A cybersecurity company claims that the data of more than five lakh users was stolen from narendramodi.in, Prime Minister Narendra Modi’s personal website. The stolen data includes details such as contact information, email IDs, details of over two lakh people who have donated through the website to various funds, including the coronavirus fund, and all of this data is for sale on the dark web, says Cyble, a cybersecurity movie. The Prime Minister’s office did not comment on the report.
“There is a high possibility that the data will be misused for criminal purposes as it contains personal details of over 570,000 users. This includes personal information such as name, email ID, contact information, etc. “The company said in a blog post on Oct.16.
Cyble is a US-based company specializing in real-time cyber threats to websites and organizations.
The company claims that cybercriminals apparently stole the data on narendramodi.in recently when they hacked it and even used it to hack the Twitter website account. That incident was reported by Twitter.
“September 3, 2020 Twitter confirmed the staff Twitter the bill of Narendra Modi, the Indian prime minister, has been breached, ”Cyble wrote. “On October 10, Cyble was informed that the website database is available on the dark web. Next, Cyble acquired and analyzed the data leak, which includes multiple databases. Among the leaked databases, “cctransactions” and “users” contain a significant amount of personally identifiable data (PII) belonging to the Prime Minister’s followers. “
Dark web is a term for websites that are based on TOR networks and exist with URLs suffixed with .onion or describes the sites not indexed by search engines. Many of these websites host marketplaces for hackers and cybercriminals where they can buy and sell stolen data or hacking tools.
Cyble claims to have previously notified CERT-India, which is the government agency responsible for monitoring and countering cyber threats in India, of the alleged breach on narendramodi.in.
Cyble also claims the website leaked details of people who have donated via narendramodi.in.
“Another database that is part of the leaked data shows details of the financial transaction made by donors to contribute to the fund. This includes non-public data like bank_ref_no, payment_mode, etc. We estimate that out of 574,000 users listed in the database, over 292,000 of them appear to have made donations to the website in question alone. Our analysis further suggests that it includes donations or microdonances for a variety of causes such as COVID-19 relief, political party support and other initiatives, such as Swachh Bharat, ”Cyble wrote.
At the moment, there is no official update from CERT-In or the narendramodi.in website that denies or confirms the alleged violation on the site.
A cybersecurity company claims that user and donor data of more than five lakhs of people was stolen from Prime Minister Modi’s personal website narendramodi.in, and the details are for sale on the dark web.
- A cybersecurity company claims that the data of more than five lakh users was stolen from narendramodi.in
- The data is for sale on the dark web, says the company called Cyble.
- The data includes personal data of users who have made donations to the site.