Microsoft is alerting businesses to the dangers posed by the defunct Boa web server following reports that threat actors used the software’s vulnerabilities in an attack on the energy industry.
An Indian power grid’s operational assets were being targeted by a Chinese threat group in 2021, according to threat intelligence firm Recorded Future. The cybersecurity company released a fresh report in April 2022 that detailed assaults carried out against power sector organizations in India by a different state-sponsored threat actor from China. Several State Load Despatch Centers (SLDCs) in charge of grid control and electricity dispatch were among the targets.
Also Read: Strengthening Enterprise Cybersecurity to Combat Rising Cyber Attacks
These SLDCs have access to supervisory control and data acquisition (SCADA) systems, which help to maintain grid frequency and stability. Recorded Future shared a few indicators of compromise (IoCs) with organizations to help them spot potential intrusions when it published its report in April.
Read More: Microsoft Warns of Boa Web Server Risks After Hackers Target It in Power Grid Attacks
