ISPs must adopt new measures to ward off cyber attacks: DoT
- Department of Telocom (DoT) advises ISPs (Internet Service Providers) with fixed-line broadband to use new security steps to combat hacking.
- DoT has proposed new set of security guidelines for such ISPs to be put in place by May 2014.
- Hackers make use of vulnerabilities in ADSL (asymmetric digital subscriber line) modems normally installed at homes, offices to manipulate data and implant malware
- DoT has written to ISPs to help their customers “change password, including physical visits.” DoT wants ISPs to change customers default password to a strong password at the time of setting up ADSL modem to deny unauthorized access.
- DoT maintains that protocol ports in ADSL modem on WAN side like FTP, TELNET, SSH, HTTP, SNMP, CWWP, UPnP be disabled to ensure hackers don’t use these ports to hack.
- Remote upgrading of firmware of ADSL modems by ISPs using devised mechanism is suggested by DoT
- Customers are advised to switch off modem when not in use and report any sudden rise in use of data to ISPs
- DoTs steps would ensure long term security against hackers. The government and industry need to work together to ensure that.
- Internet Service Providers (ISP)
- Wide Area Network (WAN)