Intel Agencies Alert Railways On Malware Attack

20 Indian soldiers killed in Galwan Valley standoff, toll may rise
The South Western Railway (SWR) zone

Indian Railways is on the risk of a malware attack on its system network including railway movements, sources in the intelligence agencies said on Friday. It is another shocker news that has come to light days after the country has lost its 20 soldiers in a violent clash with the Chinese People’s Liberation Army (PLA) troops in Ladakh’s Galwan Valley.

The news comes a day after the Dedicated Freight Corridor Corporation Limited (DFCCIL) decided to terminate the 417 km signalling project worth Rs 471 crore with Chinese firm Beijing National Railway Research and Design Institute of Signal and Communication Group Company Limited (BNRRDISC) due to non-performance.

According to intelligence agency sources, the system of the Railways has been hit by the APT 36 Malware campaign.

The source said that the Intel agencies have also alerted the Railway Board to instantly disconnect the system with the internet and change the password immediately.

The source said the APT 36 Malware is connected to Pakistan, which is a close ally of China.

The source further said that following the red flag from the Intel agencies, the system of a senior Principal Executive Director of the Railways, working in its vigilance department, has been taken for cleaning the malware threat.

As per the source, through the APT 36 Malware campaign, data stored in the Indian Railways systems were being stolen and stored in foreign locations, including the movement of the trains.

He further claimed that the APT 36 Malware also tried to take defence movement data. The source said the APT 36 Malware effect was reported from at least four systems of the Indian Railways.

Besides Railways, there was also malware threat in the defence, Central police organisations, education and healthcare sectors, the source said.

In view of the threat, the Intel agencies have asked the concerned departments to change the passwords of emails and online services from secure computers, format the hard-disk of the affected computers after taking back-up and re-install the operating systems and other software.

On Thursday, sources in the Railways had said that DFFCIL, which is looking after the work of the Dedicated Freight Corridor Project, has decided to terminate the tender with BNRRDISC.

A source in the Railway Ministry said that it has informed the Railway Board and the World Bank to take the final decision in the matter.

 Prime Minister Narendra Modi and Chinese President Xi Jinping (Photo: IANS/MEA)

The source said the project was awarded to the Chinese firm in 2016 for signalling and telecommunication work in the 417 km long Kanpur-Deen Dayal Upadhyay section of the Eastern Dedicated Freight Corridor (EDFC). The source disclosed that the contract was awarded to the Beijing National Railway Research and Design Institute in June 2016.

The source further said that even after four years, the progress in the project was only 20 per cent. The issues that led to the termination of the project are reluctance by the company to furnish technical documents, as per the contract agreement, such as the logic design of electronic interlocking.

The source further said that other issues like non-availability of their engineers and authorised personnel on-site was a serious constraint.

Even physical work could not progress as they have no tie-up with local agencies. The 3,373-km DFC, a flagship project of the Railways, aims to augment rail transport capacity to meet the growing requirement of movement of goods by segregating freight from passenger traffic.

Also Read-New Indian Passport Service Introduced in UAE