A report released by a United States-based private cybersecurity firm has suggested that a Chinese cyber campaign targeted India’s power gr...
A report released by a United States-based private cybersecurity firm has suggested that a Chinese cyber campaign targeted India’s power grid, months after the Galwan valley clash in June, in which soldiers from both the countries were killed.
Recorded Future’s report raises questions about a possible link between the clash and a power blackout that brought India’s financial capital Mumbai to a standstill in October, according to The New York Times. Indian media had reported that authorities suspected a malware attack caused the outage.
The US cybersecurity firm’s report showed that Chinese malware was flowing into systems managing India’s electricity supply as border tensions between the two countries continued. Recorded Future claimed that “Red Echo”, a group sponsored by the Chinese state, was behind this intrusion.
Read the complete report here.
“Since early 2020, Recorded Future’s Insikt Group observed a large increase in suspected targeted intrusion activity against Indian organizations from Chinese state-sponsored groups,” the report said. “From mid-2020 onwards, Recorded Future’s midpoint collection revealed a steep rise in the use of infrastructure tracked as AXIOMATICASYMPTOTE, which encompasses ShadowPad command and control (C2) servers, to target a large swathe of India’s power sector.”
The report identified 10 Indian power sector organisations, including four of the five Regional Load...
