J&K Govt Bans Pen Drives & WhatsApp for Official Use Amid Cybersecurity Threats

In a major step towards enhancing cybersecurity in India, the Jammu and Kashmir government has officially banned the use of pen drives across all government departments and barred WhatsApp for any form of official communication. The move follows a series of cyberattacks during Operation Sindoor, India’s counterstrike in response to the deadly terror attack in Pahalgam that claimed 26 lives.

The decision, announced by Commissioner Secretary M Raju (General Administration Department), highlights the urgent need to safeguard sensitive government information, prevent data breaches, and minimize risks of malware infections and unauthorized access.

Why the Ban?

According to the order, the use of public messaging apps like WhatsApp and unsecured online tools such as iLovePDF poses significant risks to data sovereignty. These platforms are often vulnerable to cyber espionage, making them unsafe for processing, sharing, or storing confidential government files.

Hence, the government has strictly prohibited their usage in official departments including the Civil Secretariat in Jammu and Srinagar and Deputy Commissioner Offices in all districts.

During Operation Sindoor, several official websites, particularly in the power sector, came under heavy cyberattacks. Some sites are still struggling to be restored, disrupting public services and delaying administrative functions. Union Power Minister Manohar Lal Khattar revealed that India’s power sector alone faced over two lakh cyberattacks, raising alarms about the scale of the threat.

Strengthening Cyber Hygiene

The ban is seen as part of a broader effort to enforce cyber hygiene practices within government institutions. By eliminating the use of pen drives, which are common carriers of malware and ransomware, and banning unsecured messaging apps, the J&K government aims to reduce vulnerabilities and move towards secure communication systems.

This proactive step signals a shift in India’s digital defense strategy, ensuring that critical government infrastructure is shielded from foreign cyber threats and malicious actors.