Wipro confirms advanced phishing attack, launches investigation
Wipro, India’s fourth largest IT services exporter, faced an advanced phishing attack on its IT systems on Tuesday. The IT major sought the assistance of an independent forensic firm to assist with an investigation into the hacking.
A statement from Wipro Limited said, “We detected a potentially abnormal activity in a few employee accounts on our network due to an advanced phishing campaign. Upon learning of the incident, we promptly began an investigation, identified the affected users, and took remedial steps to contain and mitigate any potential impact."
Wipro said it was also leveraging its industry-leading cybersecurity practices and collaborating with their partner ecosystem to collect and monitor advanced threat intelligence for enhancing security posture.
“We have also retained a well-respected, independent forensic firm to assist us in the investigation. We continue to monitor our enterprise and infrastructure at a heightened level of alertness,” the statement said.
The breach in the IT systems of Wipro was reported by KrebsOnSecurity, a cybersecurity portal. According to this site, Wipro was dealing with multi-month intrusion from an assumed state-sponsored attacker and that its systems were seen being used as jumping-off points for digital fishing expeditions targeting at least a dozen Wipro customer systems.
According to the portal, Wipro was building a new private email network as the company believed that the attackers had breached their email system.
Wipro also announced its results on Tuesday with a 37.74 per cent year-on-year (YoY) growth in consolidated net profit at Rs 2,483 crore for the fourth quarter ended March 31, 2018. The consolidated revenue of the company rose 8.98 per cent to Rs 15,006.30 crore in the March quarter from Rs 13,768.60 crore in the year-ago period, helped by 11.1 per cent growth in the IT services business.
Also read: Top 5 cybersecurity predictions for 2019