India's Biggest-Ever Data Breach? Personal Details of 81.5 Crore People Leaked
In what is being billed as possibly the 'biggest' data leak in the country, personally identifiable information of 815 million (81.5 crore) Indians have been up on the dark web for sale, according to a report by US-based cybersecurity firm Resecurity.
Information including Aadhaar and passport details, alongside names, phone numbers, and addresses, is reportedly being sold online. Media reports indicate a potential compromise of the Indian Council of Medical Research (ICMR) database due to the broad range and sensitivity of the information involved.
An individual, calling himself a 'threat actor' using the alias 'pwn001', posted a thread on Breach Forums.
An individual, calling himself 'threat actor', on 'X' has advertised a database in a breached dark web forum. This database reportedly contains records of 81.5 million Indian citizens, encompassing Aadhaar and passport information, alongside names, phone numbers, and addresses. The 'threat actor' alleges that the data, obtained from COVID-19 test details of citizens, was sourced from ICMR, according to a News18 report.
Recommended Video
Resecurity, an American agency specializing in cybersecurity and intelligence was first to notice the leak, the report said.
According to the cybersecurity firm, an individual identified as a 'threat actor' using the alias 'pwn001' started a thread on Breach Forums. This forum, self-described as a 'premier Databreach discussion and leaks forum', facilitated access to records of 815 million Indian citizens.
'pwn001' has shared spreadsheets containing four significant leak samples with portions of Aadhaar data. Upon analysis, these were confirmed as valid Aadhaar card IDs, the report added.
ICMR has encountered numerous cyber-attack attempts since February, and both central agencies and the council were aware of these data breach attempts. Last year, there were over 6,000 attempts to breach ICMR servers.
In August, another 'threat actor' identified as 'Lucius' posted a discussion on BreachForums, proposing to vend a 1.8 terabyte data breach associated with an unspecified "Indian internal law enforcement organization."
-
Strait of Hormuz Tensions Rise as US Says 2 Warships Began Mine-Clearing Mission, Iran Rejects Claim -
Why Did Trump Announce a Strait of Hormuz Blockade After Failed Iran Talks? -
New Delhi arrests after alleged fake judicial officer stopped with firearm and live ammunition -
Melania Trump Denies Jeffrey Epstein Links, Says ‘Not His Victim’ in Strong Response -
RG Kar Rape-Murder Victim’s Mother to Contest Election: From Which District? -
Chants, Claps And Then Tragedy: Last Video Captures Final Moments Before Vrindavan Boat Capsizes, 10 Dead -
‘Tum Kaale Ho’: MP Woman’s Alleged Humiliation Of Husband Before Murder Plot With Lover -
James Bond-Style Number Plate Gadget Found In Hyderabad Doctor’s BMW After Drunk Driving Stop -
3 Minor Girls Drown At Andhra Pradesh Waterfall After Slipping On Rocks While Taking Photos During Holiday -
Vrindavan Boat Tragedy: 9 Dead, Several Missing After Yamuna River Capsize -
Kerala Girl Found Dead In Chikkamagaluru's Manikyadhara, Body Recovered From 2,000-Ft Gorge -
Court Turns Down Bail for Bengaluru Doctor Accused of Killing Wife With Propofol Overdose
Click it and Unblock the Notifications
Sign in with Google