A nefarious threat actor named Gernesia Team has claimed to have carried out a DDoS attack against the Nuclear Power Corporation of India Limited. The Indonesia-based cybercriminal group has posted a screenshot on the dark web that shows that the website was inaccessible after the NPCIL cyberattack.
The Cyber Express has reached out to the NPCIL to verify the DDoS attack claims made by the Garnesia Team, but an official response is currently unavailable.
NPCIL Cyberattack
Garnesia Team has claimed that the website of NPCIL has been “HACKED” by an individual named “Mr.x0x0” who is a member of “C.O.A GARNESIA TEAM”.
The screenshot posted by the threat actor claims that the NPCIL cyberattack was caused by RaaS Malware targeting the “Indian Nuclear Office. Not many details are available about the damage caused by the cyberattack claimed by the Garnesia Team.
The Cyber Express team attempted to access the NPCIL website on our systems to verify reports of inaccessibility but found the website to be fully functional.
About Garnesia Team
Garnesia Team is a hacker collective that has targeted Indian Government websites on multiple occasions including the latest claims of NPCIL cyberattack. MasRizkul founded the group on June 26, 2023, which has its headquarters in Indonesia.
On October 14, 2023, the group declared that it would launch a campaign known as “OpIndia” and target Indian infrastructure, reported India Today. Garnesia Team has attacked Indian government websites using denial-of-service attacks.
Additionally, Garnesia Team is responsible for the cyberattack that targeted the French Ministry of Justice.
About NPCIL
Nuclear Power Corporation of India Limited or NPCIL is a Public Sector Unit controlled by the Department of Atomic Energy of the Indian Government. In September 1987, NPCIL was incorporated as a Public Limited Company under the Companies Act, 1956, with the aim of running atomic power plants and executing atomic power projects to generate electricity in compliance with the Government of India’s schemes and programs under the Atomic Energy Act, 1962.
Currently, 23 commercial nuclear power reactors with a 7480 MW installed capacity are run by NPCIL. The reactor fleet consists of two Boiling Water Reactors (BWRs), nineteen Pressurized Heavy Water Reactors (PHWRs)—of which two VVER reactors with a capacity of 1000 MW each are owned by the Government of India’s DAE—and one 100 MW PHWR located in Rajasthan. On June 30, 2023, Kakrapar Atomic Power Project (KAPP) Unit 3 went into commercial operation. Nine more reactors with a combined capacity of 7,500 MW are being built by NPCIL.
Impact of the Alleged NPCIL DDoS Attack
A Distributed Denial of Service (DDoS) attack can have several impacts like: degraded network connectivity, increased website loading time, crashed servers, degraded critical services and reduced productivity, reputational damage, financial losses, and more.
A DDoS attack’s primary objective is to stop the target from using their resources. Employees might not be able to access network resources during an assault. Customers may not be able to make purchases from eCommerce sites or receive support.
Depending on the attack’s magnitude, a DDoS attack may have different effects. In the worst situation, businesses might lose upto $20,000 per hour.
Incidents like the NPCIL cyberattack claimed by the Garnesia Team are a stark reminder of the vulnerable state of cybersecurity in both government and non-government organizations.
Media Disclaimer: This report is based on internal and external research obtained through various means. The information provided is for reference purposes only, and users bear full responsibility for their reliance on it. The Cyber Express assumes no liability for the accuracy or consequences of using this information.
