The recent revelations by the Financial Action Task Force (FATF) and the National Investigation Agency (NIA) regarding the 2019 Pulwama terror attack have once again jolted the nation’s conscience. At the center of this renewed scrutiny lies a deeply disturbing detail: a 19-year-old youth from Srinagar, Waiz-ul-Islam, procured key components of the improvised explosive device (IED) used in the attack through a popular e-commerce platform—Amazon.
This chilling piece of intelligence underscores a stark and urgent reality: India’s cyber and digital commerce regulations are not just outdated—they are dangerously inadequate in addressing emerging threats linked to online radicalization and terrorism.
As per the reports, Waiz-ul-Islam, under instructions from Pakistan-based terror outfit Jaish-e-Mohammed, ordered chemicals, aluminum powder, batteries, and other crucial IED components through online shopping portals. These were then assembled and handed over to other operatives who ultimately orchestrated one of the deadliest terror attacks in recent Indian history, killing 40 brave CRPF personnel.
This is not just a lapse in security—it is a catastrophic failure of digital governance. The idea that deadly materials can be ordered online with little to no oversight or verification mechanisms is not just shocking—it is terrifying.
Equally concerning is the role of online platforms in facilitating not just the logistics of terror but also the spread of extremist ideologies. The Pulwama bomber, 20-year-old Adil Dar, had been radicalized over time and later featured in a chilling video where he claimed he would be in “jannat” (paradise) by the time the footage was released. His dead-eyed delivery was void of remorse—highlighting the depth of indoctrination that can now occur virtually, often undetected.
India has made significant progress in cyber infrastructure, but this incident exposes glaring loopholes in monitoring, regulation, and accountability. Our digital marketplace is expanding at a phenomenal pace, yet there is insufficient surveillance to detect or prevent its misuse by malicious actors.
The Pulwama attack must serve as a wake-up call to policymakers, law enforcement agencies, and tech companies alike. We need a comprehensive cyber policy overhaul that mandates strict KYC (Know Your Customer) norms for high-risk product purchases, real-time coordination between intelligence agencies and e-commerce platforms, and better AI-driven surveillance to detect patterns of suspicious purchases.
Moreover, counter-radicalization strategies must evolve to combat the digital indoctrination of youth. It is not enough to target the recruiters—we must also intervene before a vulnerable individual is drawn into the orbit of extremism.
In a world where the next terror toolkit could be a click away, India can no longer afford to separate national security from cyber policy. The digital battlefield is real, and unless we act decisively, Pulwama may not remain an isolated tragedy—it may become a template for future attacks.
