1. Home
  2. 'Amidst border tension, Chinese hackers targeted India’s power through malware'

'Amidst border tension, Chinese hackers targeted India’s power through malware'

Agencies
March 1, 2021

Amidst heightened border tension, Chinese hackers targeted India's power through malware: US firm | Law-Order

Washington, Mar 1: Amidst the tense border tension between India and China, a Chinese government-linked group of hackers targeted India's critical power grid system through malware, a US company has claimed in its latest study, raising suspicion whether last year's massive power outage in Mumbai was a result of the online intrusion.

Recorded Future, a Massachusetts-based company which studies the use of the internet by state actors, in its recent report details the campaign conducted by a China-linked threat activity group RedEcho targeting the Indian power sector.

The activity was identified through a combination of large-scale automated network traffic analytics and expert analysis.

Data sources include the Recorded Future Platform, SecurityTrails, Spur, Farsight and common open-source tools and techniques, the report said.

On October 12, a grid failure in Mumbai resulted in massive power outages, stopping trains on tracks, hampering those working from home amidst the COVID-19 pandemic and hitting the stuttering economic activity hard.

It took two hours for the power supply to resume for essential services, prompting Chief Minister Uddhav Thackeray to order an enquiry into the incident.

In its report, Recorded Future notified the appropriate Indian government departments prior to publication of the suspected intrusions to support incident response and remediation investigations within the impacted organisations.

There was no immediate response from the Indian government on the study by the US company.

Since early 2020, Recorded Future's Insikt Group observed a large increase in suspected targeted intrusion activity against Indian organisations from the Chinese state-sponsored group.

The New York Times, in a report, said that the discovery raises the question about whether the Mumbai outage was meant as a message from Beijing about what might happen if India pushed its border claims too vigorously.

According to the Recorded Future report, from mid-2020 onwards, Recorded Future's midpoint collection revealed a steep rise in the use of infrastructure tracked as AXIOMATICASYMPTOTE, which encompasses ShadowPad command and control (C2) servers, to target a large swathe of India's power sector.

Ten distinct Indian power sector organisations, including four of the five Regional Load Despatch Centres (RLDC) responsible for operation of the power grid through balancing electricity supply and demand, have been identified as targets in a concerted campaign against India's critical infrastructure.

Other targets identified included two Indian seaports, it said.

According to the report, the targeting of Indian critical infrastructure offers limited economic espionage opportunities.

However, we assess they pose significant concerns over potential pre-positioning of network access to support Chinese strategic objectives, it said.

Pre-positioning on energy assets may support several potential outcomes, including geostrategic signalling during heightened bilateral tensions, supporting influence operations, or as a precursor to kinetic escalation, Recorded Future said.

RedEcho has strong infrastructure and victimology overlaps with Chinese groups APT41/Barium and Tonto Team, while ShadowPad is used by at least five distinct Chinese groups, it said.

The high concentration of IPs (Internet Protocols) resolving to Indian critical infrastructure entities communicating over several months with a distinct subset of AXIOMATICASYMPTOTE servers used by RedEcho indicate a targeted campaign, with little evidence of wider targeting in Recorded Future's network telemetry, it said.

Recorded Future said that in the lead-up to the May 2020 border skirmishes, it observed a noticeable increase in the provisioning of PlugX malware C2 infrastructure, much of which was subsequently used in intrusion activity targeting Indian organisations.

The PlugX activity included the targeting of multiple Indian government, public sector and defence organisations from at least May 2020, it said.

While not unique to Chinese cyber espionage activity, PlugX has been heavily used by China-nexus groups for many years.

Throughout the remainder of 2020, we identified a heavy focus on the targeting of Indian government and private sector organisations by multiple Chinese state-sponsored threat activity groups, it said.

In its report, Recorder Future alleged that it also observed the suspected Indian state-sponsored group Sidewinder target Chinese military and government entities in 2020, in activity overlapping with recent Trend Micro research.

The Massachusetts-based company's report came as the armies of the two countries began disengagement of troops locked in over eight-month-long standoff in eastern Ladakh.

Both countries reached a mutual agreement last month for the disengagement of troops from the most contentious area of North and South banks of the Pangong Lake.

Comments

Add new comment

About text formats
  • Coastaldigest.com reserves the right to delete or block any comments.
  • Coastaldigset.com is not responsible for its readers’ comments.
  • Comments that are abusive, incendiary or irrelevant are strictly prohibited.
  • Please use a genuine email ID and provide your name to avoid reject.
News Network
January 23,2026

Karnataka Governor Thaawarchand Gehlot read only three lines from the 122-paragraph address prepared by the Congress-led state government while addressing the joint session of the Legislature on Thursday, effectively bypassing large sections critical of the BJP-led Union government.

The omitted portions of the customary Governor’s address outlined what the state government described as a “suppressive situation in economic and policy matters” under India’s federal framework. The speech also sharply criticised the Centre’s move to replace the Mahatma Gandhi National Rural Employment Guarantee Act (MGNREGA) with the Viksit Bharat–Guarantee for Rozgar and Ajeevika Mission (Gramin) Act, commonly referred to as the VB-GRAM (G) Act.

Governor Gehlot had earlier conveyed his objection to several paragraphs that were explicitly critical of the Union government. On Thursday, he confined himself to the opening lines — “I extend a warm welcome to all of you to the joint session of the State legislature. I am extremely pleased to address this august House” — before jumping directly to the concluding sentence of the final paragraph.

He ended the address by reading the last line of paragraph 122: “Overall, my government is firmly committed to doubling the pace of the State’s economic, social and physical development. Jai Hind — Jai Karnataka.”

According to the prepared speech, the Karnataka government demanded the scrapping of the VB-GRAM (G) Act, describing it as “contractor-centric” and detrimental to rural livelihoods, and called for the full restoration of MGNREGA. The state government argued that the new law undermines decentralisation, weakens labour protections, and centralises decision-making in violation of constitutional norms.

Key points from the unread sections of the speech:

•    Karnataka facing a “suppressive” economic and policy environment within the federal system

•    Repeal of MGNREGA described as a blow to rural livelihoods

•    VB-GRAM (G) Act accused of protecting corporate and contractor interests

•    New law alleged to weaken decentralised governance

•    Decision-making said to be imposed by the Centre without consulting states

•    Rights of Adivasis, women, backward classes and agrarian communities curtailed

•    Labourers allegedly placed under contractor control

•    States facing mounting fiscal stress due to central policies

•    VB-GRAM (G) Act accused of enabling large-scale corruption

Comments

Add new comment

About text formats
  • Coastaldigest.com reserves the right to delete or block any comments.
  • Coastaldigset.com is not responsible for its readers’ comments.
  • Comments that are abusive, incendiary or irrelevant are strictly prohibited.
  • Please use a genuine email ID and provide your name to avoid reject.
News Network
February 1,2026

Bengaluru: The Karnataka High Court has refused to quash an investigation against a WhatsApp group administrator accused of allowing the circulation of obscene and offensive images depicting Hindutva politicians and idols in 2021.

Justice M Nagaprasanna observed that, prima facie, the ingredients of the offence under Section 295A of the Indian Penal Code were made out. “The offence under Section 295A of the IPC is met to every word of its ingredient, albeit prima facie,” the judge said.

The petitioner, Sirajuddin, a resident of Belthangady taluk in Dakshina Kannada district, had challenged the FIR registered against him at the CEN (Cyber, Economics and Narcotics) police station, Mangaluru, for offences under Section 295A of the IPC and Section 67 of the Information Technology Act. Section 295A relates to punishment for deliberate and malicious acts intended to outrage the religious feelings of any class of citizens.

According to the complaint filed by K Jayaraj Salian, also a resident of Belthangady taluk, he received a WhatsApp group link from an unknown source and was added to the group after accessing it. The group reportedly had six administrators and around 250 participants, where obscene and offensive images depicting Hindu deities and certain political figures were allegedly circulated repeatedly.

Sirajuddin was arrested in connection with the case and later released on bail on February 16, 2021. He argued before the court that he was being selectively targeted, while other administrators—including the creator of the group—were neither arrested nor investigated. He also contended that the Magistrate could not have taken cognisance of the offence under Section 295A without prior sanction under Section 196(1) of the CrPC.

Rejecting the argument, Justice Nagaprasanna held that prior sanction is required only at the stage of taking cognisance, and not at the stage of registration of the crime or during investigation.

The judge noted that the State had produced the entire investigation material before the court. “A perusal of the material reveals depictions of Hindu deities in an extraordinarily obscene, demeaning and profane manner. The content is such that its reproduction in a judicial order would itself be inappropriate,” the court said, adding that the material, on its face, had the tendency to outrage religious feelings and disturb communal harmony.

Observing that the case was still at the investigation stage, the court said it could not interdict the probe at this juncture. However, it expressed concern that the investigating officer appeared to have not proceeded uniformly against all administrators. The court clarified that if the investigation revealed the active involvement of any member in permitting the circulation of such content, they must also be proceeded against.

“At this investigative stage, any further observation by this Court would be unnecessary,” the order concluded.

Comments

Add new comment

About text formats
  • Coastaldigest.com reserves the right to delete or block any comments.
  • Coastaldigset.com is not responsible for its readers’ comments.
  • Comments that are abusive, incendiary or irrelevant are strictly prohibited.
  • Please use a genuine email ID and provide your name to avoid reject.
News Network
January 31,2026

files.jpg

A fresh cache of files related to the investigation into the late convicted sex offender Jeffrey Epstein contains documents that reference President Donald Trump and other high-profile figures including Microsoft co-founder Bill Gates, Commerce Secretary Howard Lutnick and British billionaire Richard Branson.

Here are key details about mentions of the celebrities, none of whom have been accused of wrongdoing:

Donald Trump

The files included an FBI-compiled list of sexual assault allegations related to President Donald Trump -- many of them involving anonymous callers and unverified tips.

The allegations -- some secondhand -- were sent to the FBI's National Threat Operations Center which receives information by phone and electronically.

The document suggests that investigators followed up on a number of the tips. Some were deemed to lack credibility.

Trump has long denied any wrongdoing related to Epstein.

In a statement accompanying Friday's file dump, the Justice Department said: "Some of the documents contain untrue and sensationalist claims against President Trump that were submitted to the FBI right before the 2020 election. To be clear, the claims are unfounded and false."

Bill Gates

In a draft email among the documents, Epstein alleged Gates had engaged in extramarital affairs.

In the mail, Epstein wrote that his relationship with Gates had ranged from "helping Bill to get drugs, in order to deal with consequences of sex with russian girls, to facilitating his illicit trysts, with married women."

Richard Branson

Files show friendly relations between the two billionaires.

In an email sent to Epstein on Sept 11, 2013, Branson wrote "It was really nice seeing you yesterday. The boys in Watersports can't stop speaking about it! Any time you're in the area would love to see you. As long as you bring your harem!"

Elon Musk

The files contain numerous mail exchanges between Epstein and billionaire entrepreneur Elon Musk.

In November 2012, Epstein sent Musk an email asking "how many people will you be for the heli to island."

"Probably just Talulah and me. What day/night will be the wildest party on your island?" Musk replied.

Andrew Mountbatten-Windsor

The disgraced former prince invited Epstein to visit him at Buckingham Palace in September 2010 while the financier was making a trip to London.

An email exchange shows Epstein contacting Andrew to ask: "What time would you like me... we will also need... private time."

Andrew replied: "we could have dinner at Buckingham Palace and lots of privacy."

Howard Lutnick

Emails show that Epstein and businessman Lutnick -- currently Trump's commerce secretary -- made plans in December 2012 to lunch on Epstein's Caribbean island.

"We are heading towards you from St. Thomas" Lutnick's wife wrote to Epstein's secretary, asking where they should anchor.

Steve Tisch

Several mails suggested Epstein connected Steve Tisch, 76, producer of the movies "Forrest Gump" and "Risky Business" and the co-owner of the New York Giants football team, with multiple women.

In one exchange with Tisch, Epstein describes a woman as "russian, and rarely tells the full truth, but fun."

Zohran Mamdani's Mother, Filmmaker Mira Nair 

New York City Mayor Zohran Mamdani's mother, Mira Nair, attended an afterparty at convicted sex trafficker Ghislaine Maxwell's house for her 2009 film "Amelia", reveals a new set of Epstein files.

An email dated October 21, 2009, sent by publicist Peggy Siegal to Jeffrey Epstein, also surfaced in documents. The email, sent in the early hours, right after Siegal left the gathering, gives an insight into the afterparty. 

The party was also attended by former President Bill Clinton and Amazon CEO Jeff Bezos.

"Just left Ghislaine's townhouse...after party for film. Bill Clinton and Jeff Bezos were there...Jean Pigoni, director Mira Nair....etc," the email read.

The email described the reaction of guests to Nair's film as "tepid."

"Film received tepid reaction although women like it much more...Hillary Swank and Gen: at stupid party in Bloomingdales cheap sportwear department....very weird. Studio went for free party from store and windows for a month....Going to be in Wall Street 2 tomorrow ....more to come. xoxo Peg," the email read.

Comments

Add new comment

About text formats
  • Coastaldigest.com reserves the right to delete or block any comments.
  • Coastaldigset.com is not responsible for its readers’ comments.
  • Comments that are abusive, incendiary or irrelevant are strictly prohibited.
  • Please use a genuine email ID and provide your name to avoid reject.