Take the pledge to vote

For a better tommorow#AajSawaroApnaKal
  • I agree to receive emails from News18

  • I promise to vote in this year's elections no matter what the odds are.
  • Please check above checkbox.

    SUBMIT

Thank you for
taking the pledge

Vote responsibly as each vote counts
and makes a diffrence

Disclaimer:

Issued in public interest by HDFC Life. HDFC Life Insurance Company Limited (Formerly HDFC Standard Life Insurance Company Limited) (“HDFC Life”). CIN: L65110MH2000PLC128245, IRDAI Reg. No. 101 . The name/letters "HDFC" in the name/logo of the company belongs to Housing Development Finance Corporation Limited ("HDFC Limited") and is used by HDFC Life under an agreement entered into with HDFC Limited. ARN EU/04/19/13618
LIVE TV DownloadNews18 App
News18 English
Powered by cricketnext logo
News18 » India
2-min read

After Kudankulam Power Plant, ISRO Too Was Alerted of Cyber Security Breach by 'Dtrack'

This spyware later came to be identified as ‘Dtrack’, which is programmed to steal data and give the hacker or the ‘threat actor’ complete control over all the infected devices by exposing its credentials and passwords.

News18.com

Updated:November 6, 2019, 8:49 AM IST
facebookTwitter Pocket whatsapp
After Kudankulam Power Plant, ISRO Too Was Alerted of Cyber Security Breach by 'Dtrack'
Representative Image (Reuters)

Amid news of vehement cyber security threats raising doubts over a state-sponsored espionage on Indian institutions and individuals, a report now reveals that not just the Kudankulam Nuclear Power Project (KKNPP) of the Nuclear Power Corporation of India Limited (NPCIL), the Indian Space Research Organisation (ISRO), too, was alerted of a possible breach by a spyware.

According to an Indian Express report, the National Cyber Coordination Centre – a classified project set up in order to generate situational awareness of existing and potential cyber security threats – received intelligence from a US-based cybersecurity firm that a ‘threat actor’ had breached and intercepted the “domain controllers” at the KKNPP and at ISRO.

This spyware later came to be identified as ‘Dtrack’, which is programmed to steal data and give the hacker or the ‘threat actor’ complete control over all the infected devices by exposing its credentials and passwords.

Both NPCIL and ISRO were alerted on September 4, the report said.

On October 30, a day after the KKNPP denied any hacking of its control system, the Nuclear Power Corporation of India (NPCIL) confirmed the presence of malware in one of the computers. The nuclear corporation, however, added that the “systems are not affected” by the cyberattack. The breach at the Kudankulam plant became public on October 28 after some of the plant’s data showed up on virustotal.com, an online malware scanning service.

In a statement, NPCIL admitted there had been an infection “in the internet connected network used for administrative purposes” and that “the matter was immediately investigated by DAE specialists, but ensured that “investigation also confirms that the plant systems are not affected.”

But there has been no word from ISRO so far.

However, the Express report quoted sources to have confirmed that a multi-action team at ISRO jumped to action soon after the threat was received, about 100 hours ahead of its ambitious lunar landing mission of Chandrayaan 2, which subsequently failed.

After the breach at Kudankulam became public last week, Seoul-based non-profit IssueMakersLab, a cybersecurity firm of malware analysts claimed that they identified the malware as the same one that was used to infiltrate the South Korean military’s internal network in 2016.

Two days later, the organisation in a tweet posted an image “of the history of malware used by the North Korean hacker group B that hacked the Kudankulam” plant. It showed a 16-digit password used to “compress a list of files on an infected PC” as well as a MBR (master boot record) Wiper version of the malware.

Get the best of News18 delivered to your inbox - subscribe to News18 Daybreak. Follow News18.com on Twitter, Instagram, Facebook, Telegram, TikTok and on YouTube, and stay in the know with what's happening in the world around you – in real time.

Read full article
Next Story
Next Story

facebookTwitter Pocket whatsapp

Live TV

Countdown To Elections Results
To Assembly Elections 2018 Results