Bharat Sanchar Nigam Limited (BSNL) reportedly suffered a data breach in which the attackers claimed to have sensitive user and operational data. A state-owned telecommunications provider’s server was hacked and the hackers now have SIM card data, home location information and important security keys for the server, the report said. It is said that the stolen data can be used for criminal activities such as SIM card cloning, identity theft and even extortion.
Threat actors have reportedly infiltrated BSNL servers
Citing a data breach report from Athens Digital Risk Management Company, News18 reports that the name of the attacker behind this cyberattack is “kiberphant0m.” The username of this dark web forum appears to be that of a hacker. It cannot be confirmed that the data breach was committed by an individual or a group of hackers.
According to the report, around 278 GB of data from BSNL’s telecom operations was compromised. The compromised data goes beyond user data and is said to include snapshots of servers that can be used for further attacks and pose significant security risks. Attackers claim to have sensitive information such as International Mobile Subscriber Identity (IMSI) numbers, SIM card details, PIN codes and authentication keys. It also reportedly contains a snapshot of BSNL’s SOLARIS server.
The attackers reportedly offered to sell the compromised data for $5,000 (approximately Rs. 4.18 million). Hackers reportedly discussed the leaked data on dark web forums and also discussed the possibility of using the data for criminal activities such as SIM card cloning, identity theft and extortion.
Although the specific vulnerabilities exploited by kiberphant0m were not disclosed, access to critical systems such as location registration (HLR) and SOLARIS server snapshots was gained through the exploitation of software vulnerabilities. Inclusion shows a snapshot of BSNL infrastructure. This may have been facilitated by the use of advanced social engineering techniques: “This suggests that known vulnerabilities within the organization may have been exploited and highlights the need for careful management of security patches and updates. He does.”
A suspected data breach poses a serious threat to millions of BSNL users whose confidential information may have been compromised. Notably, the mobile operator suffered a similar data breach in December 2023. Gadgets 360 has reached out to BSNL for a comment on the matter and will update the article once we receive a response.