The United Nations General Assembly has recently adopted the United Nations Convention against Cybercrime in New York by resolution 79/243.

• Signing Ceremony: Hanoi, Viet Nam will host a formal signing ceremony for the treaty as consistent with past precedent for UN criminal justice treaties.
• Ratification and Accession by States: The Signing process will be followed by the process of Ratification by signatory states thus formally becoming States parties. 
• Entry into Force: The treaty will enter into force after Forty States have become Parties (signed and ratified)
• Conference of the States Parties: Once the treaty enters into force, a Conference of the States Parties will be held periodically to ensure cooperation between States Parties to to promote and review its implementation.

Enroll now for UPSC Online Course

About Cybercrime

• The Council of Europe Convention on Cybercrime defines cybercrime as, 
  • A wide range of malicious activities, including the illegal interception of data, system interferences that compromise network integrity, and availability and copyright infringements
• Categories: Cybercrime is used as an umbrella term for a range of online activity with two broad categories,
  • Cyber Enabled: These are criminal activities conducted online but doesn’t require the use of a computer. 
    • Examples: It include drug and weapons trafficking, identity theft, fraud, and incitement of violence
  • Cyber Dependent: These are crimes that can be committed only through the use of Information and Communication Technology (ICT) devices. 
    • Example: Hacking; Ransomware; Digital Arrest; Phishing etc.
• In India: 
  • India was the second most targeted country for cyber attacks globally in the year 2024 reporting 129 cyber crimes per lakh population.
    • Delhi was leading with 755 cases followed by Haryana (381), and Telangana (261)
  • Financial Fraud: India ranked fifth globally in the number of breached accounts in 2023, with 5.3 million leaked accounts and citizens losing close to ₹1.3 – ₹1.5 lakh to cyber criminals every minute.
• Reasons for India’s Vulnerability to Cybercrime:
  • Low Digital Literacy: Only 37% of the population was digital literate as of 2023 and a significant portion of these lacks basic knowledge about online safety and best practices too making them susceptible to cyberattacks. 
    • Example: Many people still use older devices that are more susceptible to cyber threats due to lack of updated security features.
  • Rapid Digitalization: India’s rapid adoption of digital technologies and online services due to cheap Internet services has outpaced the development of robust cybersecurity measures. 
  • Large Internet User Base: India’s Internet user base is one of the largest in the world providing with a huge potential for the cybercriminals to operate.
  • Inadequate Cybersecurity Infrastructure: India is still developing the necessary infrastructure and expertise to effectively combat cyber threats 
  • Weak Legal Framework: India still doesn’t have a Data Protection Law and the existing laws are challenging to enforce as the legal framework may not be fully equipped to address emerging cyber threats. 
  • Supply Chain Vulnerabilities: Weak cybersecurity practices in the supply chain can expose businesses to cyber threats through third-party vendors. 
  • Lack of Awareness: Citizens are not well-educated about the importance of safeguarding personal information online, making them vulnerable to phishing, scams, and other fraudulent activities.
    • Example: There have been cases of mimicking well-known celebrities or an acquaintance to emotionally manipulate them into divulging their personal details 
  • Vulnerabilities in Telecom Infrastructure: The telecom infrastructure in India is often ill-prepared to handle the overwhelming volume of calls and messages from fraudsters creating  a fertile ground for cybercriminals to exploit.
• Challenges in Tackling Cybercrime:
  • Lack of Harmonised Legal Frameworks: Cybercrime being a transnational crime is difficult to investigate and trace as there is no unified approach to address it with significant differences in legal systems, cybersecurity laws and enforcement capacities.
    • Example: An act considered a cybercrime in one country might not be recognised as such in another, creating conflicts and enforcement gaps.
  • Capacity Gaps: Developing countries mostly lack the necessary infrastructure, expertise and resources to implement effective cybersecurity measures leading to a fragmented response.
  • Incoherent: Cybercrime does not have a widely accepted definition, thus disagreements over the definition of cybercrime and concerns about sovereignty could hinder cooperation in investigation and enforcement.
  • Non Reporting: Most of the cyber crime incidents go unreported due to various reasons as,  shame, guilt, emotional manipulation,illiteracy, blackmail etc.
  • Reactive Approach : India has a fragmented and reactive approach to cyber security as there is still no overarching law nor an apex institution formulated for dealing with cybercrimes. 
• Prevention from Cyber Crimes: 
  • Cyber Hygiene Practices: Encourage individuals and organizations to adopt good cyber hygiene practices, such as regular software updates, strong password management, and secure online behavior.
  • Cyber Insurance: Cyber insurance policies should be encouraged as it covers cyber-risk and helps with the costs associated with remediation, including payment for legal assistance, investigators, crisis communicators, and customer credits or refunds.
  • Implement Advanced Cybersecurity Framework: Cybersecurity frameworks offer a range of best practices, policy processes, security protocols, and other necessary tools to secure an organization’s business operations.
  • Antivirus: Invest in advanced cybersecurity technologies which will help to protect critical information systems and networks. 
  • Public Awareness and Education: Conduct widespread awareness campaigns to educate the public about common cyber threats, safe online practices, and the importance of cybersecurity. 
• Way Forward:
  • Strengthen Legal Framework: India needs a comprehensive legal framework which deals with cyber crime solely as it is still an emerging threat landscape and the IT Act (2000) is not sufficient. 
  • Cyber Security Infrastructure: Developing robust cyber security systems at all levels ie. national, state, local and individual to detect and neutralize threats
  • International Cooperation: India needs to participate actively globally both via bilateral and multilateral mechanisms to stay connected and aware. 
    • India has participated actively in formulating the Budapest Convention on Cybercrime and the recent United Nations Convention on Cybercrime.
  • Training and Skill Development: The law enforcement officers need to be regularly skilled and upskilled to tackle evolving cyber threats, such as Maharashtra’s initiative to train police in cyber crime detection.
  • Public Awareness: Regular campaigns on Cyber Swachata practice should be conducted in schools, workspaces ect. Also social media campaigns and television advertisement for targeted messaging on cyber frauds are needed.

Check Out UPSC Modules From PW Store

Ready to boost your UPSC 2025 preparation? Join PW’s UPSC online courses today!

DOWNLOAD PDF