Critical Severity

Malaysian Utility Indah Water Hit by Rhysida Ransomware Attack

Rhysida ransomware group attacked Malaysia's national sewerage company, exfiltrating 448 GB of sensitive internal documents and operational data, posing a risk to critical national infrastructure.

Indah Water Konsortium Malaysia Breach: November 8, 2023

#ransomware #rhysida #malaysia #critical infrastructure #utilities #data breach

Malaysian Utility Indah Water Hit by Rhysida Ransomware Attack

CRITICAL SEVERITY

Attack Vector

Ransomware

Industry

Energy

Incident Details

What Happened

The Rhysida ransomware group successfully attacked Indah Water Konsortium (IWK), Malaysia's national sewerage services provider. The breach, discovered on November 8, 2023, resulted in the exfiltration of 448 GB of data, comprising over 330,000 files. The attackers employed a double extortion strategy, leaking a portion of the stolen data online to pressure the organization.

Impact

As a provider of critical national infrastructure, this breach has severe consequences. The exposed operational and infrastructure data could be exploited by malicious actors to plan further attacks against Malaysia's utility systems. The leaked internal documents also create risks of targeted phishing campaigns against employees and partners. This incident significantly undermines public trust in the security of government-linked companies.

Response

Details regarding Indah Water Konsortium's specific response to the incident, including containment and remediation efforts, have not been made public. The Rhysida group's actions suggest a ransom demand was made, but it is unknown if IWK engaged with the attackers.

END_OF_INCIDENT_REPORT

CASE_ID: OBCAL9ZBCQ

RETURN TO BREACH DATABASE

Financial Institution

Critical Infrastructure

2025 CTEM Market Report