#FactCheck: AI Generated audio of CDS admitting that Pakistan Army is superior than Indian Army.

Introduction

The Ministry of Communications, Department of Telecommunications notified the Telecommunications (Telecom Cyber Security) Rules, 2024 on 22nd November 2024. These rules were notified to overcome the vulnerabilities that rapid technological advancements pose. The evolving nature of cyber threats has contributed to strengthening and enhancing telecom cyber security. These rules empower the central government to seek traffic data and any other data (other than the content of messages) from service providers.

Background Context

The Telecommunications Act of 2023 was passed by Parliament in December, receiving the President's assent and being published in the official Gazette on December 24, 2023. The act is divided into 11 chapters 62 sections and 3 schedules. The said act has repealed the old legislation viz. Indian Telegraph Act of 1885 and the Indian Wireless Telegraphy Act of 1933. The government has enforced the act in phases. Sections 1, 2, 10-30, 42-44, 46, 47, 50-58, 61, and 62 came into force on June 26, 2024. While, sections 6-8, 48, and 59(b) were notified to be effective from July 05, 2024.

These rules have been notified under the powers granted by Section 22(1) and Section 56(2)(v) of the Telecommunications Act, 2023.        

Key Provisions of the Rules

These rules collectively aim to reinforce telecom cyber security and ensure the reliability of telecommunication networks and services. They are as follows:

The Central Government agency authorized by it may request traffic or other data from a telecommunication entity through the Central Government portal to safeguard and ensure telecom cyber security. In addition, the Central Govt. can instruct telecommunication entities to establish the necessary infrastructure and equipment for data collection, processing, and storage from designated points.  

● Obligations Relating To Telecom Cybersecurity:

Telecom entities must adhere to various obligations to prevent cyber security risks. Telecommunication cyber security must not be endangered, and no one is allowed to send messages that could harm it. Misuse of telecommunication equipment such as identifiers, networks, or services is prohibited. Telecommunication entities are also required to comply with directions and standards issued by the Central Govt. and furnish detailed reports of actions taken on the government portal.

● Compulsory Measures To Be Taken By Every Telecommunication Entity:

Telecom entities must adopt and notify the Central Govt. of a telecom cyber security policy to enhance cybersecurity. They have to identify and mitigate risks of security incidents, ensure timely responses, and take appropriate measures to address such incidents and minimize their impact. Periodic telecom cyber security audits must be conducted to assess network resilience against potential threats for telecom entities. They must report security incidents promptly to the Central Govt. and establish facilities like a Security Operations Centre.

● Reporting of Security Incidents:

•  Telecommunication entities must report the detection of security incidents affecting their network or services within six hours.
•  24 hours are provided for submitting detailed information about the incident, including the number of affected users, the duration, geographical scope, the impact on services, and the remedial measures implemented.

The Central Govt. may require the affected entity to provide further information, such as its cyber security policy, or conduct a security audit.

CyberPeace Policy Analysis

The notified rules reflect critical updates from their draft version, including the obligation to report incidents immediately upon awareness.  This ensures greater privacy for consumers while still enabling robust cybersecurity oversight. Importantly, individuals whose telecom identifiers are suspended or disconnected due to security concerns must be given a copy of the order and a chance to appeal, ensuring procedural fairness. The notified rules have removed "traffic data" and "message content" definitions that may lead to operational ambiguities. While the rules establish a solid foundation for protecting telecom networks, they pose significant compliance challenges, particularly for smaller operators who may struggle with costs associated with audits, infrastructure, and reporting requirements.

Conclusion

The Telecom Cyber Security Rules, 2024 represent a comprehensive approach to securing India’s communication networks against cyber threats. Mandating robust cybersecurity policies, rapid incident reporting, and procedural safeguards allows the rules to balance national security with privacy and fairness. However, addressing implementation challenges through stakeholder collaboration and detailed guidelines will be key to ensuring compliance without overburdening telecom operators. With adaptive execution, these rules have the potential to enhance the resilience of India’s telecom sector and also position the country as a global leader in digital security standards.

References

● Telecommunications Act, 2023 https://acrobat.adobe.com/id/urn:aaid:sc:AP:767484b8-4d05-40b3-9c3d-30c5642c3bac

● CyberPeace First Read of the Telecommunications Act, 2023 https://www.cyberpeace.org/resources/blogs/the-government-enforces-key-sections-of-the-telecommunication-act-2023

● Telecommunications (Telecom Cyber Security) Rules, 2024

https://dot.gov.in/sites/default/files/Gazette%20Notification%20of%20Telecommunications%20%28Telecom%20Cyber%20Security%29%20Rules%2C%202024.pdf

● https://pib.gov.in/PressReleasePage.aspx?PRID=2031057#:~:text=The%20Telecommunications%20Act%2C%202023%2C%20was,Gazette%20on%20the%20same%20day.

● https://economictimes.indiatimes.com/industry/telecom/telecom-policy/dot-notifies-cybersecurity-norms-telcos-need-to-share-data-on-demand/articleshow/115577196.cms?from=mdr

‍

India’s cities are rapidly embracing digital technologies, transforming the way essential urban services operate. From traffic management and water supply to online grievance redressal, connected systems are making city life more efficient. As the Prime Minister has emphasised, smart cities are not just a fancy  concept; they aim to ensure basic services, including housing and infrastructure for the urban poor, are delivered comprehensively and equitably.

But improved cybersecurity has become essential with th increasing reliance on digital systems in daily life. A single breach in digital public systems could jeopardise citizen data and interrupt vital services. In light of this, MoHUA organised the National Conference on Making Cities Cyber Secure in collaboration with MHA and MeitY. This is in spirit with the goal of Digital India, which is to create a safer online environment for all.  More than 300 representatives from Central Ministries, National Cybersecurity Agencies, State Governments, State IT and Urban Development Secretaries, Additional Director Generals, Municipal Commissioners, CEOs of Smart Cities, and representatives from organisations like CERT-In, NCIIPC, I4C, and STQC attended the conference.

Key Initiatives Presented

MoHUA showcased a series of city-level cybersecurity initiatives designed to create a common framework for all smart cities. These include:

• Mandatory appointment of Chief Information Security Officers (CISOs) at city level which maintain and oversee the security of digital infrastructure in smart cites 
• Completion of regular cybersecurity audits to identify and address vulnerabilities in there seem 
• Consistent Risk Management Across Services: A structured approach to risk management will be used so that critical areas like traffic systems, utilities and public services all follow the same high standards of protection.

CISOs and Cybersecurity Frameworks

At the conference,  the Union Home Secretary underscored a clear message: every city needs its own Chief Information Security Officer (CISO) backed by a capable technical team. This isn’t just a box-ticking exercise. A dedicated CISO brings focus to meeting national security norms, coordinating quick responses to cyber incidents, and lifting the overall level of cyber hygiene in the city.

Naming a single officer also creates accountability and gradually builds local expertise instead of constant dependence on outside consultants. Over time, this leadership position can help cities develop their own in-house capacity to manage the increasingly complex digital systems that keep public services running.

The SPV Dimension: Beyond Implementation

An important theme of the conference was the future of Special Purpose Vehicles (SPVs)(SPVs means government-backed companies set up under the Companies Act, 2013 with joint shareholding between State/UT administrations and Urban Local Bodies to implement the Smart Cities Mission) which have been the implementing arms of the Smart Cities Mission. Drawing from Advisory No. 27 (June 2025), stakeholders discussed repositioning SPVs as dynamic, innovation-driven bodies capable of supporting long-term urban development beyond the initial project phase.

Key points included:

• Expanding SPVs’ role in consultancy, investment facilitation, technology integration, and policy research.
• Ensuring SPVs act as hubs of expertise and innovation, rather than just project managers.
• Aligning SPV functions with the evolving cybersecurity and technology needs of urban local bodies.

This expanded mandate could allow SPVs to become sustainable institutions that continuously support cities in managing digital risks and adopting new technologies responsibly.

Building a Culture of Cyber Preparedness

One clear takeaway from the conference was that cybersecurity can’t just be added on later — it needs to be part of every step in the digital planning process, from purchasing technology and designing systems to daily operations. Experts from the Intelligence Bureau (IB) pointed out that as more government services go online, the potential risks grow, and cities must always be ready to respond. They  highlighted emerging cyber risks linked to the rapid digitisation of governance. 

Some of the practical steps highlighted included regular security audits, penetration testing, staff training, and campaigns to raise awareness among citizens. Equally important to have CISO which lead cybersecurity and  creating strong communication channels between city teams, state agencies, and national cybersecurity bodies, so that information is shared promptly and responses can be coordinated effectively

Conclusion

The Ministry of Home Affairs’ directive on strengthening cybersecurity in smart cities represents a major milestone in safeguarding India’s urban digital infrastructure and shows the government's proactive step in cybersecurity . By mandating the appointment of Chief Information Security Officers (CISOs), enforcing regular audits, and promoting structured risk management, the MHA has set clear expectations for city administration. The conference also highlighted the evolving role of Special Purpose Vehicles (SPVs) in supporting long-term technological resilience. Embedding cybersecurity at every stage of planning, from system design to daily operations, signals a shift toward a culture of proactive defence. As highlighted by the Intelligence Bureau, emerging cyber risks linked to the rapid digitisation of governance make robust cybersecurity measures the need of the hour for India’s smart cities.

1. https://www.pib.gov.in/PressReleasePage.aspx?PRID=2146180 
2. https://www.pib.gov.in/PressReleasePage.aspx?PRID=2135474 
3. https://m.economictimes.com/news/economy/infrastructure/pm-narendra-modi-launches-smart-city-projects/articleshow/52916581.cms 
4. https://the420.in/mha-orders-stronger-cybersecurity-in-smart-cities/ 
5. https://www.newindianexpress.com/nation/2025/Sep/20/tighten-cyber-security-measures-in-smart-cities-mha-to-housing-ministry 

‍

Introduction

Misinformation regarding health is sensitive and can have far-reaching consequences. These include its effect on personal medical decisions taken by individuals, lack of trust in conventional medicine, delay in seeking treatments, and even loss of life. The fast-paced nature and influx of information on social media can aggravate the situation further. Recently, a report titled Health Misinformation Vectors in India was presented at the Health of India Summit, 2024. It provided certain key insights into health-related misinformation circulating online.

The Health Misinformation Vectors in India Report

The analysis was conducted by the doctors at First Check, a global health fact-checking initiative alongside DataLEADS, a Delhi-based digital media and technology company. The report covers health-related social media content that was posted online from October 2023 to November 2024. It mentions that among all the health scares, misinformation regarding reproductive health, cancer, vaccines, and lifestyle diseases such as diabetes and obesity is the most prominent type that is spread through social media. Misinformation regarding reproductive health includes illegal abortion methods that often go unchecked and even tips on conceiving a male child, among other things. 

In order to combat this misinformation, the report encourages stricter regulations regarding health-related content on digital media, inculcating technology for health literacy and misinformation management in public health curricula and recommending tech platforms to work on algorithms that prioritise credible information and fact-checks. Doctors state that people affected by life-threatening diseases are particularly vulnerable to such misinformation, as they are desperate to seek options for treatment for themselves and their family members to have a chance at life. In a diverse society, with the lack of clear and credible information, limited access to or awareness about tools that cross-check content, and low digital literacy, people gravitate towards alternate sources of information which also fosters a sense of disengagement among the public overall. The diseases mentioned in the report, which are prone to misinformation, are life-altering and require attention from healthcare professionals. 

CyberPeace Outlook

Globally, there are cases of medically-unqualified social media influencers who disperse false/mis- information regarding various health matters. The topics covered are mostly associated with stigma and are still undergoing research. This gap allows for misinformation to be fostered. An example is misinformation regarding PCOS( Polycystic Ovary Syndrome) which is circulating online.

In the midst of all of this, YouTube has released a new feature that aligns with combating health misinformation, trying to bridge the gap between healthcare professionals and Indians who look for trustworthy health-related information online. The initiative includes a feature that allows doctors, nurses, and other healthcare professionals to sign up for a health information source license. This would help by labeling all their informative videos, as addressed- from a healthcare professional. Earlier, this feature was available only for health organisations including a health source information panel and health content shelves, but this step broadens the scope for verification of licenses of individual healthcare professionals. 

As digital literacy continues to grow, methods of seeking credible information, especially regarding sensitive topics such as health, require a combined effort on the part of all the stakeholders involved. We need a robust strategy for battling health-related misinformation online, including more awareness programmes and proactive participation from the consumers as well as medical professionals regarding such content.

References

1. https://timesofindia.indiatimes.com/india/misinformation-about-cancer-reproductive-health-is-widespread-in-india-impacting-medical-decisions-says-report/articleshow/115931612.cms
2. https://www.ndtv.com/india-news/cancer-misinformation-prevalent-in-india-trust-in-medicine-crucial-report-7165458
3. https://www.newindian.in/ai-driven-health-misinformation-poses-threat-to-indias-public-health-report/
4. https://www.etvbharat.com/en/!health/youtube-latest-initiative-combat-health-misinformation-india-enn24121002361
5. https://blog.google/intl/en-in/products/platforms/new-ways-for-registered-healthcare-professionals-in-india-to-reach-people-on-youtube/
6. https://www.bbc.com/news/articles/ckgz2p0999yo