Suspected Chinese hackers are targeting India's power grid

Written by
Apr 7, 2022 | CYBERSCOOP

Hackers likely affiliated with the Chinese government have been going after North India’s power supply, according to a report by Recorded Future.

Researchers observed “likely” network intrusions of at least seven state centers that carry out real-time grid control and electricity dispatch, according to the Wednesday evening report.

The activity has been concentrated in North India, where China has clashed with India over disputed territory on the Himalayan border. Other activities by the same hacking group included the compromise of a national emergency response system and the Indian subsidiary of a multinational logistics company. 

Hackers likely gained access to the dispatch centers by compromising internet-facing camera devices, researchers say.

Researchers saw similar attacks between mid-2020 and February 2021 when both China and India agreed to pull forces from the dispute. At the time, researchers attributed attacks on 10 different Indian power sector organizations, two ports and a large generation operator to a Chinese state-sponsored group called “RedEcho.”

Hackers likely gained access to the dispatch centers by compromising internet-facing camera devices, researchers say.

The new activity shows some overlaps with RedEcho, but researchers were not able to definitely

Read More: https://www.cyberscoop.com/chinese-hackers-india-power-grid-recorded-future-red-echo/