Categories: India

China hackers target Serum Institute, Bharat Biotech IT systems to steal vaccine data

<p>
A Chinese state-backed hacking group has in recent weeks targeted the IT systems of Indian Covid vaccine makers Serum Institute of India and Bharat Biotech with the aim of stealing research data, according to cyber intelligence firm Cyfirma.</p>
<p>
Chinese hacking group APT10, also known as Stone Panda, had identified gaps and vulnerabilities in the IT infrastructure and supply chain software of Bharat Biotech and the Serum Institute of India (SII), the world’s largest vaccine maker, states the report titled "Threat Landscape for Pharmaceutical Companies."</p>
<p>
Goldman Sachs-backed Cyfirma, based in Singapore and Tokyo with large operations in Bengaluru, said the cyber attacks were aimed at stealing Covid vaccine research data, patient info, clinical trials data, supply chain and vaccine production information.<br />
<br />
"The healthcare industry, and particularly, pharmaceutical companies, has been thrust directly under global spotlight. While the world stumbles in its search for recovery, cybercriminals lurking in the dark web have seized the global event to profit from the climate of fear and uncertainty," the report states.</p>
<p>
India has shot ahead of China at the world centre stage in vaccine making and a desperate  Beijing appears to be out to change this situation.</p>
<p>
 “The real motivation here is actually exfiltrating intellectual property and getting competitive advantage over Indian pharmaceutical companies,” said Cyfirma Chief Executive Kumar Ritesh told Reuters.</p>
<p>
Ritesh, a former top cyber official with British foreign intelligence agency MI6, said APT10 was actively targeting SII, which is making the AstraZeneca vaccine for many countries and will soon start bulk-manufacturing Novavax shots.</p>
<p>
“In the case of Serum Institute, they have found a number of their public servers running weak web servers, these are vulnerable web servers,” Ritesh said, referring to the hackers.</p>
<p>
 “They have spoken about weak web application, they are also talking about weak content-management system. It’s quite alarming.”</p>
<p>
Cyfirma said in a statement it had informed CERT authorities and that they had acknowledged the threat.</p>
<p>
The office of the director-general of the state-run Indian Computer Emergency Response Team (CERT) said the matter had been handed to its operations director, S.S. Sarma.</p>
<p>
Sarma told Reuters CERT was a “legal agency and we can’t confirm this thing to media”.</p>
<p>
Ritesh, whose firm follows the activities of some 750 cyber criminals and monitors nearly 2,000 hacking campaigns using a tool called DeCYFIR, said it was not yet clear what information APT10 may have accessed from the Indian companies.</p>
<p>
According to the U.S. Department of Justice APT10 has been acting in association with the Chinese Ministry of State Security.</p>
<p>
The development comes at a time when a new study in the US has concluded that the huge power failure in Mumbai that took place in October last year disrupting normal life in India’s commercial capital was caused by Chinese state-sponsored hackers who planted malware in the power control systems.</p>
<p>
According to a report in the New York Times, the study shows that as the military face-off continued in Ladakh, Chinese malware was flowing into the control systems that manage electric supply across India, along with a high-voltage transmission substation and a coal-fired power plant. </p>
<p>
The flow of malware was pieced together by Recorded Future, a US company that studies the use of the internet by state actors.</p>
<p>
The massive power failure in Mumbai had brought local trains to halt and the stock markets had to be shut while hospitals were forced to switch to emergency generators to keep ventilators running amid the surge in coronavirus.  </p>

IN Bureau

Recent Posts

Protests erupt across PoGB over Kurram attack, shia community seeks justice

Protest demonstrations broke out across different areas of Pakistan-occupied Gilgit-Baltistan after Friday prayers, with thousands…

3 hours ago

UKPNP Slams Pakistan’s Unconstitutional Presidential Order in PoJK

Jamil Maqsood, the President of the Foreign Affairs Committee of the United Kashmir People's National…

6 hours ago

Meeting of ASEAN-India Trade in Goods Agreement committee concludes in Delhi

The 6th meeting of the ASEAN-India Trade in Goods Agreement (AITIGA) Joint Committee concluded in…

7 hours ago

US adds 29 Chinese firms to Uyghur Forced Labor Prevention Act Entity list

The US Department of Homeland Security (DHS), on behalf of the Forced Labor Enforcement Task…

7 hours ago

Tibetan Parliament-in-Exile calls for UK’s action on China’s Abuses

A delegation from the Tibetan Parliament-in-Exile (TPiE), led by Speaker Khenpo Sonam Tenphel and accompanied…

8 hours ago

Indian Dornier 228 aircraft flypast on the sidelines of India-CARICOM Summit

On the sidelines of the 2nd India-CARICOM Summit, leaders of the member countries witnessed a…

8 hours ago