Major Indian tech firm Tata Technologies has confirmed it suffered a ransomware attack that forced it to take a number of its IT systems offline.
A subsidiary of major automobile manufacturer Tata Motors, Tata Technologies provides engineering and digital services to a range of manufacturers in the automotive, aerospace, and industrial machinery industries.
In an official statement provided to the Indian Stock Exchange on 31 January 2025, the company said the attack affected “a few of our IT assets”, forcing it to temporarily suspend some of its services as a precautionary measure.
The statement added that these services have now been restored, and Tata Technologies’ client delivery services were unaffected and remained fully functional throughout.
“Further detailed investigation is underway in consultation with experts to assess the root cause and to take remedial action as necessary. We remain committed to the highest standards of security and data protection and are taking all necessary steps to mitigate any potential risks”, the statement concluded.
Further details including the identity of the threat actors responsible – or the means by which they achieved access to some of Tata Technologies’ IT assets and corporate network – were not included in the filing.
Ransomware attacks targeting India spiked 55% in 2024
Ransomware attacks targeting India-based companies appear to be on the rise, according to data collected by CyberPeace.
Research from the security firm identified 98 ransomware incidents impacting various sectors in India, which represents a 55% increase compared to the 63 attacks recorded in 2023.
“This surge highlights a concerning trend, as ransomware groups continue to target India's critical sectors due to its growing digital infrastructure and economic prominence,” CyberPeace warned.
Trend Micro’s 2024 Midyear Cybersecurity Threat Report found India ranked tenth overall and sixth in Asia for ransomware threats, accounting for 5% of all ransomware incidents in Asia and just under 3% globally.
In one case, Comtel, a data center operator hosting critical infrastructure for a number of brokerage firms in India, was hit with a ransomware attack in December 2024 that resulted in a temporary suspension of the affected stock brokers by two of India's leading exchanges.
RELATED WHITEPAPER
The finance sector accounted for 10% of the incidents recorded in 2024, CyberPeace found, but the industrial sector was by far the most frequently targeted industry in India, accounting of 75% of total incidents.
The Tata conglomerate has been the victim of previous ransomware activity in recent years. In October 2022, the Hive ransomware group claimed responsibility for an attack on Tata Power, locking down its IT systems and exfiltrating sensitive information.
A sample of the stolen information posted to the group’s leaksite included contracts with suppliers and employees, ‘master’ files on several employees, and details of senior executives’ remuneration packages.
-
RSAC Conference 2025: The front line of cyber innovationITPro Podcast Ransomware, quantum computing, and an unsurprising focus on AI were highlights of this year's event
-
Anthropic CEO Dario Amodei thinks we're burying our heads in the sand on AI job lossesNews With AI set to hit entry-level jobs especially, some industry execs say clear warning signs are being ignored
-
LockBit data dump reveals a treasure trove of intel on the notorious hacker groupNews An analysis of May's SQL database dump shows how much LockBit was really making
-
‘I take pleasure in thinking I can rid society of at least some of them’: A cyber vigilante is dumping information on notorious ransomware criminals – and security experts say police will be keeping close tabsNews An anonymous whistleblower has released large amounts of data allegedly linked to the ransomware gangs
-
It's been a bad week for ransomware operatorsNews A host of ransomware strains have been neutralized, servers seized, and key players indicted
-
Everything we know about the Peter Green Chilled cyber attackNews A ransomware attack on the chilled food distributor highlights the supply chain risks within the retail sector
-
Cyber attacks are costing UK firms billions every year – ransom payments, staff overtime, and lost business are crippling victimsNews New research from ESET shows the cost of cyber attacks against UK businesses is surging, with many victims struggling to remediate breaches.
-
Scattered Spider: Who are the alleged hackers behind the M&S cyber attack?News The Scattered Spider group has been highly active in recent years
-
Ransomware attacks are rising — but quiet payouts could mean there's more than actually reported
News Ransomware attacks continue to climb, but they may be even higher than official figures show as companies choose to quietly pay to make such incidents go away.
-
Simplifying Password Management eBookWhitepaper
