Indian embassies in 7 countries experienced a severe data breach and more than 900 individuals sensitive information leaked due to poor online security measures.
Two grey hat Security Pentesters duo, known by the name Kapustkiy and Kasimierz breached the Indian Embassies in 7 countries including Switzerland, Romania, Mali, Malawi, Libya, and Italy.
The two Security Pentesters evangelist turned grey hat, to raise awareness of cyber security and force websites administrators to take security measures on a serious level.
The duo exploited the SQLi injection flaw of the site and successfully breached the database.
When BeEncrypted contacted Kapustkiy, he said they contacted the Indian embassies to report the vulnerability and the ministries consistently ignored their reports, which led to such actions. Talking about the reporting Kapustkiy said, ‘It’s like they didn’t care, and after this breach, they will strengthen their security in the future.’
It is not the first time that Indian embassies ignored such reports; the ministries have a history of security breaches because of their negligence to security measures, even after frequent breaches especially from neighboring countries.
The Indian embassies’ websites shut down to fix the situation, and the duo hopes they should have fixed the vulnerability by now.
The breach includes 7 databases and over 900 entries of individuals with sensitive information. However, Kapustkiy says they refrained from leaking the real addresses, city, zip code, and other passport details.
The embassy should consider strengthening its security after this incident because it can be very harmful if the leaked information belongs to a high-profile diplomat.
Back in 2013, experts at FireEye identified a group of hackers linked to China that conducted a cyber espionage against foreign affairs ministries in the Europe. The espionage campaign was dubbed as ‘Operation Ke3chang,’ and in March the same hackers attacked Indian embassies across the world and targeted diplomats.
However, when asked about the similarity and link between such group, Kapustkiy said they didn’t do this under any ‘operation,’ and they did it on purpose so that the Indian embassies should strengthen their security better. And after the shutdown, it’s time they knew they had to fix it.
According to FireEye research, India is the 6th largest country in which 38 percent organizations are susceptible to Advanced Persistent Attacks (ATPs).
This incident should serve as an example for other agencies, especially foreign ministries to strengthen their security and make security policies as part of their organization IT strategy.
Share this article
About the Author
Peter Buttler an Infosec Journalist and Tech Reporter, Member of IDG Network. In 2011, he completed Masters in Cybersecurity and technology. He worked for leading security and tech giants as Staff Writer. Currently, he contributes to a number of online publications, including The Next Web, CSO Online, Infosecurity Mag, SC Magazine, Tripwire, GlobalSign CSO Australia, etc. His favorite areas Online Privacy, AI, IoT, VR, Blockchain, Big Data, ML, Fintech, etc. You can follow him on twitter.
More from Peter ButtlerRelated Posts
Passengers’ Data Stored on User Devices, not on DigiYatra Storage, says India Govt
KEY TAKEAWAYS Unblocking streaming content from Amazon Prime is easy only if you know the reliable V...
NCSC Chief: Clear Rules Needed to Prevent Cyberspace Conflict and Struggle
A safe and secure digital world necessitates a clear definition and enforcement of international cyb...
‘Revive’ has been upgraded to a banking Trojan on Android
This month, Cleafy’s security researchers discovered a new Android Banking Trojan in the wild....
Asian Industrial Control Systems Targeted by Hackers Using the Shadowpad Backdoor
Unpatched Microsoft Exchange servers in various Asian countries were the target of an attack campaig...
Data Breaches Could Occur Due to Kubernetes Misconfigurations That Were Leaked.
Over 900,000 Kubernetes (K8s) have been discovered to be vulnerable to malicious scans and/or data-e...
Attacks by Cybercriminals Will Become the Main Threat in 2024. Privacy Issues Tendencies
Internet Privacy is the main Concern today Advertisers track your online activities and interf...