India Archives - ICSSTRIVE

Cyberattack Disrupts Systems at Infosys McCamish Systems

November 3, 2023

Infosys McCamish Systems, a subsidiary of India-based IT services giant Infosys Ltd. (NYSE: INFY), experienced a cyberattack. The company reported the incident in a regulatory filing on 3 November.

“Infosys McCamish Systems (IMS), a subsidiary of Infosys BPM Limited (a wholly owned subsidiary of Infosys Limited), has become aware of a cybersecurity event resulting in non-availability of certain applications and systems in IMS,” according to the filing.

“Data protection and cybersecurity are of utmost importance to us,” the statement continued. “We are working with a leading cybersecurity products provider to resolve this at the earliest and have also launched an independent investigation with them to identify potential impact on systems and data.”

Cyberattack at India’s National Institute of Ocean Technology

March 18, 2023

Medusa Ransomware group claims to have infiltrated NIOT’s systems and encrypt critical data, including plans, CAD drawings, and other sensitive information. The website was down while reporting the incident.

Medusa Ransom Group Hacks into Gujarat Mining Company Demanding $500K Ransom

March 23, 2023

A ransomware gang breached the Gujarat Mineral Development Corporation (GMDC) data network on April 1. The ransomware gang called ‘Medusa’, first published on its blog, ‘Medusa Blog’ on March 23, privy to hacker networks, that they were in possession of several GBs of sensitive data belonging to GMDC’s office in Ahmedabad and had compromised the ‘admin’ of the network. Medusa ransomware demanded $500,000 as ransom by April 1, from GMDC to decrypt the documents.

The Medusa ransomware gang took control of administrator rights, and allegedly had access to Office365 users’ emails including the attached documents. There were lists of corporate business clients with whom GMDC is in business, maintenance contracts for a power plant, several tender documents, infrastructure evaluation report conducted by Schneider Electric for GMDC, several IP addresses of employees and their devices, employees’ personal details.

Significant Revenue Loss at Indian Pharmaceutical Giant after Cyberattack

May 20, 2023

Pharmaceutical company Granules India has reported a significant loss of revenue and profitability after a cyber security attack late last month. The attack led to major disruptions in the company’s IT systems, as well as delays in meeting regulatory requirements and quality standards.
The company reported the incident on May 25. News outlets reported on June 29 that the company said that it has managed to restore production near to normalcy.

Russian ransomware group LockBit has taken responsibility for the cyberattack on Granules India.

Cyberattack Halts Production at Factories of Suzuki Motorcycle India

May 10, 2023

Suzuki Motorcycle India – the Japanese two-wheeler maker has been compelled to stop production at its factories due to a “cyber-attack” on its operations. According to several people in the know, the production has been stalled since Saturday, May 10, and it is estimated to have incurred a production of loss of over 20,000 vehicles in this timeframe.

As part of its measures to address the situation at hand, a few days ago, Suzuki Motorcycle informed its ecosystem that due to an “unprecedented business requirement”, it has postponed its annual supplier conference, which was scheduled to be held next week.n as saying.

Databreach Impacts Business Operations at Sun Pharmaceutical

March 2, 2023

A ransomware group has claimed responsibility for ‘IT security incident’ at Sun Pharma whose effect included breach of certain file systems and the theft of certain company data and personal data, the drugmaker said in a stock exchange filing. “As part of the containment measures, we proactively isolated our network and initiated the recovery process. As a result of these measures, Company’s business operations have been impacted,” it said. “Consequently, revenues are expected to be reduced in some of our businesses. The Company would incur expenses in connection with the incident and the remediation.”

Sun Pharma first reported the incident on March 2. Back then it said that the incident did not affect Sun’s core systems and operations. On March 27 the company said it is currently unable to determine other potential adverse impacts of the incident.

Outage at Leading Public Medical Institute in India affects Hundreds of Patients and Doctors

November 23, 2022

India’s leading public medical institute, All India Institute of Medical Services, or AIIMS, is experiencing outages following a cyberattack.

AIIMS officials told TechCrunch that patient care services have been badly impacted since early Wednesday. The medical institute moved to manual operations, including writing patient notes by hand, as the server recording patient data stopped working. The outages have resulted in long queues and errors in handling emergency cases and continued till Thursday.
Details of whether the attackers could access any patient data have yet to be publicly announced.

UPDATE [03Jul23]: Former cybersecurity chief says the ransomware attack on AIIMS prompted government to make cyber response framework. “A lot of lessons have come out from the incident from a government point of view, and these will, hopefully be implemented.” As reported by Hindustan Times.

Customer Data Breach at Toyota India

January 1, 2023

A data breach at Toyota Motor’s Indian business might have exposed some customers’ personal information, it said on Sunday. The car company warned that the accounts could be subject to spamming or phishing scams along with unsolicited emails.

Ransomware Attack Cripples Indian Port Container Terminal JNCPT

February 21, 2022

Jawaharlal Nehru Port Container Terminal was hit by a suspected ransomware attack. JNPCT operations are down and they are unable to process containers. Vessels were diverted and JNPCT stopped accepting ships for loading/unloading at the port.

JNPCT is owned and operated by the port authority, while the other terminals are private. This mirrors a NotPetya attack that occurred at the Gateway Terminal India (GTI) terminal at the same port, owned by Danish AP Moller-Maersk (APM), in 2017. At the time, 17 APM terminals around the world were hit simultaneously.

India’s Largest Integrated Power Company, Tata Power, Hit by Cyberattack

October 14, 2022

Tata Power, a leading power generation company in India, confirmed it was hit by a cyberattack. In a brief statement released on Friday, the Mumbai-based company said that the attack impacted some of its IT systems.
“The company has taken steps to retrieve and restore the systems. All critical operational systems are functioning. As a measure of abundant precaution, restricted access and preventive checks have been put in place for employee and customer-facing portals and touchpoints,”

« Older Entries