Telecom operator BSNL has fallen victim to a data breach, with reports indicating that hackers are selling the stolen data of thousands of BSNL internet and landline users on the dark web.
A significant issue has been reported involving a hacker, identified as “Perell,” on the dark web, who claims to have acquired critical information about users of a telecom company’s services, specifically those utilizing fiber and landline connections from BSNL (Bharat Sanchar Nigam Limited) in India.
Operating under the alias “Perell,” the hacker has revealed a portion of the stolen data on the dark web, including sensitive details like email addresses, billing information, contact numbers, and other private data associated with BSNL’s fiber and landline users. Moreover, more crucial information, such as mobile service outage records, network specifics, completed orders, and customer details, seems to have been compromised.
An unnamed source familiar with the situation has highlighted the gravity of this breach, emphasizing an immediate threat to the privacy and security of BSNL customers. The data shared by the hacker comprises around 32,000 lines of information, but “Perell” claims to have acquired approximately 2.9 million lines of data from all databases, encompassing district-wise details of BSNL customers. While BSNL has not publicly acknowledged the breach, the Indian cybersecurity agency Cert-In has reportedly been informed about this hacking incident.
Kanishk Gaur, a cybersecurity expert and founder of India Future Foundation, expressed deep concern about this breach, emphasizing its potential widespread implications for both BSNL and its users. Gaur underscored the seriousness of this breach, stating that it not only jeopardizes user privacy but also exposes them to risks such as identity theft, financial fraud, and targeted phishing attempts. The situation calls for immediate action from BSNL and relevant authorities to mitigate risks and safeguard affected users against potential harm arising from the compromised data.