Data from Prime Minister Narendra Modi’s personal website has reportedly been leaked on the dark web. The data is said to contain “substantial amounts” of personally identifiable information from millions of people. It includes names, email addresses and mobile numbers according to a report. The latest development comes exactly one month after the Twitter account of Prime Minister Narendra Modi’s personal website was hacked. Several tweets were posted at the time, asking people to donate cryptocurrencies to the PM’s National Relief Fund.
Cyber security firm Cyble Claimed It was deferred on October 10 about the Prime Minister’s personal website, Narendramodi.in, being available on the dark web. Upon analyzing the data leaks, the firm allegedly obtained personally identifiable information from more than 5,74,000 users, of which more than 2,92,000 appealed for donations through the website.
Indian Computer Emergency Response Team (CERT-IN) Did not immediately respond to a request for comment on the case. There has also been no official statement in response to the alleged leak on the Dark Web.
Gadgets 360 was not able to independently verify data leaks. We reached out Cyble Regarding the reason behind the leak. To this, the firm’s CEO Binu Arora stated, “The exact cause of the leak is unknown; However, many leaks are, in general, for demonetization. In our opinion, looking at the gravitas of the website, we advise relevant authorities to further strengthen the security posture of their applications, especially third parties. “Information shared by the firm with Gadget 360 suggests that the data leaks included details of donations from Narendramodi.in.
One of the leaked databases is said to contain details of financial transactions carried out by donors for contributions to the ruling Bharatiya Janata Party (BJP) through the Prime Minister’s personal site. Some screenshots were shared with Gadgets 360 highlighting details, including donor’s names, email addresses, mobile numbers, and payment modes.
The firm said in a blog post, “With such a large repository of unauthorized personal information of Indian citizens, the data has potential for misuse such as phishing emails, spam text messages, etc.”
As per the preliminary investigation conducted by the firm, the database can be extracted from the Narendramodi.in website from the AWS-hosted instances and its sub-domains.
Also, in the analysis that has been done, the actor who has put the data on the bad web has the possibility to access other documents and files of the Prime Minister’s personal website. The website reportedly resulted in Violation of its twitter account At the beginning of last month. Saibal noted in a blog post that he informed CERT-In that the Twitter account was linked to the website’s configuration Twitter.
Should the government explain why Chinese apps were banned? We discussed it Of class, Our weekly technology podcast, which you can subscribe through Apple Podcast, Google Podcast, or RSS, Download episode, Or simply hit the play button below.