Targeting of the Indian power grid

Date of report

April 2022

Affiliations

Believed to be the work of the Chinese government

A Chinese state-sponsored threat actor targeted Indian power-grid organizations using ShadowPad malware. The actor intruded at least seven times into the networks of Indian State Load Despatch Centres, which oversee operations for grid control and electricity dispatch, particularly in North India. India claimed it had foiled the attack, while China denied it was behind the incident.

Suspected victims

Indian power-grid assets, a national emergency response system, and the Indian subsidiary of a multinational logistics company

Suspected state sponsor

Unknown

Type of incident

Espionage

Target category

Government
Private sector

Victim government reaction

Policy response

Confirmation

Suspected state sponsor response

Denial

Suspected Chinese hackers are targeting India's power grid
India Claims It Foiled Chinese Cyber-Attack on Disputed Border

Cyber Operations Tracker

CFR.org

Topics

Regions

Explainers

Research & Analysis

Communities

Events