Cyber Incident Victim: Polycab
Date:
Mar 2024
Location:
India
Summary
A major wires and cables manufacturer experienced a ransomware attack targeting its IT infrastructure, though core operational systems remained unaffected and all facilities continued normal operations. The company confirmed its technical team collaborated with external cybersecurity specialists to investigate the incident, maintaining that business functionality was preserved despite the breach. No data compromise or financial impact was disclosed in the initial regulatory filing.
| CIA Posture | Motives | Tactics, Techniques & Procedures |
|---|---|---|
| Available to members | 2 motives | 1 technique |
| Threat Actors | Type | Location |
|---|---|---|
| 0 actors | Available to members | Available to members |
Description
Polycab India Limited disclosed a ransomware attack targeting its IT infrastructure on March 17, 2024, through a regulatory filing. The company confirmed the cybersecurity incident occurred on that date but emphasized its core operational systems remained unaffected. Polycab stated all factories continued normal operations with systems functional following the attack. The ransomware specifically compromised portions of the IT infrastructure, though the filing did not specify which non-core systems or data were accessed or encrypted. No details regarding the ransomware variant, initial attack vector, or ransom demands were disclosed in the public statement. The company activated its technical team alongside external cybersecurity specialists to investigate the breach’s scope and origin. Polycab did not report data exfiltration or operational disruptions impacting customer deliveries or manufacturing output. The regulatory filing served as the primary public communication channel regarding the incident, with no immediate reports of secondary impacts on supply chains or financial markets.
Polycab’s incident response focused on forensic analysis by internal and external experts to determine the attack’s entry point and lateral movement within the network. The company maintained its net cash position of ₹1,840 crore as of December 31, 2023, though this financial disclosure preceded the incident and was unrelated to cybersecurity expenditures. Prior to the attack, Polycab reported strong Q3 FY24 results with revenue growth of 16.8% year-over-year, reaching ₹4,340.47 crore, driven by wires and cables sales. The ransomware attack occurred approximately two months after these earnings were published, with no indication in the filing that the incident affected quarterly financial performance or near-term projections. Polycab did not disclose whether the attack triggered regulatory scrutiny beyond the mandatory filing or whether customer or employee data was compromised. The investigation remained ongoing at the time of the disclosure, with no public timeline provided for its completion or additional updates on containment measures beyond the initial system restoration.