China linked-Hackers Breach Power Grid in undisclosed Asian country

September 29, 2023

INCIDENT

Symantec revealed that a Chinese hacker group with connections to APT41, which Symantec is calling RedFly, breached the computer network of a national power grid in an Asian country—though Symantec has declined to name which country was targeted. The breach began in February of this year and persisted for at least six months as the hackers expanded their foothold throughout the IT network of the country's national electric utility, though it's not clear how close the hackers came to gaining the ability to disrupt power generation or transmission.

Signs suggest the culprits worked within a notorious Chinese hacker group that may have also hacked Indian electric utilities years earlier.

Incident Date

February 13, 2023

Location

Asia-Pacific

Estimated Cost


No cost values disclosed.

Type of Malware

No Malware identified

Threat Source

No threat source identified