ShadowPad

ShadowPad is a malware that is alleged to be behind the October blackout in Mumbai. It has been linked to Chinese cyberattacks in the past too. It was discovered in 2017. It was found injected into software updates by NetSarang, a legitimate software provider. The malware steals sensitive information from the infected computer and sends it to the hacker’s servers once every 8 hours. The hackers can deploy more malicious codes if the target computer is of special interest to the cybercriminals.