Along With Kudankulam, ISRO Also Warned About Cyber Security Breach: Report
By MYBRANDBOOK
On September 4, both the Nuclear Power Corporation of India Limited (NPCIL) and the Indian Space Research Organisation (ISRO) were alerted about a possible cyber security breach in their systems by a suspected malware, Indian Express has reported. The warning came from a US-based cyber security company, which said a “threat actor” had breached master “domain controllers”.
The NPCIL breach, at the Kudankulam nuclear power plant, became public on October 28. After first denying the reports, NPCIL confirmed a day later that it had, in fact, been hit by a malware. It was also quick to add, though, that the potentially compromised administrative network was “isolated from the critical internal network” and that the plant’s systems were not affected.
A Department of Atomic Energy probe reportedly found that a user had connected a malware-infected personal computer to the plant’s administrative network.
ISRO did not respond to the Indian Express‘s requests for comments, neither has the space agency issued a public statement. However, sources reportedly confirmed to the newspaper that authorities swung into action immediately after the alert was received, especially since the Chandrayaan 2 lunar landing (which failed) was scheduled for about 100 hours after that.
The malware used has been identified as ‘Dtrack’.
A Russian cyber security company, Kaspersky Labs, had said on September 23 that “banks and research centres in India” were targeted by Dtrack “in the beginning of September 2019”, and this was the latest detected activity of the malware. According to them, the malware was the work of Lazarus, “an umbrella name that typically describes hacking activity which advances Pyongyang’s interests”.
After the breach at Kudankulam became public, Seoul-based non-profit Issue MakersLab said that the same malware had also been used against South Korea’s internal military network in 2016.
VirusTotal, a virus-scanning website run by Alphabet, found that a large amount of administrative data was stoled from Kudankulam, Washington Post reported. This means, the paper argues, that subsequent attacks could have serious repercussions for more critical systems. Cyber attacks “can be used to facilitate sabotage, theft of nuclear materials, or - in the worst-case scenario - a reactor meltdown. In a densely populated country like India, any radiation release from a nuclear facility would be a major disaster”, the newspaper says.
NPCIL’s response, according to the Washington Post, indicates that Indian authorities might not be taking these threats seriously enough. Isolating a computer or a local network from the internet - which is what the power company said it is doing - does not do much to guarantee cyber security.
“Given the low threshold of military escalation between India and Pakistan, and high potential for escalation from cyber to the real world, India may wish to treat the Kudankulam attack as a wake-up call about its vulnerable cyber defenses at nuclear facilities and other critical infrastructure,” the author, Debak Das, writes.
Singapore to remove One-Time Passwords from Bank Accounts
According to the Monetary Authority of Singapore, clients who utilise secur...
Is 375 million Airtel subscribers database breached?
When a hacker claims to have accessed and put up for sale a customer databa...
The government of India intends to construct a single portal f
A single portal will be launched by the Indian government to list all of it...
OpenAI offers GPT-4o, a faster model available to all users at
GPT-4o, a faster and more sophisticated AI model, is made available to all...
Icons Of India : Arjun Malhotra
Arjun Malhotra, the Chairman of Magic Software Inc., is widely recogni...
Icons Of India : Harsh Jain
Harsh Jain, the co-founder of Dream 11, the largest fantasy sports web...
Icons Of India : Dr. Arvind Gupta
Arvind Gupta is the Head and Co-Founder of the Digital India Foundatio...
CSC - Common Service Centres
CSC initiative in India is a strategic cornerstone of the Digital Indi...
IFFCO - Indian Farmers Fertiliser Cooperative
IFFCO operates as a cooperative society owned and controlled by its fa...
CERT-IN - Indian Computer Emergency Response Team
CERT-In is a national nodal agency for responding to computer security...
Indian Tech Talent Excelling The Tech World - NIKESH ARORA, Chairman CEO - Palo Alto Networks
Nikesh Arora, the Chairman and CEO of Palo Alto Networks, is steering ...
Indian Tech Talent Excelling The Tech World - Satya Nadella, Chairman & CEO- Microsoft
Satya Nadella, the Chairman and CEO of Microsoft, recently emphasized ...
Indian Tech Talent Excelling The Tech World - Vinod Dham, Founder & Executive Managing Partner, IndoUS Venture Partners
Vinod Dham, known as the “Father of the Pentium Chip,” has left an...