ProjectsPilot
Internal SecurityPrelims: HighMains: HighInterview: High12 min readUpdated 2026-05-25

Critical infrastructure protection

Critical infrastructure protection · NCIIPC

इस विषय को हिन्दी में पढ़ें

Story hook

It is 12 October 2020. 10:02 AM IST. Mumbai's central business district — Worli, Bandra-Kurla Complex, Andheri, Lower Parel — plunges into darkness. Trains stop. Hospitals switch to backup. The Bombay Stock Exchange's circuit breakers trip. The blackout lasts 1 hour and 12 minutes, hitting 2 crore residents of India's financial capital.

The MSEB (Maharashtra State Electricity Board) later attributes the outage to a technical fault at Padgha substation. But four months later — 28 February 2021 — the US-based Recorded Future + Insikt Group publishes a report titled "China-Linked Group RedEcho Targets the Indian Power Sector". The report identifies 10 Indian power sector entities — including POWERGRID, NTPC, Telangana Transco, Maharashtra State Electricity Distribution — that had been targeted by ShadowPad malware linked to Chinese state- sponsored APT. The temporal correlation with the Mumbai blackout is striking.

The Indian Government initially denies cyber linkage. But by March 2021, Power Minister R.K. Singh confirms in Parliament: "two attempts" of state-sponsored attacks on Indian load dispatch centres in 2020. CERT-In, NCIIPC, and the National Load Despatch Centre (NLDC) undertake 6-month forensic + hardening drive. Indian power-grid SCADA networks are air-gapped, segmented, patched.

This is the critical infrastructure protection (CIP) problem in its most acute form. NCIIPC (National Critical Information Infrastructure Protection Centre) — established 16 January 2014 under Section 70A IT Act 2000 within the National Technical Research Organisation (NTRO) — is the statutory nodal agency for protecting India's seven critical sectors.

For UPSC, this is GS-III's sector-specific cyber chapter — the answer to "how do you protect the wires-and-pipes that the country runs on?"

Why this matters for UPSC

Asked in Mains 2018, 2020, 2022. Prelims tests NCIIPC, Section 70/70A IT Act, critical infrastructure definition. Interview boards probe Mumbai 2020, AIIMS 2022, sector-specific protocols. The "wires-and-pipes" tier of cyber security.

Inside the full topic

Create a free account to continue reading — the deep dive, exam angles, mind map and revision card are waiting.

  • Start here (zero knowledge)
  • Flow diagram & mind map
  • Deep dive
  • Real-world connections
  • Memory hooks & mnemonics
  • The Prelims angle
  • The Mains angle
  • The Interview angle
  • Common traps & misconceptions
  • 5-minute revision card
  • Related topics

Continue reading — free

Get the full topic with deep dive, Prelims/Mains/Interview angles, mind maps, revision cards, AI tutor and daily current affairs — in English and Hindi.

Create free account Already a member? Sign in