Business

Suspected state-sponsored Chinese hackers target India’s power sector

Suspected state-sponsored Chinese hackers have targeted the power sector in India in recent months as part of an apparent cyber-espionage campaign, the threat intelligence firm Recorded Future Inc. said in a report published Wednesday.

The hackers focused on at least seven “load dispatch centers” in northern India that are responsible for carrying out real-time operations for grid control and electricity dispersal in the areas they are located, near the disputed India-China border in Ladakh, the report said.

For all the latest headlines, follow our Google News channel online or via the app.

One of the load dispatch centers previously was the target of another hacking group, RedEcho, which Recorded Future has said shares “strong overlaps” with a hacking group that the US has tied to the Chinese government.

“The prolonged targeting of Indian power grid assets by Chinese state-linked groups offers limited economic espionage or traditional intelligence gathering opportunities,” the Recorded Future report states.

“We believe this is instead likely intended to enable information gathering surrounding critical infrastructure and/or pre-positioning for future activity.”

In addition, the hackers compromised an Indian national emergency response system and a subsidiary of a multinational logistics company, according to the report.

The hacking group, dubbed TAG-38, has used a kind of malicious software called ShadowPad, which was previously associated with China’s People’s Liberation Army and the Ministry of State Security, according to Recorded Future. Researchers didn’t identify the victims by name.

Jonathan Condra, a senior manager at Recorded Future, said the method the attackers used to make the intrusions — using compromised internet of things devices and cameras — was unusual. The devices used to launch the intrusions were based in South Korea and Taiwan, he said.

Chinese Foreign Ministry spokesman Zhao Lijian said at a regular briefing Thursday in Beijing that his country cracked down on all manner of hacking. “We will never encourage, support or condone such activities,” he said.

He said Recorded Future, “if it really cares about cybersecurity, should pay more attention to the attacks launched by the US against Chinese companies and institutions.”

Indian authorities didn’t respond to a request for comment.

Read more:

Scams, ransomware incidence on the rise in Middle East, cybersecurity experts warn

NFT fraud: Money laundering and wash trading on the rise, expert warns

Scamming revenues rose 82 pct in 2021 to $7.8 bln worth of stolen crypto: Expert

Leave a Reply

Your email address will not be published. Required fields are marked *

Trending

Exit mobile version