BSNL hacker claims multiple Asian telco victims, Security

A hacker is offering data from Indian operator BSNL and 15 other undisclosed Asian telcos
Compromised data includes IMSI records, SIM details, HLR data and login credentials
BSNL has yet to issue an official statement or response regarding the breach, leaving the claims unverified

The safety and security of customer data in the telecom sector has once again come under scrutiny with Indian state-owned communications service provider BSNL (Bharat Sanchar Nigam Limited) reportedly suffering a massive data breach.

The incident, orchestrated by a dark web hacker known as kiberphant0m and unveiled during the past week, has raised concerns about the vulnerability of sensitive information and the potential risks associated with cyberattacks on telecom infrastructure.

According to a claim that emerged on 27 May, kiberphant0m is offering unauthorised access to databases stolen from BSNL, along with data from 15 undisclosed Asian telcos. The Cyber Express has reported that the compromised data includes IMSI records, SIM details, home location register (HLR) data, and security key data. Additionally, the hacker claims to possess login credentials for various digital infrastructures and applications of BSNL.

The hacker, in a warning to potential buyers and Indian authorities, stated, “India if you want to secure your data and do not want it to be sold you must buy it first, contact me BEFORE someone purchases this data. It could be 3 hours to 24 hours, who knows.”

Despite the gravity of the situation, BSNL has yet to issue an official statement or response regarding the breach, leaving the claims unverified. This lack of transparency has compounded the uncertainty surrounding the extent of the breach and the measures being taken to mitigate its impact.

This incident is not the first time BSNL has faced cybersecurity challenges. In late 2023, the company experienced a significant data breach that resulted in the theft of sensitive customer information, including names, email addresses, billing details, contact numbers, and outgoing call records of both BSNL fibre and landline users. The hacker, ‘Perell’, then made a sample of the stolen data, consisting of 32,000 lines, available on a dark web forum.

- Joana Bagano, Contributing Editor, TelecomTV

Security

Security

BSNL hacker claims multiple Asian telco victims

By Joana Bagano

Related Topics

More Like This

Security

Singtel partners with AIS and Maxis to fight rising digital scams

Digital Platforms and Services

Air-gapped Google beyond the edge

Access Evolution

What’s up with… Orange, Singtel & Bridge Alliance, AT&T

Security

Telefónica relaunches TU Latch, the digital identity protection solution

Access Evolution

What’s up with… MásOrange & Vodafone, AT&T, Verizon

Email Newsletters

Latest Videos

Xennials

Episode 8 - Thank you for the music: Music, urban culture & transculturalism in the ‘90s

DSP Leaders World Forum

Highlights from the 2024 DSP Leaders World Forum

Network Automation

Autonomous core network for a higher level network stability

Network Automation

Why network and IT integration are key for digital service providers