Wipro confirmed that its IT systems have been attacked recently

India is among most targeted countries where phishing attacks takes place, and Wipro Ltd, an Indian IT company, became the latest victim.

Wipro confirmed that its IT systems have been attacked. The Indian IT company said that it has hired independent forensics firm in order to assist in the investigation, after KrebsOnSecurity, the cybersecurity investigation website, reported that the hackers had compromised computer systems of Wipro Ltd. The KrebsOnSecurity report said that the attackers had used the employee accounts of Wipro to target the Wipro customers for several months.

The KrebsOnSecurity site reported that the IT services company headquartered in Bengaluru has been dealing a multi-month intrusion by the assumed state-sponsored attacker. The site further reported that systems of Wipro are seen being used for attacking several of its clients. However, Wipro denies knowing about this breach from months. Bhanumurthy BM, the COO of Wipro, claims that alerts were detected only a week ago.

Wipro said to Economic Times in a statement that "we detected a potentially abnormal activity in a few employee accounts on our network due to an advanced phishing campaign". Wipro further said to the Economic Times that after knowing about the incident, they began an investigation promptly, identified affected users, and then took remedial steps for containing and mitigating any potential impact. A spokesperson of Wipro added that as a standard practice, they also informed some of their customers.

The statement of Wipro also said that "we are leveraging our industry-leading cyber security practices and collaborating with our partner ecosystem to collect and monitor advanced threat intelligence for enhancing security posture. We have also retained a well-respected, independent forensic firm to assist us in the investigation".

Additionally KrebsOnSecurity reported that Wipro Ltd was building a 'new and latest private email network', as the intruders may have compromised the corporate email system of Wipro.

A spokesperson of Wipro said that 4.8 million alerts were received by them, which has been sent by Wipro's cybersecurity team on possible breaches in their systems during last fiscal year. The spokesperson further said that they will continue to monitor their infrastructure and enterprise with a higher level of alertness.

» SPAMfighter News - 5/7/2019