It is said that Prime Minister Narendra Modi’s personal website data has been leaked on the dark web. The leaked data is said to include “a large amount” of personally identifiable information of hundreds of thousands of people. According to a report, it includes names, email addresses and mobile phone numbers. More than a month after the Twitter account of Prime Minister Narendra Modi’s personal website was hacked, the latest developments appeared. Several tweets were released at the time, asking people to donate cryptocurrency to the Prime Minister’s National Relief Fund.
Cybersecurity company Cyble claimed that the news was released on October 10 and the content was a database of the Prime Minister’s personal website Narendramodi.in, which can be found on the dark web. By analyzing the data leakage, the company allegedly discovered the personally identifiable information of more than 574,000 users, of which more than 92,000 users seem to have donated through the site.
The Computer Emergency Response Team of India (CERT-In) did not immediately respond to a request for comment on the matter. There is also no official statement in response to the alleged leak on the dark web.
Gadget 360 cannot independently verify the data leakage. We asked Cyble the reason for the leak. In response, the company’s CEO Beenu Arora said: “The exact cause of the leak is still unclear; however, usually, many leaks occur through monetization. We believe that given the attractiveness of the site, we do recommend The authorities have further strengthened the security status of its applications, especially third parties.” The information shared by the company and Advertisement Shout indicated that the data leak included details of Narendramodi.in’s donation.
One of the leaked databases is said to contain detailed information on financial transactions made by donors to contribute to the ruling Batia Yanta Party (BJP) through the Prime Minister’s personal website. Some screenshots were shared with Advertisement Shout, highlighting detailed information, including the donor’s name, email address, mobile number and payment method.
The company said in its blog: “Because of having such a large repository of unauthorized personal information of Indian citizens, this data may be misused for phishing emails, spam and other fraudulent activities.”
According to preliminary investigations conducted by the company, the database on the Narendramodi.in website may have been extracted from AWS hosted instances and related to its subdomains.
In addition to the analysis that has been carried out, bad actors who put data on the dark web may have accessed other files and files on the Prime Minister’s personal website. The website allegedly led to a breach of its Twitter account early last month. Cyble pointed out in a blog post that it informed CERT-In that the Twitter account was compromised due to the configuration of the website linked to Twitter.
Should the government explain why Chinese applications are banned? We discussed on the weekly technical podcast Orbital, you can subscribe via Apple Podcast, Google Podcast or RSS, download the episode, or click the play button below.