Try reporting something to Indian CERT, its a bureaucratic chore. I tried reporting multiple, still open issues but nothing happened. One exposed PII data at scale, the other one exposed credentials at a critical sector organization. Now I am not reporting it anymore because no one listens.
The key problem is that cyber in government is still very nascent, and security is an afterthought even in policy.
The key problem is that cyber in government is still very nascent, and security is an afterthought even in policy.