Outsourcing and Advisory Giant of Indian Information Technology (IT) Wipro Ltd. [NYSE:WIT] is investigating reports that its own IT systems have been hacked and used for attacks on some of the company's customers, as KrebsOnSecurity claims in several sources. Wipro has refused to answer questions about the alleged incident.
Earlier this month, independently of two trusted sources, KrebsOnSecurity had learned that Wipro, India's third-largest IT outsourcing company, was struggling with several months of a suspected state invasion. sponsored attacker.
Both sources, on the condition of anonymity, said that Wipro's systems were seen as starting points for digital fishing expeditions targeting at least a dozen Wipro customer systems, attributing malicious and suspicious network intelligence activities to partner systems directly linked to the Wipro network communicated.
On April 9, KrebsOnSecurity contacted Wipro to comment. Subsequently, on 1
On Friday, April 12, Nair sent a statement acknowledging none of the questions Wipro had asked about attacks on an alleged security incident against his own customers.
"Wipro has a multi-layered security system," the company wrote. "The company has robust internal processes and a sophisticated security technology system to detect phishing attempts and protect against such attacks. We constantly monitor our entire infrastructure with increased alertness to deal with potential cyber threats. "
Wipro has not responded to several additional requests for comments. Since then, two other sources have gained knowledge of the investigation to confirm the outlines of the incident described above:
A source familiar with the forensic investigation at a Wipro customer stated, at least 11 Other companies were attacked, as evidenced by folders in the backend infrastructure of the intruders named after various Wipro clients. This source declined to name the other customers.
The other source stated that Wipro is building a new private email network because the intruders have for some time endangered Wipro's proprietary email system. The source also said Wipro told worried customers about specific "compromise" indicators, telltale clues about tactics, tools and procedures used by the bad guys that might indicate an attempted or successful attack.
Wipro says there are over 170,000 employees helping customers on six continents with Fortune 500 customers in healthcare, banking, communications and other industries. In March 2018, Wipro announced that the $ 8 billion mark in its annual revenue from IT services was exceeded.
The obvious offense comes from a changing fortune at Wipro. On March 5, the state of Nebraska abruptly canceled a contract with Wipro after spending $ 6 million on the company. In September 2018, the Nebraska Department of Health and Human Services issued a letter of discontinuance to Wipro requesting that it cease its work on upgrading the Medicaid state registration system and leaving state offices. Wipro is now suing Nebraska, saying his project was on schedule and on budget.
In August 2018, Wipro paid $ 75 million to file a lawsuit over a botched SAP implementation that allegedly cost the US power grid hundreds of millions of dollars
Another curious, if fortuitous, development: Am April 4, 2019, the Indian government sold "enemy" shares in Wipro worth about 166 million US dollars. According to this article in The Business Standard enemy units are so named because they were originally held by persons who had emigrated to Pakistan or China and are no longer Indian citizens.
"A total of 44.4 million shares owned by the Custodian of Enemy Property for India were sold at Rs. 259 per share on the Bombay Stock Exchange," reported The Business Standard. "The buyers were the state-owned Life Insurance Corporation of India (LIC), New India Assurance and the General Insurance Corporation. LIC "
Wipro is expected to announce the fourth quarter earnings report on Tuesday, April 16 (PDF).
Tags: Data breach at Wipro
You can jump to the end and leave a comment. Ping is currently not allowed.