This website uses cookies primarily for visitor analytics. Certain pages will ask you to fill in contact details to receive additional information. On these pages you have the option of having the site log your details for future visits. Indicating you want the site to remember your details will place a cookie on your device. To view our full cookie policy, please click here. You can also view it at any time by going to our Contact Us page.

Indian nuclear power plant detects cyber attack

01 November 2019

The state-run Nuclear Power Corp of India Ltd (NPCIL) confirmed on October 30 that it had suffered a cyber attack. The hack occurred at the Kudankulam plant, the country’s newest nuclear power plant, in the state of Tamil Nadu in the south of the country.

Kudankulam Nuclear Power Plant - Image: Wikimedia /
Kudankulam Nuclear Power Plant - Image: Wikimedia /

Cyber experts had warned NPCIL that its systems had been compromised as early as September 4, however the utility has rejected these reports and said the malware was isolated from its critical networks and did not impact its systems.

In a statement, NPCIL said that it had detected malware designed for data extraction on one computer in early September. “The investigation revealed that the infected PC belonged to a user who was connected in the internet network used for administrative purposes. This is isolated from the critical internal network,” the statement said. “The networks are being continuously monitored. Investigation also confirms that the plant systems are not affected.”

The malware, known as DTrack, has been used previously by the Lazarus Group, a hacking group with links to North Korea. The malware was used to steal financial data of millions of Indians as well as against Hitachi Payments Services, a private operator of ATMs across the country. 

NPCIL designs, constructs and runs power reactors across India, currently operating 22 commercial nuclear power reactors.

Print this page | E-mail this page