Tata Power, one of the most famous and prominent Electric Power Distribution Company has also not been left from the prominent attacks been going on in the cyber world nowadays. A group of ransomware, called Hive has taken the responsibility of attacking the Tata Power Company in this month.
An ancillary of the Multinational Tata Group Company. Tata Power is India’s one of the biggest combined power-based companies situated in Mumbai.
Sources from twitter shared screenshots demostrating Hive operators have used from Tata Power showing that the ransom arbitration failed.
A few days ago only the operators of the Hive ransomware group are active in leaking Tata Power’s stolen data on their site.
Dominic Alveri, the cybersecurity analyst and researcher, recently tweeted about all the developments going on.
Rakesh Krishnan, another researcher also shared some screenshots, which show the stolen data allegedly of the Tata Power employees’ data. This includes the National ID(Aadhar Card) details, personally identifiable information(PII), salary details, PAN card details, etc.
The data artifacts also contain engineering drawings, financial details, and banking information of the client as well as employees, including some other client details.
The Hive operators have claimed that they had started encrypting Tata Power’s data from 3rd October. Following this on 14th October, Tata Power announced that its IT department has been attacked and some of its data have been mishandled. It didn’t mention the site of the threat actor, to where he carried out the attacks.
After this Tata Power announced that it has taken steps to fetch the system back to its original place. While amid this all the critical systems of Tata Power are operating properly. However, after this incident, the company has put up restricted access to all its linked sites. Also, some defensive checkpoints are kept at the nodes which require customer and company employee interactions online. A Company filing stated this, which was signed by the company secretary H.M.Mistry.
History of Hive Ransomware
Hive Ransomware is far more active than it’s seen in the case of Tata Power. It has a record of attacking an average of three companies per day, since it has been popular since June 2021.
This group uses a wide range of tactics and ways to hack the systems. All these make the companies difficult to recognize and prevent such attacks, it has been earlier stated by the FBI.
Last year Hive attacked the Memorial Health System and this left to the cancellation of diagnostic operations and surgeries. All the patient data were stolen in this act.
For more such technical news and articles stay tuned to cybermetrics.eu .