Software major Wipro’s IT systems have reportedly been hacked and are being used to launch attacks against some of the company’s customers.

According to a report filed by cyber security portal KrebsOnSecurity, India’s third-largest software exporter is dealing with a multi-month intrusion from an assumed State-sponsored attacker.

When contacted, a Wipro spokesperson agreed, and said: “We have detected a potentially abnormal activity in a few employee accounts on our network due to an advanced phishing campaign. Upon learning of the incident, we promptly began an investigation, identified the affected users and took remedial steps to contain and mitigate any potential impact.

“We are leveraging our industry-leading cyber security practices and collaborating with our partner ecosystem to collect and monitor advanced threat intelligence for enhancing security posture. We have also retained a well-respected, independent forensic firm to assist us in the investigation. We continue to monitor our enterprise and infrastructure at a heightened level of alertness.”

The report further said that Wipro’s customers had traced malicious and suspicious network reconnaissance activity back to partner systems that were communicating directly with Wipro’s network. The extent of damages have not yet been ascertained.