Wipro confirms phishing attack on its system — 11 other companies unknown

Wipro confirms phishing attack on its system — 11 other companies unknown
Wipro CEO Abidali Neemuchwala during a press conference to announce the Q2 financial results in BengaluruBCCl

  • Wipro Ltd , an Indian information technology company, confirms that its computer systems were breached by a phishing attack — and so were the systems of 11 other companies.
  • The company has since quarantined the compromised systems and launched an independent forensics survey.
  • Wipro Ltd denies having known about the breach from months claiming that system alerts only go back one week.

India is one of the most targeted countries when it comes to phishing attacks and Wipro Ltd, a Indian information technology company, was its latest victim. According to a report by KrebsOnSecurity, a phishing attacks on Wipro Ltd’s computer systems used employee accounts to again access to customer information.

And, at least 11 other companies were attacked as well according to evidence found in file folders on the back-end infrastructure of the intrusion. But, the exact objective of the attacks is still unclear.

Complimentary Tech Event
Transform talent with learning that works
Capability development is critical for businesses who want to push the envelope of innovation.Discover how business leaders are strategizing around building talent capabilities and empowering employee transformation.Know More
The company confirmed the report, released a security patch and has hired its own independent forensics firms to help with the investigation. But, Wipro Ltd has refrained from sharing any details about how many customers’ data and employees’ accounts were left vulnerable.

We identified and isolated those employee accounts, and already took remedies; we have also shared intelligence with partners for preventing such incidents. We also informed a handful of our customers, as a standard practice. We will continue to monitor our infrastructure.

Wipro spokesperson

Wipro Ltd system were apparently being used as ‘jumping-off’ points for digital fishing expeditions gaining access to Wipro Ltd systems. The employees of those systems have since been quarantined and Wipro Ltd claims that the malware attack should not have any ‘material impact’ on its financials.

To know or not to know?

While it has been established that Wipro Ltd did not know about the breach some time in advance, the ongoing debate is whether they knew about it a week or months in advance.

KrebsOnSecurity asserts that the phishing attack was a multi-month process from a state-sponsored attackers. Wirpo’s COO Bhanumurthy BM, on the other hand, claims that the alerts were only detected a week ago.

These alerts were detects a week ago and not months ago.. Any large enterprise will monitor these events and also investigate. In a year, we investigate about 4.8 million such threats.

Bhanumurthy BM, Wipro COO’s statement

Earlier this month, the Indian government sold off ₹11.5 billion of ‘enemy’ Wipro Ltd shares that the Custodian of Enemy Property had been holding onto. They’re essentially shares that belonged to individuals who have since migrated to Pakistan or China and are no longer Indian citizens.


KrebsOnSecurity speculates that the development along with the $75 million settlement to National Grid US after a botched systems applications and products in data processing (SAP) upgrade and cancelling of its Medicaid enrollment system contract with the US state of Nebraska, may have had something to do with the phishing attack.

See also:
Think you can spot a hacker's phishing email? Take Google's quiz and find out

The 11 most sophisticated online scams right now that the average person falls for

Facebook is asking some new users for their email passwords and appears to be harvesting their contacts without consent