Cybercrime investigative journalist Brian Krebs reports the Indian IT outsourcing and consulting company Wipro has been hacked. Multiple sources had informed Krebs that attackers breached Wipro’s internal IT systems and then used those systems to launch attacks against Wipro’s customers.
Anonymous security experts told Krebs that intruders had breached Wipro over multiple months. The attackers then used Wipro’s systems as a “jumping off point” to launch phishing attacks against the company’s own customers.
Wipro is the third largest Information Technology (IT) and consulting company in India.
“The security experts said Wipro’s customers traced malicious and suspicious network reconnaissance activity back to partner systems that were communicating directly with Wipro’s network,” Krebs wrote in a recent blog post.
One source told Krebs that at least 11 other companies were likely attacked.
Krebs reached out to Wipro for comment on the incident on April 9. A company spokesperson responded with a statement a few days later, but did not acknowledge any of the questions involving the attacks against its own customers.
Wipro later confirmed the attacks on its systems in a story published by the India Times and was later tweeted by Krebs. Wipro acknowledged the company is hiring a forensics investigative firm to look into the incident.
“We detected a potentially abnormal activity in a few employee accounts on our network due to an advanced phishing campaign,” Wipro said in a statement.