Airtel is in the centre of a massive data breach that left all of its user data vulnerable to potential theft. A hacker group going by the name of Red Rabbit Team has posted details of as many as 25 lakh (2.5 million) Airtel subscribers online as “sample data” and is looking to sell all subscriber data for $3,500 bitcoins. The website where the sample data was posted has been taken down earlier this week, however, the hacker group allegedly remains in possession of all Airtel subscribers data.
Another Big Data Breach? A Hacker Group alleged uploaded "shell" in @airtelindia Server. Now selling all India Airtel subscribers data including Aadhaar Number. Posted 2.5 Million as sample data. (in Jan 2021)#InfoSec #DataLeak #GDPR #databreaches #dataprotection #DataPrivacyDay pic.twitter.com/uxWopfKU0M
— Rajshekhar Rajaharia (@rajaharia) February 2, 2021The Airtel data breach came into the spotlight when Rajshekhar Rajaharia, a security researcher in India posted a tweet with screenshots of the same sample data. Most details from these screenshots have been redacted, considering the sensitivity of the data sets leaked. The hacker group posted data points of over 25 lakh Airtel subscribers including details like City, Gender, Full name, Date of birth, Service status, phone number, House number, Aadhaar number, Passport, Voter ID, Father/Husband name and IMSI (International mobile subscriber identity) number.
Strange! @airtelindia already aware about this alleged breach since last 3 months. Hacker posted all email conversations with airtel too. They also posted POC video. What steps taken to remove and patch? I am also an Airtel Subscriber.#InfoSec #DataLeak #GDPR #databreaches pic.twitter.com/Tdu9mMMIOW
— Rajshekhar Rajaharia (@rajaharia) February 2, 2021The sample data sets released contains details of Airtel users from regions such as Jammu and Kashmir, Punjab, Delhi, Maharashtra, Rajasthan, Karnataka and more. Moreover, Rajshekhar also posted a video of a conversation between the hacker group and Airtel’s Security Incident Response Team (SIRT) dating back to December 2020. This indicates that Airtel was aware of a potential data breach from the past two months or so. The hackers were planning to extort the same amount from Airtel, but it didn’t seem to work out.
Moreover, Rajshekhar also revealed that the hackers targeted one of Airtel’s server where they uploaded a shell script which is essentially a malicious file that gives control of a server to the hackers. Through this technique, the hackers were able to gain access to Airtel’s servers. Having said that, Airtel has outright denied any data breach on its servers.
“Airtel takes great pride in deploying various measures to safeguard the privacy of its customers. In this specific case, we confirm that there is no data breach at our end. In fact, the claims made by this group reveal glaring inaccuracies and a large proportion of the data records do not even belong to Airtel. We have already apprised the relevant authorities of the matter,” Airtel said in a statement to the media.
Another cybersecurity researcher Avinash Jain told The Economic Times that it is certain that data of Airtel users have leaked online. “Still cannot comment on what is the number, but on verification of the data posted by the hacking team, it is found to be true,” Avinash added.
It remains to be seen whether Airtel launches a full-scale investigation into the alleged data breach or stands its ground denying the breach.
from Latest Technology News https://ift.tt/2MNVt5R
No comments:
Post a Comment