Cyber Incident Victim: Tata Technologies

Tata Technologies, an Indian multinational engineering firm and subsidiary of Tata Motors, experienced a ransomware attack that compelled the company to temporarily suspend select IT systems. The incident was disclosed through a filing with India's National Stock Exchange, where the company stated the attack impacted "a few IT assets." Upon discovering the intrusion, Tata Technologies initiated an immediate investigation but withheld specifics regarding the timeline of the attack, the ransomware group involved, or whether data exfiltration occurred. As a precautionary containment measure, certain IT services were deliberately taken offline; these services were subsequently restored without further elaboration on remediation steps. The company maintained throughout the incident that client delivery services remained fully operational, asserting no disruption to business activities or customer engagements. No ransomware group had claimed responsibility for the attack as of the reporting date following the disclosure.

The company, which specializes in automotive, aerospace, and industrial engineering across 27 countries, reported $156.6 million in revenue during its most recent quarterly earnings prior to the incident. Tata Technologies declined to identify which internal divisions or geographic operations were affected by the ransomware event. This incident follows a 2022 cyberattack on Tata Power, another entity within the Tata corporate structure, which also resulted in IT infrastructure disruptions. The stock exchange filing emphasized the temporary nature of the service suspensions but did not disclose technical details about the compromised assets, attack vectors, or forensic findings. Tata Technologies has not publicly commented on whether the incident involved encryption of systems, ransom demands, or data leakage beyond its initial statements confirming the attack's occurrence and containment.