Hive Ransomware Group Leaks Data from Tata Power Cyberattack

Tata Power, a subsidiary of the multinational conglomerate Tata Group and a leading power generation company in India, confirmed that it had suffered a cyberattack this month.

Now, it appears that the ransom negotiation failed as Hive ransomware group operators are seen leaking data they claimed to have stolen from the Mumbai-based company.

BlackCat Ransomware Gang Creates Websites Where Victims Can Check if Their Data was Stolen
JACK GUEZ / Getty Images

Tata Power Suffers Cyberattack from Hive Ransomware Group

Earlier this month, news about the cyberattack at Tata Power surfaced. The company's IT infrastructure and some of its IT systems were impacted by the attack.

In a statement earlier this month, the company said that it has "taken steps to retrieve and restore the systems."

"All critical operational systems are functioning. However, as a measure of abundant precaution, restricted access and preventive checks have been put in place for employee and customer-facing portals and touchpoints," stated the filing of Tata Power.

According to the leak site of Hive, the hackers obtained sensitive information on the company's employees, such as taxpayer's data, email and home addresses, passports, and phone numbers.

Corporate data including non-disclosure agreements (NDAs), contracts, and other company documents were also part of the data obtained by the hackers, as per CyberNews.

According to BleepingComputer, there are also financial and banking records, and engineering drawings, as well as client information in the leaked data.

On October 3, Hive ransomware group encrypted the data. On October 24, they posted the data on their leak site.

To force a victim into paying the ransom, a ransomware gang typically threatens to leak stolen data. In case of Tata Power, it seems that the company refused to pay the hackers that's why their data started appearing on the leak site.

Read Also: Conti Ransomware Gang May Be Dead, But It Spawned Smaller Operations

Tata Power Did Not Relay Further Information About the Cyberattack

During the earlier reports about the hack, Tata Power did not relay further information about the cyberattack.

According to TechCrunch, the company's PR representative did not give answers to questions about the nature of the attack. Likewise, the company is mummed on the impact of the attack on the company.

The PR representative just reiterated the company's earlier statement that it had taken the necessary steps to restore and retrieve the system.

Tata Power is generates, transmits, and retails electricity in India. The company hopes to increase its share of clean energy.

By 2045, the company targets a net zero. The company boasts that they have managed and installed a capacity of 13,974MW electricity generation. This is considered the highest in India.

Through its distributor companies, the company serves more than 12 million consumers. Moreover, the company wanted to expand its business in microgrids and rooftop solar, EV charging infrastructure, solar pumps, storage solutions, and home automation.

Tata Power is not the only victim of Hive ransomware group this year. In September, the hacking group claimed responsibility for the ransomware attack on a Bell Canada subsidiary and on New York Racing Association.

Last year, the group attacked the Memorial Health System. It had a drastic impact as surgical and diagnostic operations were cancelled. In addition, it resulted in patient data theft.

Related Article: A Bell Canada Subsidiary May Have Fallen Victim to a Hive Ransomware Attack

© 2024 iTech Post All rights reserved. Do not reproduce without permission.

More from iTechPost

Real Time Analytics