India’s critical infrastructure is facing a considerable number of cyberattacks. The CyberPeace Foundation (CPF) and AutoBot Infosec Private Limited, in collaboration with the CyberPeace Center of Excellence (CCoE), presented on 22 April 2022 the results of an in-depth investigation into cyberattacks on oil refineries in India.
The researchers counted 3.6 million attempted cyberattacks between October 2021 and April 2022. The most attacked protocols were FTP, HTTP, s7comm, Modbus, SNMP, and BACnet.
The study also points to an increase in the number of phishing and social engineering attacks against Indian refineries or oil-related organisations.
Recently, a ransomware attack on Oil India’s headquarters in Dibrugarh, Assam, rendered all its ISs inoperable. The hackers reportedly demanded a ransom of US$75,000.
In addition, the CPF reports a spate of phishing WhatsApp messages, purporting to be sent by Oil India to offer discounts on fuel or to participate in a survey that could yield up to US$2,000.