COVID-19 Vaccine Makers Serum Institute of India, Bharat Biotech Targeted by Chinese Hackers: Cyfirma


2021-03-01 15:40:42

A Chinese state-backed hacking group has in recent weeks targeted the IT systems of two Indian vaccine makers whose coronavirus shots are being used in the country’s immunisation campaign, cyber intelligence firm Cyfirma told Reuters. India produces more than 60 percent of all vaccines sold in the world. Goldman Sachs-backed Cyfirma, based in Singapore and Tokyo, said Chinese hacking group APT10, also known as Stone Panda, had identified gaps and vulnerabilities in the IT infrastructure and supply chain software of Bharat Biotech and the Serum Institute of India (SII), the world’s largest vaccine maker.

“The real motivation here is actually exfiltrating intellectual property and getting competitive advantage over Indian pharmaceutical companies,” said Cyfirma Chief Executive Kumar Ritesh, formerly a top cyber official with British foreign intelligence agency MI6. He said APT10 was actively targeting SII, which is making the AstraZeneca vaccine for many countries and will soon start bulk-manufacturing Novavax shots.

“In the case of Serum Institute, they have found a number of their public servers running weak web servers, these are vulnerable web servers,” Ritesh said, referring to the hackers. “They have spoken about weak web application, they are also talking about weak content-management system. It’s quite alarming.”

China’s foreign ministry did not reply to a request for comment. SII and Bharat Biotech declined to comment.

The office of the director-general of the state-run Indian Computer Emergency Response Team (CERT) said the matter had been handed to its operations director, S.S Sarma. Sarma told Reuters CERT was a “legal agency and we can’t confirm this thing to media”. Cyfirma said in a statement it had informed CERT authorities and that they had acknowledged the threat. “They checked and they came back,” Cyfirma said.

“Our technical analysis and evaluation verified the threats and attacks.”

The US Department of Justice said in 2018 that APT10 had acted in association with the Chinese Ministry of State Security. Microsoft said in November that it had detected cyberattacks from Russia and North Korea targeting COVID-19 vaccine companies in India, Canada, France, South Korea, and the US.

North Korean hackers also tried to break into the systems of British drugmaker AstraZeneca, Reuters has reported. Ritesh, whose firm follows the activities of some 750 cyber criminals and monitors nearly 2,000 hacking campaigns using a tool called DeCYFIR, said it was not yet clear what vaccine-related information APT10 may have accessed from the Indian companies. Bharat Biotech’s Covaxin shot, developed with the state-run Indian Council of Medical Research, will be exported to many countries, including Brazil and the US.

Drugmaker Pfizer Inc and its German partner BioNTech SE said in December that documents related to development of their COVID-19 vaccine had been “unlawfully accessed” in a cyberattack on Europe’s medicines regulator.


Should the government explain why Chinese apps were banned? We discussed this on Orbital, our weekly technology podcast, which you can subscribe to via Apple Podcasts, Google Podcasts, or RSS, download the episode, or just hit the play button below.



Source link

74 Comments

  1. JbvdGroom March 1, 2021
  2. LabdGroom March 1, 2021
  3. KgooEvows March 1, 2021
  4. WesleyUtiff March 6, 2021
  5. Randyabemi March 8, 2021
  6. Michaelhom March 8, 2021
  7. Randyabemi March 9, 2021
  8. Michaelhom March 9, 2021
  9. Michaelhom March 10, 2021
  10. Wayneweday March 11, 2021
  11. JeffreyGog March 11, 2021
  12. Wayneweday March 12, 2021
  13. Wayneweday March 13, 2021
  14. JeffreyGog March 13, 2021
  15. Wayneweday March 14, 2021
  16. JeffreyGog March 14, 2021
  17. Wayneweday March 15, 2021
  18. JeffreyGog March 15, 2021
  19. Ricardomus March 16, 2021
  20. Stanleycak March 16, 2021
  21. Ricardomus March 17, 2021
  22. Stanleycak March 17, 2021
  23. Ricardomus March 18, 2021
  24. ThomasHaf March 18, 2021
  25. Ricardomus March 19, 2021
  26. ThomasHaf March 19, 2021
  27. Ricardomus March 20, 2021
  28. ThomasHaf March 20, 2021
  29. MarvinHag March 22, 2021
  30. ElmerJearo March 22, 2021
  31. MarvinHag March 23, 2021
  32. ElmerJearo March 24, 2021
  33. MarvinHag March 25, 2021
  34. Jasoncok March 26, 2021
  35. MarvinHag March 26, 2021
  36. Jasoncok March 27, 2021
  37. MarvinHag March 28, 2021
  38. MarvinHag March 28, 2021
  39. fblink88vn March 30, 2021
  40. VictorJonge March 30, 2021
  41. Scottrhync March 30, 2021
  42. VictorJonge March 31, 2021
  43. Scottrhync March 31, 2021
  44. Frankhem April 2, 2021
  45. Scottrhync April 2, 2021
  46. Frankhem April 3, 2021
  47. Scottrhync April 3, 2021
  48. Charlesget April 5, 2021
  49. Stevenstazy April 5, 2021
  50. Charlesget April 6, 2021
  51. Stevenstazy April 6, 2021
  52. Alfredted April 7, 2021
  53. BillyViz April 7, 2021
  54. free adult dating April 8, 2021
  55. Alfredted April 8, 2021
  56. BillyViz April 9, 2021
  57. HarryShife April 10, 2021
  58. JamesBrivy April 10, 2021
  59. HarryShife April 11, 2021
  60. Timothyjak April 11, 2021
  61. JamesBrivy April 12, 2021
  62. Timothyjak April 12, 2021
  63. http://paydayloanusaone.com April 12, 2021
  64. Robertovob April 14, 2021
  65. JamesBrivy April 15, 2021
  66. Robertovob April 15, 2021
  67. Robertovob April 16, 2021
  68. JamesBrivy April 16, 2021
  69. Robertovob April 17, 2021
  70. Rafaelweilk April 18, 2021
  71. Roberttoike April 18, 2021
  72. Rafaelweilk April 18, 2021
  73. Roberttoike April 19, 2021
  74. Rafaelweilk April 19, 2021

Leave a Reply