Cyber Resilience

Campaign · all campaigns

Indian Critical Infrastructure IntrusionsC0043 unknown

aka Indian Critical Infrastructure Intrusions

Last updated: 2026-07-03

0attributed CVEs
12ATT&CK techniques
0.0IDF score (tooling uniqueness)
0exclusive CVEs
years active

About this actor

[Indian Critical Infrastructure Intrusions](https://attack.mitre.org/campaigns/C0043) is a sequence of intrusions from 2021 through early 2022 linked to People’s Republic of China (PRC) threat actors, particularly [RedEcho](https://attack.mitre.org/groups/G1042) and Threat Activity Group 38 (TAG38). The intrusions appear focused on IT system breach in Indian electric utility entities and logistics firms, as well as potentially managed service providers operating within India. Although focused on OT-operating entities, there is no evidence this campaign was able to progress beyond IT breach and information gathering to OT environment access.(Citation: RecordedFuture RedEcho 2021)(Citation: RecordedFuture RedEcho 2022)

Source: MITRE ATT&CK

Activity timeline

No activity events recorded.

Profile

CVERiskCVSSEPSSPublishedProducts
No attributed CVEs.

Mitigating controls (NIST 800-53)

ControlTechniques coveredCoverage
AC-47 / 1258%
CA-77 / 1258%
SC-77 / 1258%
SI-47 / 1258%
CM-26 / 1250%
CM-66 / 1250%
CM-76 / 1250%
SI-36 / 1250%
SC-234 / 1233%
SC-203 / 1225%
SC-213 / 1225%
SC-223 / 1225%
SC-102 / 1217%
SC-122 / 1217%
SC-162 / 1217%

Co-occurring actors

None.

Similar actors