A ransomware group known as World Leaks has posted a large cache of files related to India’s largest nuclear power plant, Kudankulam, on the dark web. The files, which include purported blueprints of parts of the plant’s facilities and supplier details, were labelled as coming from Reliance Group, one of the plant’s contractors.
Data Breach Details
According to Reuters, the data breach could pose a ‘serious’ risk to the safety of the plant. The files posted by World Leaks include meeting and inspection records, equipment reviews, and insurance policies. The breach is believed to have occurred on a server hosted by a third-party Indian data centre service provider, Yotta.
The Indian government has been informed of the incident, and the country’s main cybersecurity agency, CERT-In, is investigating. The Nuclear Power Corporation of India, which operates the plant, has also been communicating with Reliance about the breach.
Implications of the Breach
The data breach has raised concerns about the safety and security of India’s nuclear power plants. Nickolas Roth, a senior director at the Nuclear Threat Initiative, said that the breach could be exploited by bad actors to map the plant’s support systems, identify its suppliers, and pinpoint weaknesses in its security chain.
The incident has also highlighted the vulnerability of Indian companies to cyber threats. According to a report by the Data Security Council of India and cybersecurity firm Seqrite, many Indian organisations are ill-equipped to deal with cyber attacks, with 73% of those surveyed unaware if they have ever been attacked.
Original reporting: Appleton, WI News Feed (HLL/CB) — read the source article.