The Nuclear Power Corporation of India (NPCIL) has confirmed the presence of malware in its system at the Kudankulam nuclear plant. The confirmation comes a day after the nuclear firm denied being the victim of a cyber spy attack.
Issuing a press statement on Wednesday, the NPCIL said “identification of malware in NPCIL system was correct” but the affected system was not connected to the main plant system.
“The matter was conveyed by CERT-in when it was noted by them on September 4, 2019. It was investigated by DAE [Department of Atomic Energy] specialists,” the press statement said.
The NPCIL is a body under the DAE, which in turn comes under the purview of the prime minister’s office.
According to the release, the infected PC belonged to a user who was connected to the internet network used for administrative purposes. The press release states, “This is isolated from the critical internal network.”
The networks are being continuously monitored and the investigation conducted confirms that plant systems were not affected by the malware, it said.
In a statement released yesterday by the information officer of the Kudankulam nuclear power plant, they stated, “any cyberattack on the nuclear power plant control system is not possible”.
This was after the rumors on Twitter that the Kudankulam plant had been a victim of a cyber attack.
Following the confirmation by the NPCIL, DMK leader MK Stalin raised concerns over the lack of adequate safety measures at nuclear facilities.
“The cyber attack on NPCIL facilities is shocking and reveals the lack of adequate safety measures. The Union Government must conduct a thorough enquiry into the lapses,” MK Stalin said.
“The National Cyber Security Coordinator owes an explanation on the preparedness of such facilities #Kudankulam,” he said.