India's Biggest-Ever Data Breach? Personal Details of 81.5 Crore People Leaked
In what is being billed as possibly the 'biggest' data leak in the country, personally identifiable information of 815 million (81.5 crore) Indians have been up on the dark web for sale, according to a report by US-based cybersecurity firm Resecurity.
Information including Aadhaar and passport details, alongside names, phone numbers, and addresses, is reportedly being sold online. Media reports indicate a potential compromise of the Indian Council of Medical Research (ICMR) database due to the broad range and sensitivity of the information involved.
An individual, calling himself a 'threat actor' using the alias 'pwn001', posted a thread on Breach Forums.
An individual, calling himself 'threat actor', on 'X' has advertised a database in a breached dark web forum. This database reportedly contains records of 81.5 million Indian citizens, encompassing Aadhaar and passport information, alongside names, phone numbers, and addresses. The 'threat actor' alleges that the data, obtained from COVID-19 test details of citizens, was sourced from ICMR, according to a News18 report.
Recommended Video
Resecurity, an American agency specializing in cybersecurity and intelligence was first to notice the leak, the report said.
According to the cybersecurity firm, an individual identified as a 'threat actor' using the alias 'pwn001' started a thread on Breach Forums. This forum, self-described as a 'premier Databreach discussion and leaks forum', facilitated access to records of 815 million Indian citizens.
'pwn001' has shared spreadsheets containing four significant leak samples with portions of Aadhaar data. Upon analysis, these were confirmed as valid Aadhaar card IDs, the report added.
ICMR has encountered numerous cyber-attack attempts since February, and both central agencies and the council were aware of these data breach attempts. Last year, there were over 6,000 attempts to breach ICMR servers.
In August, another 'threat actor' identified as 'Lucius' posted a discussion on BreachForums, proposing to vend a 1.8 terabyte data breach associated with an unspecified "Indian internal law enforcement organization."
-
Thunderstorm Warning In Delhi NCR: IMD Issues Orange Alert Amid Sudden Weather Shift -
UP STF Nabs Maulana Abdullah Salim Over Controversial Comment On CM Yogi's Mother -
Masood Azhar’s Brother Mohammad Tahir Dies In Pakistan Under Mysterious Circumstances, Cause Yet To Be Known -
VerSe Innovation Appoints P.R. Ramesh as Independent Director and Chair of Audit Committee to Strengthen Governance Ahead of Next Phase of Growth -
“Not Going To Be There Too Much Longer”: Trump Signals Endgame In Iran War -
Iran Threatens To Hit US Companies in Region From April 1, Names Microsoft, Apple, Tesla, Boeing -
‘IPL Official’ Found Dead in Mumbai Hotel, Probe Underway -
Leander Paes To Contest West Bengal Assembly Elections 2026? Tennis Star Joins BJP Ahead of Assembly Polls -
April 1 Rule Changes: PAN, New Tax Law, ATM, FASTag, Cards to Impact Millions, What’s Changing? -
China, Pakistan Call for Immediate Ceasefire in Iran War, Push Peace Talks ‘As Soon As Possible’ -
Are Banks Closed or Open Today on Mahavir Jayanti? RBI Issues Special March 31 Instructions -
Iran’s New Hormuz Plan Targets Global Shipping with Tolls, What Does It Mean?
Click it and Unblock the Notifications
Sign in with Google