Donor data from narendramodi.in stolen and is on sale on dark web, alleges cyber security firm

A cybersecurity firm claims data of more than five lakh users has been stolen from narendramodi.in, Prime Minister Narendra Modi’s personal website. The stolen data includes details such as contact details, email IDs, details of more than two lakh people who donated to various funds through the website, including to the coronavirus fund, and all of this data is for sale on the dark web, claims Cyble, a cyber security film. The Prime Minister’s Office has not commented on the report.

“There is a good chance that the data will be misused for criminal purposes, as it contains personal data of more than 570,000 users. This includes PIIs such as name, email ID, contact information, etc. ”, the company claimed in a blog post on Oct. 16.

Cyble is a US-based company specializing in real-time cyber threats to websites and organizations.

The company claims that cyber criminals recently took possession of the data on narendramodi.in when they breached it and also used it to Twitter account of the website. That incident was reported by Twitter.

“On September 3, 2020 Twitter confirmed the personal Twitter The account of Narendra Modi, the Prime Minister of India, was hacked, ”wrote the Cyble. “On October 10, Cyble received a tip that the website’s database is available in the dark web. Cyble then collected and analyzed the data breach, including several databases. Of the leaked databases, ‘cctransactions’ and ‘users’ contained a significant amount of Personally Identifiable Information (PII) data belonging to the Prime Minister’s followers. “

Dark web is a term for websites that are either based on TOR networks and exist with URLs with the suffix .onion or it describes the sites not indexed by search engines. Many of these websites host marketplaces for hackers and cyber criminals where they can buy and sell stolen data or hacking tools.

Cyble alleges that it previously notified CERT-India, the government agency responsible for monitoring and combating cyber threats in India, of the alleged breach of narendramodi.in.

Cyble also claims the website leaked details of people who donated through narendramodi.in.

Another database that is part of the leaked data contains details of the financial transaction donors made to contribute to the fund. This includes non-public data such as bank_ref_no, payment_mode, etc. We estimate that of the 574K users listed in the database, more than 292K of them appear to have donated to the respective website. Our analysis further suggests that it includes donations or micro-donations for various causes, such as COVID-19 Relief, supporting the political party and other initiatives such as Swachh Bharat, ”Cyble wrote.

Currently, there is no official update from CERT-In or from the website narendramodi.in that denies or confirms the alleged infringement of the website. site.

A cybersecurity company claims user and donor data for more than five lakh people was stolen from narendramodi.in, Prime Minister Modi’s personal website, and the details are for sale on the dark web.

News Highlights:

  • A cybersecurity company claims data of more than five lakh users has been stolen from narendramodi.in
  • The data is for sale on the dark web, claims the company called Cyble.
  • The data includes personal data of users who have donated to the website.
News - Tech News, Latest News, Business News and world News