Press Trust of IndiaFeb 08, 2021 13:27:21 IST
A hacker group has allegedly leaked data of Army personnel using Bharti Airtel network in Jammu and Kashmir, however, the company has denied any breach in its system. The group, with the name of Red Rabbit Team, hacked some Indian websites and posted the data on the web pages of those portals. The hackers shared some links of those web pages on Twitter in a comment over a tweet of cyber security researcher Rajshekhar Rajaharia and tagged several media organisations.
Strange! @airtelindia already aware about this alleged breach since last 3 months. Hacker posted all email conversations with airtel too. They also posted POC video. What steps taken to remove and patch? I am also an Airtel Subscriber.🙁#InfoSec #DataLeak #GDPR #databreaches pic.twitter.com/Tdu9mMMIOW
— Rajshekhar Rajaharia (@rajaharia) February 2, 2021
The query sent to the Indian Army did not elicit any reply but an Army official said “We are not aware of any such information but it appears to be malicious intent of some inimical elements”.
When contacted, Bharti Airtel spokesperson denied any breach of its server.
“We can confirm there is no hack or breach of any Airtel system as claimed by this group. Multiple stakeholders outside of Airtel have access to some data as per regulatory requirements. We have apprised all the relevant authorities of the matter to, therefore, investigate this and take appropriate action.”
“This group has been in touch with our security team for over 15 months now and has made varying claims in addition to posting inaccurate data from one specific region,” the spokesperson said.
The links shared by the hacker were initially accessible with mobile number, name and address of subscribers but stopped working after sometime.
Red Rabbit Team in a message to PTI claimed that it has access to pan-India data of Bharti Airtel through a shell uploaded on the company’s server and will leak more data soon.
Rajaharia said that hackers have failed to show any credible evidence of possessing pan-India data of Bharti Airtel and it is also unclear on the way they got subscriber’s data.
“The hacker group failed to show evidence that they have a whole India database. Their claim of shell upload may be also fake. The video of SDR portal seems real but only a short portion of data may leak via this. It is still unclear how they got access to whole Jammu and Kashmir subscriber data,” he said.
Telecom operators are required to give access to government and law enforcement agencies of subscriber data registration (SDR) portal through which phone numbers and subscribers details can be verified.
Rajaharia said that hackers may be from Pakistan.
“The website which was used to upload alleged Airtel data was hacked on 4 December 2020 by Mr Clay (TeamLeets – a Pakistani Hacker Group). This indicates that a Pakistani hacker group TeamLeets may be behind this data leak,” Rajaharia said.