Page 2 - Data Breach

CERT-In reported possible intrusion, data breach at BSNL on May 20: Govt

The Indian Computer Emergency Response Team (CERT-In) had reported possible intrusion and data breach at state-owned Bharat Sanchar Nigam Ltd (BSNL) on May 20, 2024, Parliament was informed on Wednesday. An Inter Ministerial Committee (IMC) has been constituted to conduct an audit of the telecom networks and suggest remedial measures for prevention of data breaches in the telecom networks, Minister of State for Communications Pemmasani Chandra Sekhar said in a written reply in the Lok Sabha. To a question on data breach in BSNL, the Minister informed that Indian Computer Emergency Response Team (CERT-In) reported possible intrusion and data breach at BSNL on May 20, 2024. "The same was analysed and found that one File Transfer Protocol (FTP) server was having the data similar to the sample data shared by CERT-In. No breach into the Home Location Register (HLR) of the telecom network has been reported by the equipment manufacturer, hence no service outage in BSNL's network," he ...

Disney's Slack under attack: Hacktivists expose chat data on artist rights

Hacktivist group NullBulge accessed Disney's network through a compromised video game mod installed by a developer. Unlike typical hackers, the group appears to be uninterested in financial gains

Data from around 109 mn US customer accounts illegally downloaded: AT&T

The U.S. telecom company said the FBI is investigating and at least one person has been arrested after AT&T call logs were copied from its workspace on a third-party cloud platform

Has Airtel's customer database been breached by hackers? Company says this

A hacker had posted on X that data of nearly 375 million Airtel customers, including phone numbers, email addresses, and Aadhaar numbers, were supposedly for sale on the dark web

OpenAI's internal design details stolen in hacker breach last year

The hacker lifted details from discussions in an online forum where employees talked about OpenAI's latest technologies

BSNL data breach exposes 278 GB of sensitive telecom info, twice in 6 mts

A threat actor has claimed to have obtained sensitive data, which includes international mobile subscriber identity numbers, SIM card specifics, home location register data, and security keys

Boat suffers data breach: Personal data of 7.5 mn users leaked on dark web

The threat actor has put out around 2 Gigabytes of personally identifiable information (PII) of boAt users on dark web forums, claimed the reports

Data of 7.5 mn boAt customers leaked on dark web: Forbes India report

The personal data of 7.5 million boAt customers is a being sold at just two euros on the dark web

Financial services firm WeRize becomes the victim of a data breach

No impact on business operations

EPFO data breach in 2018 linked to Chinese cyber agency, probe reveals

When news of the purported breach initially surfaced in 2018, the EPFO denied that its systems were compromised

Govt pension portal for defence personnel SPARSH suffers data breach

The digitised pension processing system, SPARSH, offers online pension-related facilities to over 3 million pensioners from 50 organisations

Threat actor breaches BSNL server database, puts up dataset on dark web

State-owned telecom operator BSNL suffered a data breach as a threat actor released a dataset containing 32,000 lines of data, including sensitive details of landline users, on a dark web forum

Probing data breach claim, no current security issue detected: Tata's IHCL

Tata group hospitality firm Indian Hotels Company Ltd on Thursday said it is investigating claims of a data breach, but asserted there is no suggestion of any current or ongoing security issue. According to a media report, there has been a personal data breach of 15 lakh users from the Taj Hotel database, which is available on the dark web for purchase at USD 5,000. "We have been made aware of someone claiming possession of a limited customer data set which is of non-sensitive nature," Indian Hotels Company Ltd (IHCL) spokesperson said in a statement. Asserting that safety and security of customers' data is of paramount importance to the company, the spokesperson said, "We are investigating this claim and have notified the relevant authorities." The spokesperson further said, "We continue to monitor our systems and there is no suggestion of any current or ongoing security issue or impact on business operations." IHCL runs a number of hospitality properties under the Taj, SeleQtion

Breach alert: Key steps to verify if your data has been compromised

Lock up Aadhaar biometric; in future keep a close tab on SMS inbox, financial statements, credit report

In a first, Morgan Stanley fined for UK Energy trading WhatsApp breach

The fine is the first issued by Ofgem under legal requirements to archive communications linked to wholesale energy trading, the regulator said

Indian organisations' cost of data breach at record high: Report

Cost of detecting and fixing cyberattacks has increased 45% sine 2020, it says

Data protection bill could cap penalty for data breach at Rs 250 crore

The earlier draft has stipulated that in the case of non-compliance, a penalty of up to Rs 500 crore could be imposed

HCA Healthcare says data breach may affect 11 mn patients in 20 states

Medical giant HCA Healthcare, which operates 180 hospitals in the U.S. and Britain, says the personal data of about 11 million patients in 20 states may have been stolen in a data breach. Samples of the data, including addresses, phone numbers, emails and birth dates, were posted to an online forum popular with cybercrooks by a hacker trying to sell them. The Nashville, Tennessee-based provider said the stolen data was not believed to include Social Security numbers, payment information or clinical info such as diagnoses. However, the data did include information on scheduled appointments and medical departments involved. A file dumped online by the hacker on Monday following what appeared to be a failed attempt to extort HCA includes nearly 1 million records from the company's San Antonio division. If 11 million patients are affected, the breach would rank in the top five as reported by health care institutions to the Department of Health and Human Services Office of Civil Rights.

India needs better defences to be a digital superpower after data breach

I suspect the government is right and CoWIN is not currently being accessed by hackers. Even so, it seems likely that outsiders have penetrated some aspect of India's digital public infrastructure

Threat actors don't have access to entire CoWIN portal, database: Report

After the Union health ministry dismissed reports of a data breach on the CoWIN platform, cyber security firm CloudSEK has said that threat actors do not have access to the entire portal nor the backend database. "Based on matching fields from Telegram data and previously reported incidents affecting health workers of a region, we assume the information was scraped through these compromised credentials," CloudSEK said in a report on Monday after an independent analysis. On March 13, a threat actor on a Russian cybercrime forum advertised for compromised access on the CoWIN portal of Tamil Nadu region, it said. After an analysis, CloudSEK said, it was discovered the breach was that of a health worker and not really of the infrastructure. The content displayed on the screenshot matches with the Telegram bot mentioned in the media as follows -- name of the individual, mobile number, identity proof, identification number and number of doses completed. "Furthermore, there are numerous .