New Delhi: In the world of cyber espionage, a lot of effort is expended to hide cyber tracks so that the identity of the attacker is masked. That is why, a few Indian cybersecurity experts believe North Korea may not be behind the October 28, 2019, cyberattack on the Kudankulam Nuclear Power Plant (KKNPP) in Tamil Nadu’s Tirunelveli district.
A former official of the National Technical Research Organisation (NTRO), India’s prime spy agency for providing technical intelligence on internal and external security, said deception and subterfuge is the name of the game in cyber espionage.
“In such a situation, what seems obvious may not be the reality. A prime concern of every attacker is to hide its footprints and also misguide and mislead. Even friendly countries spy and then try to hide their tracks,” he said on condition of anonymity.
Echoing the same line of thought, Muslim Koser, co-founder and head (Technology), Volon Cyber Security, told ETV Bharat: “There is a possibility North Korea might not be behind this attack, as widely speculated in the media and that Lazarus group might be behind this attack. Traditionally the motive of this group has been cybercrime or financial theft, where they have predominantly targeted financial institutions and big corporations, whereas, in Kudankulam, the motive is entirely different (more towards data/information theft), although of late they (Lazarus) have been touted as to move towards cyber espionage type of motivation. But still, there is no concrete evidence for the same.”
Volon is among India’s top private cybersecurity firms offering specialized solutions for corporates and governments to counter and combat cyber threat.
“Normally in cyber espionage, operational security to ensure it is not attributable as of paramount importance. In general, inexperienced groups always use same or similar TTP (tools, tactics, procedures) that make their work easily recognizable. But actors also try and re-use the infrastructure or TTP of other groups to misguide the attribution,” Koser adds.