cxo voice
  • Business
  • Technology
    • Artificial Intelligence
    • Cloud
    • Telecom
    • Data Center
    • BPM
    • Blockchain
  • Finance
    • Banking
  • CXO Insights
  • Cyber Security
  • CXO Interviews
No Result
View All Result
  • Business
  • Technology
    • Artificial Intelligence
    • Cloud
    • Telecom
    • Data Center
    • BPM
    • Blockchain
  • Finance
    • Banking
  • CXO Insights
  • Cyber Security
  • CXO Interviews
No Result
View All Result
Leaders Talk and Latest Tech News | CXO VOICE
No Result
View All Result
Home Cyber Security

Attackers exploited discontinued web server at Tata Power

News Desk by News Desk
November 24, 2022
IT Security

Microsoft has warned that state-sponsored hackers are attacking critical energy infrastructure in India via exploiting a discontinued web server, with the most recent attack observed on Tata Power last month. Microsoft security researchers discovered a vulnerable open-source component in the “Boa web server” still being used in routers, security cameras, and popular software development kits (SDKs), despite its retirement in 2005.

Tata Power last month admitted it was hit by a cyber attack on its IT infrastructure. The power company, however, said that all its critical operational systems were functioning normally.

The cyber attack on Tata Power was the handiwork of the Hive ransomware group that has victimized over 1,300 firms globally, receiving approximately $100 million in ransom payments, according to a joint advisory by the FBI, the US Cybersecurity and Infrastructure Security Agency, and the Department of Health and Human Services last week.

Microsoft said it sees attackers attempting to exploit Boa vulnerabilities, indicating that it is still targeted as an attack vector.

A report published by cybersecurity company Recorded Future in April this year first detailed suspected electrical grid intrusion activity and implicated common IoT devices.

While investigating the attack activity, Microsoft researchers assessed the vulnerable component to be the now-retired Boa web server, which is often used to access settings and management consoles and sign-in screens in devices.

“Without developers managing the Boa web server, its known vulnerabilities could allow attackers to silently gain access to networks by collecting information from files,” said the tech giant.

Moreover, those affected may be unaware that their devices run services using the discontinued Boa web server and that firmware updates and downstream patches do not address its known vulnerabilities.

“Microsoft assesses that Boa servers were running on the IP addresses on the list of IOCs published by Recorded Future at the time of the report’s release and that the electrical grid attack targeted exposed IoT devices running Boa,” said the security researchers.

Tata Power Company had said that some of its IT systems were impacted by the cyber attack.

According to Microsoft, the popularity of the Boa web server displays the potential exposure risk of an insecure supply chain, even when security best practices are applied to devices in the network.

“In critical infrastructure networks, being able to collect information undetected prior to the attack allows the attackers to have much greater impact once the attack is initiated, potentially disrupting operations that can cost millions of dollars and affect millions of people,” it added.

Disclaimer: Only the headline and image of this article may have been edited by the CXOvoice, the rest of the content is generated from a syndicated feed.

Also Read: Slack Security Concerns and DLP solutions

News Desk

News Desk

by CXO VOICE team members, [email protected]

Related Posts

cloudflare Precursor
Cyber Security

Cloudflare Introduces Precursor, One-Click Bot Defense That Monitors User Behavior Instead of CAPTCHA Challenges

July 14, 2026
Tech Mahindra and CloudSEK
Cyber Security

Tech Mahindra, CloudSEK Partner to Deliver Predictive, Regulation-Ready Cybersecurity

July 14, 2026
Tata data breach
Cyber Security

Tata Data Breach  Leaks Unreleased Apple Product Details

June 30, 2026
IBM Red Hat and Palo Alto
Cyber Security

IBM, Red Hat, Palo Alto Networks Expand Project Lightwell for AI-Driven Vulnerability Protection

June 25, 2026
Wipro MDR
Cyber Security

Wipro Expands Palo Alto Networks Alliance to Launch AI-Powered Cyber Defense Services

June 24, 2026
public Wi-Fi
Cyber Security

The Hidden Dangers of Public Wi-Fi: Why Convenience Should Never Replace Caution

June 23, 2026
Wi-Fi Security
Cyber Security

Connected Everywhere, Vulnerable Anywhere: The Security Side of Wi-Fi

June 23, 2026
N-able Bengaluru
Cyber Security

N-able Opens New Global Capability Centre in Bengaluru

June 17, 2026
Load More

More Articles

GeForce NOW Officially Launches in India With Subscription Plans Starting at ₹999

GeForce NOW Officially Launches in India With Subscription Plans Starting at ₹999

by Deepa Sharma
July 15, 2026

cloudflare Precursor

Cloudflare Introduces Precursor, One-Click Bot Defense That Monitors User Behavior Instead of CAPTCHA Challenges

by Deepa Sharma
July 14, 2026

Intel Ireland

Intel to Invest €5 Billion in Ireland to Boost AI Chip Production and R&D

by Deepa Sharma
July 14, 2026

Tech Mahindra and CloudSEK

Tech Mahindra, CloudSEK Partner to Deliver Predictive, Regulation-Ready Cybersecurity

by Deepa Sharma
July 14, 2026

Get Weekly CXO Intelligence.

Loading

CXO Insights

public Wi-Fi
Cyber Security

The Hidden Dangers of Public Wi-Fi: Why Convenience Should Never Replace Caution

by Atul Luthra
June 23, 2026
Wi-Fi Security
Cyber Security

Connected Everywhere, Vulnerable Anywhere: The Security Side of Wi-Fi

by Govind Rammurthy
June 23, 2026
Shadow AI
Artificial Intelligence

Shadow AI: The Invisible Threat Growing Inside Modern Enterprises

by Manpreet Singh
June 5, 2026
traceability in Manufacturing
Opinion

From Barcode to Intelligence: How Traceability Is Redefining Manufacturing in India

by S R Srinivasan
May 29, 2026

CXO Interviews

AI Skills
Artificial Intelligence

How AI is transforming skills, education, and workforce development in the future of work

>
1Point1
Business

How 1Point1 Solutions Is Betting Its Future on AI to Redefine BPM

>
NewgenONE
Business

Reimagining Enterprise Transformation: Varun Goswami on the Future of NewgenONE and AI-Driven Automation

>
Jagat Shah, Chairman & CEO of MITSUMI Group
Business

Leadership in Emerging Markets: Exclusive Interview with Jagat Shah, Chairman & CEO of MITSUMI Distribution

>

CXOVoice.com is a leading online publication for CXOs, entrepreneurs, senior leaders, developers, and industry professionals. We publish informed analysis, news reporting, expert commentary, and expert insights across enterprise technology, digital transformation, cybersecurity, data, AI, sustainability, and governance.

Connect with us

Easy Links

  • Cryptocurrency
  • Company Announcements
  • Event
  • Blockchain
  • Resources & Downloads
Loading
  • Home
  • About Us
  • Contact Us
  • Advertise
  • Privacy & Policy
  • Editorial Policy
  • Feedback

Copyright © 2026 CXOVoice - All Rights Reserved

Welcome Back!

Login to your account below

Forgotten Password?

Retrieve your password

Please enter your username or email address to reset your password.

Log In

Add New Playlist

No Result
View All Result
  • Home
  • Business
  • Opinion
  • Interview
  • Technology
  • Cyber Security
  • Artificial Intelligence
  • How To
  • Data Center

Copyright © 2026 CXOVoice - All Rights Reserved