Cyber Incident Victim: Telangana State Southern Power Distribution Company Ltd

On or around April 29, 2019, the websites of Telangana State Southern Power Distribution Company Ltd (TSSPDCL) and its Andhra Pradesh counterpart were compromised in a ransomware attack, disrupting web-based services including online payment systems. The hackers infiltrated the portals maintained by Tata Consultancy Services (TCS), impacting all computer-based applications. Attackers issued a ransom demand to the power distribution company, claiming possession of data pertaining to approximately two crore power consumers across Telangana. They further threatened to access online payment information to potentially divert funds, though no evidence confirmed fund diversion occurred. The breach prompted immediate engagement of TCS technicians and TSSPDCL’s internal IT team, who worked continuously to restore services. A formal complaint was lodged with Hyderabad’s Cyber Crime authorities to investigate the intrusion.

Despite the disruption to web portals, TSSPDCL confirmed core operational systems remained unaffected. Day-to-day activities such as billing, internal operations, and physical customer service channels—including bill payments at Meeseva, eSeva centers, departmental counters, and spot collection points—continued without interruption. Services unrelated to the compromised web interfaces, such as new service applications, registrations, and power supply restoration processes, were also fully operational. TSSPDCL Chairman and Managing Director G. Raghuma Reddy publicly emphasized the integrity of the utility’s total data repository and assured customers that critical infrastructure remained secure. Restoration efforts focused exclusively on the hacked websites, with no reported collateral damage to operational technology or financial systems. The incident highlighted vulnerabilities in public-facing web assets while underscoring the segregation between compromised customer portals and protected internal networks.