Suspected state-sponsored Chinese hackers have targeted the power sector in India in recent months cyber espionage operationThreat intelligence firm Recorded Future Inc said in a report published on Wednesday.
The hackers focused on at least seven “load dispatch” centers in northern India, which are responsible for conducting real-time operations for grid control and dispersal of electricity in areas near them. India-China border In Ladakh, the report said. One of the load dispatch centers was previously the target of another hacking group, Redeco, which Recorded Future said shares a “strong overlap” with a hacking group the US has linked to. Chinese government,
“Long-Targeting” indian power grid assets China offers limited economic espionage or conventional intelligence gathering by state-linked groups,” the Recorded Future report said. and/or is intended to enable pre-positioning for future activity.”
In addition, the hackers compromised an Indian national emergency response system and a subsidiary of a multinational logistics company, according to the report.
hacking group, dubbed Tag-38has used a type of malicious software called shadowpadpreviously associated with China People’s Liberation Army and the Ministry of State Security, according to Recorded Future. The researchers did not identify the victims by name.
Jonathan Kondra, a senior manager at Recorded Future, said the way the attackers used to infiltrate – using compromised Internet of Things devices and cameras – was unusual. He said the equipment used to launch the infiltration was located in South Korea and Taiwan.
The Chinese Ministry for Foreign Affairs did not respond to a request for comment as of press time. Beijing has consistently denied involvement in malicious cyber activity. Indian officials also did not respond to a request for comment.
The hackers focused on at least seven “load dispatch” centers in northern India, which are responsible for conducting real-time operations for grid control and dispersal of electricity in areas near them. India-China border In Ladakh, the report said. One of the load dispatch centers was previously the target of another hacking group, Redeco, which Recorded Future said shares a “strong overlap” with a hacking group the US has linked to. Chinese government,
“Long-Targeting” indian power grid assets China offers limited economic espionage or conventional intelligence gathering by state-linked groups,” the Recorded Future report said. and/or is intended to enable pre-positioning for future activity.”
In addition, the hackers compromised an Indian national emergency response system and a subsidiary of a multinational logistics company, according to the report.
hacking group, dubbed Tag-38has used a type of malicious software called shadowpadpreviously associated with China People’s Liberation Army and the Ministry of State Security, according to Recorded Future. The researchers did not identify the victims by name.
Jonathan Kondra, a senior manager at Recorded Future, said the way the attackers used to infiltrate – using compromised Internet of Things devices and cameras – was unusual. He said the equipment used to launch the infiltration was located in South Korea and Taiwan.
The Chinese Ministry for Foreign Affairs did not respond to a request for comment as of press time. Beijing has consistently denied involvement in malicious cyber activity. Indian officials also did not respond to a request for comment.