Tata Power Company Limited, a top power generation company in India, confirms it was hit by a cyberattack, although details remain scarce.
Tata confirms in a public statement to the National Stock Exchange (NSE) of India that a “cyberattack on [Tata Power Company Limited] IT infrastructure” has occurred, “impacting some of its IT systems.”
No further details of the cyberattack, including any impact to its customers or operational systems was provided in the public statement. Dates of the attack were not disclosed.
According to TechCrunch, Tata declined to acknowledge if any data was stolen.
“As stated in the Statement, the Company has taken steps to retrieve and restore the systems. All critical operational systems are functioning,” the Tata representative said.
Cybersecurity firm Recorded Future disclosed attacks in April, 2022 by Chinese aggressors, targeting critical infrastructure and power grid organizations in India.
The attacks were targeted at “seven Indian State Load Despatch Centres (SLDCs) responsible for carrying out real-time operations for grid control and electricity dispatch within these respective states.”
It’s entirely possible that the current cyberattack against Tata Power is more of a reconnaissance exercise by the hackers. No disruption to Tata Power customers has been publicly reported at this time, despite any official Tata statement.
Tata confirms in the public statement that more details will emerge as the situation evolves, but there was no estimate on an updated press release.
Critical infrastructure remains a top target amongst hacker groups, most recently in Ukraine.
