Indian central agencies are intensifying efforts to trace the origins of a wave of hoax bomb threats that have been made against approximately 20 flights this week, turning to VPN service providers to assist in unmasking the culprits behind these incidents. These bomb threats, which caused significant disruption and panic, were traced to IP addresses in foreign locations, including London and Germany, but the use of Virtual Private Networks (VPNs) has complicated efforts to pinpoint the original sources of the calls. VPNs obscure the actual IP address of a user, effectively bouncing it across different countries, making the tracking process much more difficult.
The authorities are particularly concerned because the threats were part of a coordinated series of hoaxes. On Monday, three international flights were targeted by these threats, followed by 10 more on Tuesday, and an additional six flights were threatened the next day. All the threats were declared false after rigorous security checks, but the repeated occurrences of these hoaxes have created a climate of fear and forced aviation authorities to mobilize resources at short notice. Each instance required extensive, time-consuming checks of the flights, leading to delays and disruptions that caused distress to both passengers and airlines alike.
Authorities have identified a suspect connected to an X (formerly Twitter) account, ‘schizobomber777,’ which posted seven hoax messages that directly led to the bomb threat alerts. The account, which was created only days before the threats, has since been suspended, but the individual behind it allegedly used VPN services to hide their identity and real location. Investigators have traced some of the IP addresses back to locations in London and Germany, but are still in the process of fully unraveling the path these signals took. Given the global nature of the internet and cybercrime, such tracing operations can be highly complex, requiring international cooperation.
To bolster these efforts, Indian agencies, including the Indian Cyber Crime Coordination Centre (I4C) and the Indian Computer Emergency Response Team (CERT-In), are pooling their resources to identify and apprehend the individuals responsible. They are employing sophisticated cyber forensic techniques to sift through the digital footprints left by the hoax caller and are exploring whether there may be any connections to other similar hoax incidents that have targeted Indian flights in recent months. The agencies are also working to ensure that such incidents do not recur in the future by improving their protocols for dealing with bomb threats.
In response to the surge in these hoax threats, the government is reportedly drafting new legislation that could impose strict penalties on those responsible for making such false claims. One of the key measures being discussed is the introduction of a 'no-fly list' for individuals found guilty of issuing bomb threats or similar hoaxes. This would mean that anyone convicted of such acts would be permanently banned from flying with Indian carriers, effectively grounding them for life. Government officials have confirmed that the Civil Aviation Ministry is actively studying successful models used by other countries to handle hoax threats, and discussions are also underway with the International Civil Aviation Organisation (ICAO) to strengthen India’s system for dealing with such incidents.
The frequent hoax threats have caused alarm within India’s aviation sector, as they not only create unnecessary panic but also divert critical resources away from other important security tasks. Aviation officials have had to repeatedly deploy security teams, bomb squads, and law enforcement agencies to respond to these false alarms, all while ensuring that the public’s confidence in air travel remains intact. Additionally, the repeated disruptions have caused financial losses for airlines and affected the schedules of thousands of passengers, underscoring the broader impact of such hoaxes on the aviation industry and the economy as a whole.
To further address the problem, Indian officials are expected to hold meetings with VPN service providers to ensure that cooperation is forthcoming in identifying the individuals behind these threats. While VPNs provide essential privacy features for legitimate users, they can also be exploited by cybercriminals to mask illegal activities. The agencies aim to strike a balance between respecting user privacy and ensuring that criminals cannot misuse the technology to cause harm. The discussions with VPN providers will likely focus on how quickly and efficiently they can provide the necessary data to law enforcement agencies when hoaxes or crimes occur, especially in cases involving threats to public safety.
As the investigation progresses, the government is committed to putting in place stronger deterrents and improving surveillance and response mechanisms to prevent such incidents from becoming a persistent problem. The collaboration between central agencies, international organizations, VPN providers, and the broader aviation industry is a key part of this effort, as India works to safeguard its airspace and ensure the safety and security of all passengers traveling within and outside its borders.
Â
