1. Home
  2. 'Amidst border tension, Chinese hackers targeted India’s power through malware'

'Amidst border tension, Chinese hackers targeted India’s power through malware'

Agencies
March 1, 2021

Amidst heightened border tension, Chinese hackers targeted India's power through malware: US firm | Law-Order

Washington, Mar 1: Amidst the tense border tension between India and China, a Chinese government-linked group of hackers targeted India's critical power grid system through malware, a US company has claimed in its latest study, raising suspicion whether last year's massive power outage in Mumbai was a result of the online intrusion.

Recorded Future, a Massachusetts-based company which studies the use of the internet by state actors, in its recent report details the campaign conducted by a China-linked threat activity group RedEcho targeting the Indian power sector.

The activity was identified through a combination of large-scale automated network traffic analytics and expert analysis.

Data sources include the Recorded Future Platform, SecurityTrails, Spur, Farsight and common open-source tools and techniques, the report said.

On October 12, a grid failure in Mumbai resulted in massive power outages, stopping trains on tracks, hampering those working from home amidst the COVID-19 pandemic and hitting the stuttering economic activity hard.

It took two hours for the power supply to resume for essential services, prompting Chief Minister Uddhav Thackeray to order an enquiry into the incident.

In its report, Recorded Future notified the appropriate Indian government departments prior to publication of the suspected intrusions to support incident response and remediation investigations within the impacted organisations.

There was no immediate response from the Indian government on the study by the US company.

Since early 2020, Recorded Future's Insikt Group observed a large increase in suspected targeted intrusion activity against Indian organisations from the Chinese state-sponsored group.

The New York Times, in a report, said that the discovery raises the question about whether the Mumbai outage was meant as a message from Beijing about what might happen if India pushed its border claims too vigorously.

According to the Recorded Future report, from mid-2020 onwards, Recorded Future's midpoint collection revealed a steep rise in the use of infrastructure tracked as AXIOMATICASYMPTOTE, which encompasses ShadowPad command and control (C2) servers, to target a large swathe of India's power sector.

Ten distinct Indian power sector organisations, including four of the five Regional Load Despatch Centres (RLDC) responsible for operation of the power grid through balancing electricity supply and demand, have been identified as targets in a concerted campaign against India's critical infrastructure.

Other targets identified included two Indian seaports, it said.

According to the report, the targeting of Indian critical infrastructure offers limited economic espionage opportunities.

However, we assess they pose significant concerns over potential pre-positioning of network access to support Chinese strategic objectives, it said.

Pre-positioning on energy assets may support several potential outcomes, including geostrategic signalling during heightened bilateral tensions, supporting influence operations, or as a precursor to kinetic escalation, Recorded Future said.

RedEcho has strong infrastructure and victimology overlaps with Chinese groups APT41/Barium and Tonto Team, while ShadowPad is used by at least five distinct Chinese groups, it said.

The high concentration of IPs (Internet Protocols) resolving to Indian critical infrastructure entities communicating over several months with a distinct subset of AXIOMATICASYMPTOTE servers used by RedEcho indicate a targeted campaign, with little evidence of wider targeting in Recorded Future's network telemetry, it said.

Recorded Future said that in the lead-up to the May 2020 border skirmishes, it observed a noticeable increase in the provisioning of PlugX malware C2 infrastructure, much of which was subsequently used in intrusion activity targeting Indian organisations.

The PlugX activity included the targeting of multiple Indian government, public sector and defence organisations from at least May 2020, it said.

While not unique to Chinese cyber espionage activity, PlugX has been heavily used by China-nexus groups for many years.

Throughout the remainder of 2020, we identified a heavy focus on the targeting of Indian government and private sector organisations by multiple Chinese state-sponsored threat activity groups, it said.

In its report, Recorder Future alleged that it also observed the suspected Indian state-sponsored group Sidewinder target Chinese military and government entities in 2020, in activity overlapping with recent Trend Micro research.

The Massachusetts-based company's report came as the armies of the two countries began disengagement of troops locked in over eight-month-long standoff in eastern Ladakh.

Both countries reached a mutual agreement last month for the disengagement of troops from the most contentious area of North and South banks of the Pangong Lake.

Comments

Add new comment

About text formats
  • Coastaldigest.com reserves the right to delete or block any comments.
  • Coastaldigset.com is not responsible for its readers’ comments.
  • Comments that are abusive, incendiary or irrelevant are strictly prohibited.
  • Please use a genuine email ID and provide your name to avoid reject.
News Network
April 26,2024

katee.jpg

Mangaluru/Udupi: The Dakshina Kannada and Udupi-Chikmagalur Lok Sabha constituencies recorded a tentative voter turnout of 77.4% and 76.1% respectively until 6 pm on Friday. In the 2019 polls, Dakshina Kannada recorded 77.9%, while Udupi recorded a 75.8% voter turnout.

The DK Lok Sabha constituency recorded a poll percentage of 71.8% at 5 pm. Among the constituencies, Sullia recorded a maximum of 78.4%, followed by Belthangady at 75.6%, Puttur at 75.2%, Bantwal at 73.7%, Mangalore at 73.5%, Mangalore City North at 69.8%, and Mangalore City South at 61.8%.

Urban apathy continued, with Mangalore City South recording the lowest polling percentage.

Meanwhile, Banjarumale, a remote village in Belthangady taluk, recorded 100% polling with all 111 voters showing up two hours before polling ended at 6pm.

Another interior polling station at Elaneer in the same taluk recorded 82% polling at 4 pm. The booth has 471 voters. The district has a total of 18,18,127 voters, with 9,30,928 females, 8,87,122 men, and 77 transgender individuals.

A good number of people turned out to vote during the early hours. Voters are bearing the scorching sun while stepping out to exercise their franchise as heat wave is sweeping through the state. 

The polling process remained largely peaceful, with long queues observed at polling stations from 7 am onwards in several polling stations. However, technical glitches caused delays at a polling station in Karopady, and at St. Xavier School Bejai, where polling was reportedly delayed by nearly two hours.

Polling staff at a booth near the Mulki police station mistakenly marked the wrong finger with ink during voting. They reportedly applied ink to the index finger of the right hand. According to sources, at least 50 individuals had their index finger of the right hand inked. Deputy Commissioner Mullai Mulihan clarified, "The matter was promptly addressed by the sector office. This error affected 8-9 voters"

A total of 18.18 lakh voters in the Dakshina Kannada Lok Sabha constituency and 15.85 lakh in Udupi-Chikmagalur hold the power to determine the fate of candidates competing for their respective segments. The polling process is currently underway across 1,876 booths in Dakshina Kannada and 1,842 polling stations in the Udupi-Chikmagalur segment.

In Dakshina Kannada, a closely contested battle is anticipated between Captain Brijesh Chowta representing the BJP and Padmaraj R Poojary from the Congress. Meanwhile, in the Udupi-Chikmagalur constituency, Kota Shrinivas Poojary of the BJP and K Jayaprakash Hegde of the Congress are the prominent contenders.

DKUdup.jpg

udupi.jpg

DKvote4.jpg

DKvote5.jpg

DKvote3.jpg

DKvote2.jpg

DKvote1.jpg

Comments

Add new comment

About text formats
  • Coastaldigest.com reserves the right to delete or block any comments.
  • Coastaldigset.com is not responsible for its readers’ comments.
  • Comments that are abusive, incendiary or irrelevant are strictly prohibited.
  • Please use a genuine email ID and provide your name to avoid reject.
News Network
April 26,2024

water.jpg

The US military has started the construction of a controversial maritime pier off the coast of Gaza, claiming that it seeks to bring aid into the besieged strip.

"I can confirm that US military vessels, to include the USNS Benavidez, have begun to construct the initial stages of the temporary pier and causeway at sea," Pentagon spokesperson Major General Patrick Ryder told reporters on Thursday.

US President Joe Biden ordered the construction of the pier in March. Shortly afterwards, the US deployed naval ships to the Eastern Mediterranean to construct the "floating pier" that will reportedly receive aid from Cyprus, and send it onward to Gaza.

The US announcement came amid mounting pressure on Israel to allow aid into Gaza as the UN and other aid agencies have warned of imminent famine due to Israel's prevention of the land-based delivery of life-saving aid to Gaza.

The deputy UN food chief said on Thursday the northern Gaza Strip is still heading toward a famine.

World Food Program (WFP) Deputy Executive Director Carl Skau called for a greater volume of aid to be allowed into Gaza and appealed for Israel to allow direct access from the southern Ashdod port to the Erez crossing.

The pier is scheduled to become operational in May.

Reuters quoted a senior Biden administration official, who asked not to be named, as saying that aid coming off the corridor will still need to pass through Israeli checkpoints on land, raising questions about possible delays even after aid reaches shore.

That is despite the aid having already been inspected by Israel in Cyprus prior to being shipped to the besieged strip.

According to the official, nearly 1,000 US troops would support the military effort, including in coordination cells in Cyprus and Israel.

The Israeli military said its troops would protect the US troops who are setting up the pier and provide logistics support for it.

Last month, experts said Israel backed the US plan to construct the pier in order to retain control over the aid deliveries and as a way to displace Palestinians from the besieged strip via the Mediterranean Sea, ahead of an expected invasion of the southern town of Rafah, where nearly more than half of Gaza's population of 2.4 have sought shelter from Israeli strikes elsewhere in Gaza.

Israel launched the war on Gaza on October 7 after the Palestinian resistance movement Hamas waged the surprise Operation Al-Aqsa Storm against the occupying entity in response to the Israeli regime's decades-long campaign of bloodletting and devastation against Palestinians.

Tel Aviv has also blocked water, food, and electricity to Gaza, plunging the coastal strip into a humanitarian crisis.

Since the start of the offensive, the Tel Aviv regime has killed at least 34,305 Palestinians and injured 77,293 others.

Comments

Add new comment

About text formats
  • Coastaldigest.com reserves the right to delete or block any comments.
  • Coastaldigset.com is not responsible for its readers’ comments.
  • Comments that are abusive, incendiary or irrelevant are strictly prohibited.
  • Please use a genuine email ID and provide your name to avoid reject.
News Network
May 2,2024

hajjmangalore.jpg

Mangaluru: This year too, the Mangaluru International Airport has missed being designated as an embarkation point for the annual hajj pilgrimage. 

According to the Haj Committee of India, not many are choosing Mangaluru as an embarkation point. Last year, although Mangaluru was notified as one of the embarkation points, the Union government removed it from the list at the last minute.

Several associations and organisations submitted memorandums to the Haj Committee of India, requesting the reinstatement of Mangaluru as one of the embarkation points, but their efforts have not materialised this year either.

The use of Mangaluru Airport as an embarkation point for the haj began in 2010. In 2019, 1,400 haj pilgrims flew from MIA to Saudi Arabia.

“When the number is less, it is difficult to consider it. It was the same issue as last year,” reacted AP Abdullakutty, chairman of the Haj Committee of India.
Mangaluru as an embarkation point served people from undivided Dakshina Kannada, Kodagu, Shivamogga, Uttara Kannada, and Chikkamagaluru districts.
Last year, the Muslim Central Committee of Dakshina Kannada and Udupi districts submitted a memorandum to Abdullakutty. They expressed their disappointment with Abdullakutty and stated that Mangaluru had a good number of applicants ever since it was identified as an embarkation point. 
Now, they have to travel to Bengaluru. 

UT Khader, speaker of the Karnataka legislative assembly, pointed out that several Union ministries are involved in the process of designating embarkation points for the haj.

“We are not sure why MIA as an embarkation point was removed. Is it because of fewer applications, or are airlines not willing to bid for MIA as an embarkation point? Is it only an issue with MIA as an embarkation point, or are there other airports in the country facing similar issues? We will try to find out and seek answers. Meanwhile, we will also start working at the earliest so that MIA is considered as an embarkation point for hajj next year,” said Khader.

Comments

Add new comment

About text formats
  • Coastaldigest.com reserves the right to delete or block any comments.
  • Coastaldigset.com is not responsible for its readers’ comments.
  • Comments that are abusive, incendiary or irrelevant are strictly prohibited.
  • Please use a genuine email ID and provide your name to avoid reject.