Bharat Sanchar Nigam Limited (BSNL), India’s state-owned telecommunications provider, has experienced a significant data breach. The breach, orchestrated by a cybercriminal known as “kiberphant0m,” resulted in the compromise of over 278GB of sensitive data. This data includes international mobile subscriber identity (IMSI) numbers, SIM card details, home location register (HLR) data, and critical security keys, placing millions of BSNL users at risk of SIM card cloning, identity theft, and financial fraud.
The compromised data, which is integral to BSNL’s operations, is reportedly being sold on the dark web for $5,000. This sale price highlights the value of the data due to its sensitive nature, targeting not just individual users but the core of BSNL’s operational systems. The data’s exposure poses significant risks to both BSNL and interconnected networks, with potential national security implications.
Athentian Tech, a digital risk management firm, has reported on the breach, emphasizing the complexity and severity of the compromised data. The breach is particularly concerning because it is the second major incident BSNL has faced in the past six months. In December 2023, a different threat actor, “Perell,” released a dataset containing sensitive information about BSNL’s fibre and landline users.
The repeated breaches underline the critical need for enhanced cybersecurity measures within BSNL to protect its infrastructure and user data. As investigations continue, the incident serves as a stark reminder of the growing threats facing telecommunications providers and the importance of robust data security practices.
Reference:
