According to a threat actor on a dark web forum, the Ministry of Defence of India was allegedly breached. The allegations made by the threat actor in the dark web forum post includes that the breach resulted in the exposure of various types of employee information such as first and last names, phone numbers, personnel codes, passwords, email addresses, birthday information, addresses, and many other details.
The threat actor claims that 1.8 M rows of data are exposed.
According to the post, the breach occurred on July 11, 2024. The threat actor claims that the breach was executed to demonstrate the vulnerabilities in the National Informatics Centre (NIC) systems.
The threat actor accepts escrows for the deal, and a sample for the alleged breach is also included in the forum post.
