MPSC data could have been saved

MPSC data could have been saved

By Vikas Vaidya


The server of Maharashtra Public Service Commission (MPSC) has been crashed because of virus and the data got deleted and the lacuna came to the fore. Even if the data got deleted, as per Information Technology (IT) policy, organisation should maintain a backup of the data. It should be in real time format, not in a offline mode. It is very important for MPSC to find out how the virus got injected in the system. Whether they did not have  a firewall installed or good anti-virus or Intrusion Detection system with them? Was the firewall and antivirus configured or was it in default mode? These are the questions remained unanswered.
Dr Harold D’Costa, State Cyber Crime Expert said, “If anybody injects a virus in the system then according to IT act 2008, the compensation upto one crore rupees has to be given to the victim. So MPSC should find it out through the log sheet whether the virus was injected through internet or was it injected locally. MPSC should also find it out that before uploading the webpages the system should be free of all viruses.”
Any organisation whether it is government or private, should have the proper IT policty in place according to the guidelines given by (Computer Emergency Response Team) CERT. This is a government institution coming under Ministry of IT, New Delhi.
If such type of a problem  would have happened with the private bank then according to IT Act 2008, the bank could have been liable to compensate the victim upto 5 crore rupees.
Why this law is for corporates and not for the government organisations, is the million dollar question. The data which was deleted from the MPSC server was very sensitive and confidential information and therefore the data should have been preserved to a backup media, pointed Dr D’Costa.
Dr D’Costa said, “Recently, the IT Secretary of Maharashtra Rajesh Agrawal who is the Adjudicating Officer for cyber crime gave a judgement in which he told Punjab National Bank to compensate 45 lakhs to the victim who was a account holder in the bank for not having proper security practices followed by the bank. In such similar instances ICICI bank was also fined 2 lakh rupees for not having proper security policy and security practices in place. Even Idea Cellular was fined 25000 rupees for not following the proper IT policty guidelines. There should be provision in the IT act where Government organisations also should be brought under the IT Act scanner and penalty should be levied to them.”


Probable ways through which MPSC can overcome this problem. Dr D’Costa has suggested some tips.
1. MPSC should host the webpages and the data on a dedicated server and not on shared server.
2/ MPSC should ensure the password they have given, should be digitally encrypted and stored in the server.
3. There should be a digital security certificate for the login pages whenever the data is entered.
4. They should upload the data on the server only from a dedicated machine which has latest and updated firewalls from antivirus.
5. They should maintain a logsheet of all the activities carried out from the system.
6. MPSC should immediately have a Business Continuity planning where the data should be backed on-line.
7. MPSC should ensure to have a proper incident-repsonse team to ensure that any calamities do happen then they should get the system back immediately without any wastage of time.
8. Being a Government organisation, MPSC should have a proper ID and cyber security policy in place to avoid such types of disasters.
9. MPSC should have a trained dedicated manpower to maintain the website.
10 The webpages developed by MPSC should not be through open framework available freely on the internet.


Comments

Post a Comment

Popular posts from this blog

foreign returned MBBS students not to be admitted in PG in State quota

· By Vikas Vaidya Though Medical Council of India (MCI) has relaxed the rule of giving Eligibility Certificate for the students wanting to study in foreign countries, the troubles have not ended so far. Now Maharashtra Government has refused to give admission in the State quota of Post Graduate intake. Due to severe shortage of MBBS seats in the country, most of the Indian students are opting for medical colleges in China, Russia, Central America, the Philippines among others every year. Getting the degree in these countries is relatively cheaper. A student can complete MBBS abroad in less than Rs 30 lakh. In the state, the student has to pay, apart from the fee, a donation of up to Rs 80 lakh to get a seat in management quota. All this totals to Rs 1.5 crore. Earliers these students had to obtain eligibility certificate from MCI. This data has been obtained from Board of Intermediate Education to verify the age and qualifications for doing MBBS in foreign countries. Now MCI has
Read more

Scrub Typhus's first caseconfirmed from Central India

Image
    By Vikas Vaidya WHEN 45 year-old Kusum Wankhede of Kolhu village, Katol tehsil came to Indira Gandhi Government Medical College and Hospital (IGGMCH), nobody thought that her case would throw a light on new disease as far as medical fraternity of Central India is concerned. She had multi-organ dysfunction with involvement of liver, kidneys, lungs and meningitis and her platelets were reduced. Malaria and Dengue were suspected and ruled out by specific blood tests. Scrub Typhus was suspected when careful examination revealed a black mark (left by mite’s bite) called eschar was noticed over the patient’s right side of the chest. The eschar, which occurs at the site where the mite bites is the single most clinical diagnostic clue. Dr Prashant Joshi, Professor and Head, Department of Medicine, IGGMCH checked her and identified that she was suffering from Scrub Typhus, a new disease in human. It was identified earlier in other parts of the countr
Read more

Dr Vilas Dangre advises "Don’t humiliate yourself by demanding to practice allopathy"

Image
By Vikas Vaidya Dr Vilas Dangre, a leading Homoeopath and Bhishmacharya in the field of Homoeopathy on Sunday warned Homoeopaths not to lower down their status by demanding to practice allopathy. The Maharashtra branch of Homoeopathic Medical Association of India (HMAI) a national organisation has conducted a scientific seminar for Homoeopathic doctors and students on diseases of children named ‘Pediatric prescribing’ on Sunday at Ahilyadevi Sabhgruha, Dhantoli. Mayor Anil Sole was chief guest,  leading Homoeopath of Mumbai Dr Parinaz Humranwala was guest of honour. Dr Vilas Dangre presided over the function. Dr Rajan Kalpande, President Maharashtra HMAI, Dr Murlidhar Idole, Secretary were seated on the dais. Dr Dangre said, “By demanding that allopathy practice should be allowed, we, the Homoeopaths are bringing down our level. The Homoeopathy is based on full scientific research. The remedies of all diseases are in Homoeopathy. I shall not object if we are demand
Read more