The data leaked on the web as per the cybersecurity start-up which includes information of a total of around 49,19,668 people from Tamil Nadu. Also, to include around 3,59,485 phone numbers as well as postal addresses and Aadhaar numbers of the affected users.
As per accordance with the Bengaluru-based cyber-security firm known as TechniSanct, and the data provided from Tamil Nadu’s Public Distribution System (PDS) was breached and a database that contains personal information of around 5 million users were also uploaded to hacker forums. The leaked data which is to include the Aadhaar numbers of users as well as the sensitive information of beneficiaries, such as their family details and mobile numbers. Hackers also can use the leaked data to launch a phishing attack and target easily deceived people, including the elderly, in the state although, the state government is yet to publicly confirm the breach.
The data that was leaked according to the cybersecurity start-up on the web to be included with information of a total of 49,19,668 people from Tamil Nadu. This makes the inclusion of around 3,59,485 phone numbers as well as postal addresses and Aadhaar numbers of the affected users. Gadgets 360, however, has checked the leaked database which includes ‘Makkal numbers’, started by the state government to keep records of all citizens, including newborn babies.
Additionally, the leaked data does include information on the family members of the beneficiaries and their relationships with them. The matter thus was first reported by The Week.
However, it is not clear at this time whether the data was hacked which is directly from a website linked to the Tamil Nadu government or from a third party vendor. However, there is a database that shows that this appears to be a very small part of the total database, as there are over 68 million registered beneficiaries for the PDS system, per the dashboard on the Tamil Nadu Civil Supplies and Consumer Protection Department’s site.
TechniSanct CEO Nandakishore Harikumar told that Gadgets 360 leaked data was uploaded on June 28 and has been detected the same day, but was removed about an hour later.
According to TecniSanct, they found that there was an attack on the website of Tamil Nadu Civil Supplies and Consumer Protection Department (tnpds.gov.in) that was carried out by cybercriminal group “1945VN”. However, it is to make sure that it is not clear whether there is a link between that attack and the latest breach.