You must Register or Sign in to your Cyware account to perform this action
×Once you are logged in, you will be able to:
Customize your feeds by selecting categories you like
Comment on or Like an article
Receive the latest security stories, trends, and insights in your inbox
Build your profile and login across multiple devices
Bookmark a story and read it later
- Home
- Hacker News
- Breaches and Incidents
- Attackers breached Wipro employee accounts and IT systems to launch attacks against its clients
Attackers breached Wipro employee accounts and IT systems to launch attacks against its clients
Attackers breached Wipro employee accounts and IT systems to launch attacks against its clients- April 16, 2019
- |
- Breaches and Incidents
/https://cystory-images.s3.amazonaws.com/shutterstock_402658597.jpg "Attackers breached Wipro employee accounts and IT systems to launch attacks against its clients")
- Multiple anonymous sources suggest that the hacked employee accounts and IT systems are being used to launch attacks against some of the company’s clients.
- One source familiar with the forensic investigation revealed that at least 11 other companies were attacked, as evidenced from file folders found on the attackers’ back-end infrastructure that were named after various Wipro clients.
What is the issue - Indian IT services firm Wipro has disclosed today that some of its employee accounts might have been compromised due to an advanced phishing campaign.
Why it matters - Multiple anonymous sources suggest that the hacked employee accounts and IT systems are being used to launch attacks against some of the company’s clients.
The big picture
Anonymous sources said that the compromised IT systems were used to target at least a dozen Wipro customer systems. However, Wipro has not commented on this.
“We detected a potentially abnormal activity in a few employee accounts on our network due to an advanced phishing campaign,” Wipro told Reuters.
Upon learning about the employee accounts breach, the Indian IT firm has hired an independent forensic firm to assist in the investigation.
More companies targeted
However, one source familiar with the forensic investigation revealed that at least 11 other companies were attacked, as evidenced from file folders found on the attackers’ back-end infrastructure that were named after various Wipro clients.
Another trusted source told KrebsOnSecurity that Wipro is now creating a new private email network is now notifying the potentially affected clients about specific “indicators of compromise,” used by threat actors that might signify an attempted or successful intrusion.
“The other source said Wipro is now in the process of building out a new private email network because the intruders were thought to have compromised Wipro’s corporate email system for some time,” KrebsOnSecurity said in a blog.
- + Aware
Get such articles in your inbox
News
-
/https://cystory-images.s3.amazonaws.com/shutterstock_311055986.jpg)
Previous News ‘Gnosticplayers’ hacker returns with fifth dataset containing over 65 million user accounts for sale- April 16, 2019
- |
- Breaches and Incidents
/https://cystory-images.s3.amazonaws.com/shutterstock_611472605.jpg)
Popular News
/https://cystory-images.s3.amazonaws.com/shutterstock_423598096.jpg)
/https://cystory-images.s3.amazonaws.com/shutterstock_171257957.jpg)
/https://cystory-images.s3.amazonaws.com/shutterstock_302129432.jpg)
/https://cystory-images.s3.amazonaws.com/iStock_000083026757_Medium.jpg)
/https://cystory-images.s3.amazonaws.com/shutterstock_202780831.jpg)
Related News
-
/https://cyware-ent.s3.amazonaws.com/image_bank/shutterstock_178125287.jpg)
iNSYNQ Ransom Attack Began With Phishing Email- August 10, 2019
- |
- Breaches and Incidents
/https://cystory-images.s3.amazonaws.com/shutterstock_531057949.jpg)
Categories
Get such articles in your inbox
News
-
Previous News ‘Gnosticplayers’ hacker returns with fifth dataset containing over 65 million user accounts for sale
- April 16, 2019
- |
- Breaches and Incidents
Popular News
Related News
-
iNSYNQ Ransom Attack Began With Phishing Email
- August 10, 2019
- |
- Breaches and Incidents
Categories
