How cyber criminals are targeting civilian infrastructure?
By MYBRANDBOOK
Attacking a civilian infrastructure is a war crime but countries around the world are fighting a silent and dirty game of pre-positioning themselves on civilian infrastructure like energy-producing civilian nuclear plants — to be able to commit sabotage during a moment of geopolitical tension.
In a recent news it came into light through a Tweeter update by Pukhraj Singh, a "noted cyber intelligence specialist" who was "instrumental in setting up of the cyber-warfare operations centre of the National Technical Research Organisation (NTRO), that India's Kudankulam Nuclear Power Plant (KNPP) got hacked.
As per the news, the government was notified before-hand and extremely mission-critical targets were hit. Singh in his quote Tweet mentioned that he was aware of the attack as early as September 7, 2019, calling it a "causus belli" (an attack sufficiently grave to provoke a war). He also said that a third party contacted and notified National Cyber Security Coordinator on Sep 4.
At first the Nuclear Power Plant Corporation of India (NPCI) denied it and insisted the KNPP nuclear power plant is "stand alone and not connected to outside cyber network and internet" and that "any cyber attack on the Nuclear Power Plant Control System is not possible." Then they backtracked. On October 30, the NPCI confirmed that malware was in fact discovered on their systems, and that CERT-India first noticed the attack on September 4, 2019. In their statement, they claimed the infected PC was connected to the administrative network, which they say is "isolated from the critical internal network."
According to researchers at CyberBit, the malware appears to have been targeted specifically at the KNPP facility. The reverse-engineering of the malware sample brings forth that the hard-coded administrator credentials for KNPP's networks as well as RFC 1918 IP addresses. This highlights that the attacker prior to this broke in KNPP networks, scanned for NAT'ed devices, stole admin credentials, and then incorporated those details into this new malware, a second-stage payload designed for deeper and more thorough reconnaissance of KNPP's networks.
The malware hid inside of modified copies of legitimate programs, such as 7Zip or VNC. This technique often successfully escapes notice by antivirus scanners. Adequate checking of program signatures would have mitigated this attack vector; the modified program hash would have differed from the software vendor's signed hash. The fact that this attack was successful strongly suggests that KNPP was not checking software signatures of file hashes.
BREAKING NEWS
TECHNO TRENDS
BHIM to join e-commerce, competing with PhonePe and Google Pay
The government-supported payment software BHIM is getting ready to join t...
The latest version of X helps prevent deepfakes on social medi
To combat deepfakes and shallowfakes, Elon Musk revealed a new update t...
India and Namibia collaborate on a payment system similar to U
Once operational, the platform will enable digital transactions in Namibia,...
Sebi issues show-cause notices to six Adani group firms
Sebi issued show-cause notices to six Adani Group firms, including Adani ...
E-Magazine
TECHNOTAINMENT
Airtel Xstream Play strengthens regional content library, part
Bharti Airtel (“Airtel”), one of India’s leading telecommunications
ED attaches Raj Kundra, Shilpa Shetty’s Rs 97 crore worth as
The Enforcement Directorate (ED) has seized businessman Raj Kundra's pro
MOVERS & SHAKERS
Clover Infotech appointed Subham Banerjee as CDO
Clover Infotech has announced the appointment of Subham Banerjee as its Ch
Saviynt ropes in Sanjeevi Kumar as new Sales Director in India
The cloud-native identity and governance platform solutions provider Saviy
OPEN YOUR EYES
INTERVIEWS
Acer continues to solidify itself as a leading player in the I
Acer, as a key player in the constantly evolving and vibrant ICT industry,
India continues to be a key contributor in Hitachi Vantara’s
The brand strategy of Hitachi Vantara is tied to further expanding the Hita
HOT PICK
COLORFUL rolls out an array of gaming laptops
COLORFUL launched its incredible series of COLORFUL EVOL P15 gaming laptop
Dell Technologies launches new AI-powered commercial PC portfo
Dell Technologies has launched the broadest portfolio of commercial AI lap
MAKE IN INDIA BRANDS
LUMINOUS POWER TECHNOLOGIES PVT. LTD.
IBALL WORLDWIDE PVT. LTD.
AGGRESSIVE ELECTRONICS MANUFACTURING SERVICES PVT. LTD.
SAMSUNG INDIA ELECTRONICS PVT. LTD.
EMINENT CIO'S OF INDIA
ICONS OF INDIA
Technology Icons Of India 2023: Kumar Mangalam Birla
Aditya Birla Group chairman Kumar Mangalam Birla’s return to Vodafon...
Technology Icons Of India 2023: Shailender Kumar
Shailender Kumar is senior vice president and regional managing direct...
Technology Icons Of India 2023: Vijay Shekhar Sharma
Vijay Shekhar Sharma is an Indian technology entrepreneur and billiona...
PARTNER SPEAKERS
PSU
PGCIL transforming India with its wide power transmission network
Engaged in power transmission, POWERGRID or PGCIL is a stated owned In...
BBNL empowering rural India digitally
BBNL provide high speed digital connectivity to Rural India at afforda...
C-DAC keeps India ahead in IT & Electronics R&D space
Centre for Development of Advanced Computing (C-DAC) is the premier R&...
VIDEOS
Top 25 Brands
Value-Added Distribution
ACCERON INFOSOL PVT. LTD.
It is a leading value added distributor in the IT security space and h...
IRIS GLOBAL SERVICES PVT. LTD.
Iris Global services is one of the leading distribution houses that d...
TECHNOBIND SOLUTIONS PVT. LTD.
TechnoBind’s business model is focused on identifying and partnering...
ITFORUM 2024
WIITF 2024
CMO of the Year
WOMEN LEADERSHIP
EMINENT CIO's OF INDIA
TRENDS IN TECHNOLOGY
MORE VIDEOS
ADVERTISEMENTS
TECHNOLOGY DISRUPTION
UNICORNS REVOLUTIONISING
