News Brief
A WAP-7 locomotive of the Indian Railways (Pramath S B/Wikimedia Commons)
Besides 10 organisations in the Indian power sector and two ports, Chinese state-sponsored hackers might also have targeted Indian Railways infrastructure, an expert with cyber intelligence company Recorded Future said on Thursday (4 March).
However, there is still not enough data to confirm that Indian Railways infrastructure were actually attacked, Charity Wright, Cyber Threat Intelligence Expert, Recorded Future, said during a virtual briefing with reporters.
Recorded Future had earlier released a report in which it had identified 10 distinct Indian organisations in the power generation and transmission sector and two in the maritime sector which were targeted by Chinese hackers.
The intrusions were conducted by a China-linked activity group that Recorded Future termed as "RedEcho".
The 12 "victim" organisations are - Power System Operation Corporation Ltd, NTPC Ltd, NTPC Kudgi STPP, Western Regional Load Despatch Centre, Southern Regional Load Despatch Centre, North Eastern Regional Load Despatch Centre, Eastern Regional Load Despatch Centre, Telangana State Load Despatch Centre, Delhi State Load Despatch Centre, DTL Tikri Kalan (Mundka) of Delhi Transco Ltd, V.O. Chidambaranar Port, Mumbai Port Trust.
Recorded Future observed the intrusions in the Indian power sector beginning in mid-2020 amid heightened border tensions between India and China.
Relations between India and China deteriorated significantly following the border clashes in June 2020 that resulted in the first combat deaths in 45 years between the world's two most populous nations, the report noted.
"The attack was unsettling because the hackers targeted the civilian infrastructure. It should not have happened," said Christopher Ahlberg, Recorded Future's CEO and Co-Founder.
It now appears that the Chinese state-backed hackers are winding down their operations, he said.
They appeared to be active till 28 February, but over the past few days, their activities appear to be winding down, Ahlberg said.
From the nature of the attacks, it appears that the Chinese hackers were not interested in any economic gain and espionage advantage. They might have wanted to show their capability for disruptions or it could be a sign of their preparation for any future operations, he said.
"The Chinese will continue this sort of targeting in the future...China will continue to exert pressure on their neighbours," Ahlberg said.
He, however, said that there is not enough data to support any link between the October 2020 power outage in Mumbai and a malware at a Padgha Load Despatch Centre in Thane district.
(This story has been published from a wire agency feed without modifications to the text. Only the headline has been changed.)
Support Swarajya's 50 Ground Reports Project & Sponsor A Story
Every general election Swarajya does a 50 ground reports project.
Aimed only at serious readers and those who appreciate the nuances of political undercurrents, the project provides a sense of India's electoral landscape. As you know, these reports are produced after considerable investment of travel, time and effort on the ground.
This time too we've kicked off the project in style and have covered over 30 constituencies already. If you're someone who appreciates such work and have enjoyed our coverage please consider sponsoring a ground report for just Rs 2999 to Rs 19,999 - it goes a long way in helping us produce more quality reportage.
You can also back this project by becoming a subscriber for as little as Rs 999 - so do click on this links and choose a plan that suits you and back us.
Click below to contribute.
Latest