March 05, 2024 17:36 (IST)
Follow us:
facebook-white sharing button
twitter-white sharing button
instagram-white sharing button
youtube-white sharing button
Calcutta HC transfers Sandeshkhali case to CBI | Former Calcutta HC judge Abhijit Ganguly announces his decision to join BJP | Telangana: PM Modi launches developmental projects worth Rs 7,200 Cr in Sangareddy | PM Modi says insecurity prevails in family-based political parties | Unwarranted: India slams UN Human Rights chief's 'concerns' ahead of Lok Sabha polls
Reports reveal nine Indian firms fell prey to Chinese hackers in 2021 Chinese Hackers
Representational image by Geralt on Pixabay

Reports reveal nine Indian firms fell prey to Chinese hackers in 2021

India Blooms News Service | @indiablooms | 02 Sep 2022, 09:27 pm

New Delhi: A recent research has revealed that at least nine Indian organisations fell prey to persistent cyber attacks by a state-sponsored Chinese hacker group in 2021.

The research data shared exclusively with Hindustan Times shows that a large quantity of sensitive data was hacked and stolen by the group from the targetted servers.

The hacker group, which has been active since at least 2007, is known by several names on the dark web, the most common being Winnti and Barium, reports the newspaper.

Officially, the cybersecurity community recognises it as APT41, where APT stands for Advanced Persistent Threat.

Earlier this year, Group-IB, a Singapore-based cybersecurity company, conducted detailed and focused research into APT41’s activities from January to December 2021.

The research report shows that India was among the biggest targets of APT41.

According to Group-IB’s report, an Indian airline and eight other Indian websites were targeted by the hacker group last year, with just one prize in the crosshairs data.

The research found that the websites were hacked using a method known as SQL injection, where malicious computer code is injected into a website to gain unauthorised access.

‘SQL’ is a programming language, called Structured Query Language, used in programming. Just as a good SQL command leads to productive results, malicious SQL injection leads to unauthorised access.

“With the help of SQL injections, the attackers managed to obtain various levels of access to several databases on the backend with information about credentials, phone numbers, emails of existing users, etc. APT41 also copied several files and managed to launch remote commands on compromised servers,” Nikita Rostovtsev, Threat Analyst at the Group-IB’s Advanced Persistent Threat Research Team, told HT.

Support Our Journalism

We cannot do without you.. your contribution supports unbiased journalism

IBNS is not driven by any ism- not wokeism, not racism, not skewed secularism, not hyper right-wing or left liberal ideals, nor by any hardline religious beliefs or hyper nationalism. We want to serve you good old objective news, as they are. We do not judge or preach. We let people decide for themselves. We only try to present factual and well-sourced news.

Support objective journalism for a small contribution.