The Indian Computer Emergency Response Team (CERT-In) reported a possible intrusion and data breach at Bharat Sanchar Nigam Limited (BSNL) on May 20, 2024, according to Minister of State for Communications Chandra Sekhar Pemmasani. In a written response to a query by Congress MP Amar Singh in the Lok Sabha, Dr. Pemmasani noted that while the breach did not cause any service outages, “one [BSNL] server contained data similar to the sample data shared by CERT-In.”
In response to the breach, an inter-ministerial committee has been established to “audit telecom networks and suggest remedial measures to prevent data breaches,” Dr. Pemmasani stated.
A June report by Athenian Tech, a London-based firm, indicated that the breach involved a significant amount of sensitive data, including International Mobile Subscriber Identity (IMSI) numbers, SIM card information, and Home Location Register (HLR) details. The report warned that this critical data could potentially allow hackers to infiltrate BSNL’s networks and clone users’ SIM cards.