Moneycontrol PRO
Open App
you are here: HomeNewsTechnology

Cyber attacks on Indian oil companies run up to 3.6 lakhs in six months

The study was done as part of civil society group CyberPeace Foundation's eKawach program

April 24, 2022 / 07:52 AM IST
(Representative Image)

(Representative Image)

Indian oil companies faced 3.6 lakh cyberattacks in six months, a study conducted by CyberPeace Foundation, a civil society organisation, along with Autobot Infosec and CyberPeace Center of Excellence, has found.

One of the most noticeable and recent among these attacks, detected between October 2021 and April 12, 2022, was on Oil India Limited's (OIL) Assam headquarters.

The government-owned oil and gas extraction company reported the breach earlier this week. It also found a ransom note on one of the infected computers, demanding $7,500,000 (approximately Rs. 57 crore).

The study was part of the eKawach program of CyberPeace Foundation to implement a comprehensive threat intelligence network that could analyse and capture data on internet traffic, in real time.

Autobot Infosec is a cybersecurity consultancy, while CyberPeace Center of Excellence is a community-driven think tank.


Deploying the "simulated network" would allow them to collect data on, "attack patterns, different types of attack vectors" and gather useful information from the "recent malicious activities", CyberPeace Foundation spokesperson said in a statement to the press.

Also Read: Scams, memes and crazy money: Inside India’s buzzing crypto WhatsApp groups

The number of reported attacks grew to a staggering 3.6 lakhs within just six months. From the observed activity, October 2021 had 11,763 hits, in November, it climbed to 55,871, while December was relatively calmer at 20,714. January 2022 the breaches hit 52,598.

In February, 19,342 hits were recorded and they more than tripled in March to 69,998. April, too, could also accumulate big numbers as 23,833 hits had been reported by April 12.

The study said the threat actors mostly used FTP, HTTP, s7comm, Modbus, SNMP and BACnet as the attack vectors.

Also read: Insurers must brace for catastrophic cyber risk

An increase was also recorded in phishing, social- engineering attacks on organisations. The team also saw evidence of doctored WhatsApp messages that lured people with a fake offer from Indian Oil. The team found that the "offer" was hosted on a third-party server, different from the official domains.
Invite your friends and family to sign up for MC Tech 3, our daily newsletter that breaks down the biggest tech and startup stories of the day

Moneycontrol News
first published: Apr 23, 2022 02:06 pm
ISO 27001 - BSI Assurance Mark