Suspected state-sponsored Chinese hackers have targeted the power sector in India in the past few months as part of an apparent cyberespionage campaign, the threat intelligence firm Recorded Future Inc said in a report published on Wednesday.
The hackers focused on at least seven “load dispatch” centers in northern India that are responsible for carrying out real-time operations for grid control and electricity dispersal in areas near the disputed India-China border in Ladakh, the report said.
One of the load dispatch centers was once a target of another hacking group, RedEcho, which Recorded Future said shares “strong overlaps” with a hacking group that the US has tied to the Chinese government.
“The prolonged targeting of Indian power grid assets by Chinese state-linked groups offers limited economic espionage or traditional intelligence gathering opportunities,” the report said.
“We believe this is instead likely intended to enable information gathering surrounding critical infrastructure and/or pre-positioning for future activity,” it said
Additionally, the hackers compromised an Indian national emergency response system and a subsidiary of a multinational logistics company, the report said.
The hacking group, dubbed TAG-38, has used a kind of malicious software called ShadowPad, which was previously associated with the Chinese People’s Liberation Army and the Ministry of State Security, it said.
The report did not identify the victims by name.
The method the attackers used to make the intrusions — using compromised Internet of Things devices and cameras — was unusual, Recorded Future senior manager Jonathan Condra said, adding that the devices used to launch the intrusions were based in South Korea and Taiwan.
Beijing has consistently denied involvement in malicious cyberactivity.
North Korea yesterday made a rare mention of dissenting votes in recent elections, although analysts dismissed it as an attempt to portray an image of a normal society rather than signaling any meaningful increase of rights in the authoritarian state. The reclusive country has one of the most highly controlled societies in the world, with North Korean leader Kim Jong-un accused of using a system of patronage and repression to retain absolute power. Reporting on the results of Sunday’s election for deputies to regional people’s assemblies, the North’s state media said that 0.09 percent and 0.13 percent voted against the selected candidates
‘SYMBOLIC ATTACK’: Ukraine said it downed 74 of the Iranian-made drones, but five people were wounded in Kyiv, as people marked Holodomor Remembrance Day Ukraine on Saturday said it had downed 74 out of 75 drones Russia launched at it overnight, in what it said was the biggest such attack since the start of the invasion in February last year. The Ukrainian army said Russia had launched a “record number” of Iranian-made Shahed drones, the majority of which targeted Kyiv, causing power cuts as temperatures dipped below freezing. The drone attack came as Ukraine marked Holodomor Remembrance Day, commemorating the 1930s starvation of millions in Ukraine under Soviet leader Joseph Stalin. “The enemy launched a record number of attack drones at Ukraine. The main direction
‘SCOURGE’: About 50,000 people demonstrated in Rome after the murder of a 22-year-old university student, while others highlighted the number of femicides in their nations Thousands of people took to the streets across the world on Saturday to condemn violence against women on the international day highlighting the crime. On the UN-designated International Day for the Elimination of Violence Against Women, protesters marched in Europe and the Americas. “The scourge of gender-based violence continues to inflict pain and injustice on too many,” US President Joe Biden said in a statement. “An estimated one in three women globally will experience physical violence, rape, or stalking at some point in their lifetimes. It’s an outrage.” In Guatemala, protesters began commemorations on Friday evening, placing candles to write out 438 —
WEATHER PROBLEM: Seoul said the launch, which comes after the North said its new spy satellite is taking images of US military facilities, was rescheduled for Saturday South Korea has delayed the planned launch of its first military spy satellite set for tomorrow, officials said, days after rival North Korea said it had put its own spy satellite into orbit for the first time. Under a contract with SpaceX, South Korea is to launch five spy satellites by 2025, and its first launch using SpaceX’s Falcon 9 rocket had been scheduled to take place at California’s Vandenberg Air Force Base in the US. The South Korean Ministry of National Defense yesterday said in a brief statement that the launch was delayed due to weather conditions. Ministry officials said the
RSS