can’t question them or ask for any clarification as they operate from India in the name of “threat analysis/research”. They are not directly working on hardcore intelligence; instead, they are working on the development and activities of various hackers and another acumen that operate from these regions. Now, the question that arises is how hackers and hacking can be an issue for national security?
The problems are not limited to specific categories; the majority of the issues are on smaller scales and that is the reason why they are less talked about, discussed, and thought over. Hence, it’s easier for all these terrorist organisations and other intelligence agencies to target India and that too so frequently. Let us take a simple example of the communication issues over the border areas of India. Mostly, the security personnel/armed forces and terrorists, who are deployed in the border areas, communicate with each other in more or less the same manner and uses almost same technology and communication devices like walkie-talkie, wireless frequency, and satellite phones (mostly used in the base camps because of its high price).
The way interaction gets trapped is not something extraordinary; it happens because of a very simple reason that the communication cannot be encrypted over such mediums and that is why it is easier to intercept them. However, the irony is that it is not necessary that the communication that is intercepted is true and accurate; the possibility of making this conversation for the purpose of misguiding the security forces in and around those areas is high. At the same time, we can’t even ignore them because if by any chance the incident happens, then those soldiers who are deployed in the area will be considered guilty because the communication is passed to the senior officers sitting in the base camps. The percentage of number of security forces deployed in and around the borders is the maximum and the strength of the Indian Army and armed forces is among the Top 6 in the world, so it is not possible to make any excuses for the “manpower”, if such incidents happen and we fail to avoid them.
The very common problem that seems to be simple and hence ignored is “social engineering”. Most of the time, both the forces deployed over the border keeps on scanning the wireless frequency ranges of each other and also the different specific frequency on which the patrolling forces are communicating. Because of the similarity in the language spoken, it is not a hard job for someone who is really good in social engineering to fool and collect information from these various patrolling forces/parties. All you need to do is make a call on the same frequency of the other side party and just ask them in a commanding and confident voice that you are a senior speaking from their respective bases and ask them for their progress or current location or some other outputs. Due to the hierarchy in the forces and couple of protocols which we ignore to follow, it makes it very difficult for that soldier to ask many questions regarding the caller’s identification and justify the reason of calling as no one wants to make their boss unhappy and that too if you are in the armed force.
Thus, these types of problems are not very big and complicated but what makes it more difficult to be taken care of and encountered is the ignorance and lack of interest by those who are responsible for making the protocols and process by the think tanks. Unfortunately, they are focusing more on the issues that happen less frequently but make big news. The problems occurring because of such ignorance are not much talked about and fail to make big news. The one who has to be held responsible for such ignorance is the irresponsible media in such locations. Now, if we talk about these think tanks and decision and policy makers, then they are busy most of the time giving lectures all over the world. They only talk about big and critical issues, which are not present but are expected to happen or occur in the future. What our intelligence agencies are doing working under the banner of “research organisations” is, extracting the money from the central government under the name of “research” or “strategy development” or “analysis”. Someone told me once about one such research which was, “understanding and studying the mind of black hat hackers”. In this research, the organisation took assistance from a couple of senior doctors (more preciously – Psychiatrists) to complete the entire exercise. During their entire exercise, there was not even a single time they talked or discussed things with any hacker or InfoSec professionals (forget about the black hats). They completed the entire exercise and study within the specific time; they even prepared and gave the report to the top bosses. When I came to know about the amount of money spent on this, I was really shocked and was like “OMG”.
(Any suggestions, comments or dispute with regards to this article send us on [email protected])