List of Affected Institutions

  1. National Security Council Secretariat, India - 14 documents, including two documents marked “SECRET”; documents containing personal and financial information of the compromised individual. Exfiltrated documents focus on India’s security situation in the states of Assam, Manipur, Nagaland and Tripura as well as the Naxalites, Maoists, and what is referred to as “left wing extremism.”
  2. Diplomatic Missions, India - Computers at the Embassy of India, Kabul, the Embassy of India, Moscow, the Consulate General of India, Dubai, and the High Commission of India in Abuja, Nigeria were compromised. 99 documents, including what appears to be one encrypted diplomatic correspondence as well as five documents marked “RESTRICTED” and four documents marked “CONFIDENTIAL,”; in addition to documents containing personal, financial, and travel information on embassy and diplomatic staff. Exfiltrated documents included numerous visa applications, passport office circulars, and country assessments and reports; confidential visa applications from citizens of Afghanistan, Australia, Canada, the PRC, Croatia, Denmark, Germany, India, Ireland, Italy, New Zealand, Philippines, Senegal, Switzerland, Uganda, and the United Kingdom.
  3. Military Engineer Services, India - Computers at the MES-Bengdubi, MES-Kolkata, MES(AF)-Bangalore, and MES-Jalandhar were compromised. 78 documents, including manuals and forms that would not be considered sensitive, private information on personnel, and documents and presentations concerning the financing and scheduling of specific engineering projects.
  4. Military Personnel, India - Computers linked with the 21 Mountain Artillery Brigade in the state of Assam, the Air Force Station, Race Course, New Delhi and the Air Force Station, Darjipura Vadodara, Gujarat were compromised. 16 documents were exfiltrated, One contained personal information on Saikorian alumni of the Sainik School, Korukonda; One document is a detailed briefing on a live fire exercise while others pertain to surface-to-air missile systems and moving target indicators.
  5. Military Educational Institutions, India - Computers at the Army Institute of Technology in Pune, Maharashtra and the Military College of Electronics and Mechanical Engineering in Secunderabad, Andhra Pradesh were compromised. 21 documents, including one marked “RESTRICTED”, were exfiltrated; documents and presentations detailing the finances of one of the institutions as well as personal and private information on students and their travel. A document describes “Project Shakti,”.
  6. Institute for Defence Studies and Analyses, India - 187 documents were exfiltrated. While many of the documents were published papers from a variety of academic sources, there were internal documents, such as an overview of the IDSA research agenda, minutes of meetings for the Journal of Defence Studies, budgets and information on a variety of speakers, visitors, and conference participants.
  7. Defence-oriented publications, India- Computers at the India Strategic defence magazine and FORCE magazine were compromised. 58 documents, including publicly accessible articles and previous drafts of those articles; private information regarding the contact details of subscribers and conference participants; interviews, documents, and PowerPoint presentations from conferences that detail national security topics, such as network data and monitoring for national security, and responses to combat cyber threats.
  8. Corporations, India - Computers at YKK India Private Limited [1], DLF Limited [2], and TATA [3] were compromised. 5 documents were exfiltrated, which include rules overseeing business travel, a presentation on roadmap and financial status, and an annual plan for a business partnership.
  9. Maritime, India - Computers at the National Maritime Foundation [4], Gujarat Chemical Port Terminal Company Limited [5] were compromised. 53 documents were exfiltrated, including a summary of a seminar as well as numerous documents relating to specific shipping schedules, financial matters and personal medical information.
  10. United Nations - 1 computer at UNESCAP [6] has been compromised, including information concerning a variety of conferences and presentations, internal Mission Report documents regarding travel and events in the region.
--------
[1] YKK Corporation of Japan's wholly-owned subsidiary for the manufacture of Metallic and non-Metallic Zippers in India. http://ykkindia.com/about/htm1.html
[2] India's largest real estate company in terms of revenues, earnings, market capitalisation and developable area. http://www.dlf.in/
[3] Tata group comprises over 90 operating companies in seven business sectors: communications and information technology, engineering, materials, services, energy, consumer products and chemicals. The group has operations in more than 80 countries, one of which is China.
http://www.tata.com/aboutus/sub_index.aspx?sectid=8hOk5Qq3EfQ=
[4] Provides a common platform for discourse between maritime related institutions, organizations and disciplines, country-wide. Also deals with all issues bearing on maritime security, and on the formulation of independent policy advice, to decision makers, in the GoI and the Navy. http://maritimeindia.org/
[5] Is the most modern commercial port and storage terminal on the west coast of India. http://www.gcptcl.-com/
[6] United Nations Economic and Social Commission for Asia and the Pacific is based in Thailand and facilitates development in the Asia-Pacific region.
Comments