Data breach exposes 2.9 lakh Bangalore Water Supply and Sewerage Board's customers' details: Report
Bengaluru: A major data breach has exposed the personal information of more than 2.9 lakh users of the Bangalore Water Supply and Sewerage Board (BWSSB), according to a recent probe conducted by the Bengaluru-based cybersecurity firm CloudSEK.
The breach involved unauthorised access to BWSSB's water connection application portal, exposing sensitive user data including Aadhaar numbers, PAN details, mobile numbers, full addresses, email IDs, and payment records, the probe report revealed, as cited by Deccan Herald on Tuesday.
The compromised database was reportedly listed for sale on BreachForum, an underground data leaks web forum, by a threat actor with the username pirates_gold.
"The initial post by the threat actor specified a payable amount of $500 (approximately Rs 42,616) for access to the compromised BWSSB database. However, upon direct engagement, the actor demonstrated high level of urgency and appeared willing to negotiate significantly lower prices, indicating a potential desperation to sell," CloudSEK noted in its findings, which were shared with both the BWSSB chairman and the Officer on Special Duty to Chief Minister Siddaramaiah.
"The post claimed that the database access would expose records of 2,91,212 users. It was explicitly stated that the compromised data did not include the user's passwords. Additionally, the post featured a few lines of sample data,” said the report, as cited by DH.
The leaked dataset reportedly contained multiple categories of information, including payment data, grievance data, application data, and system logs. The application data alone is said to contain over 2.91 lakh records, featuring full names, complete addresses, contact details, Aadhaar, and PAN numbers—details which could potentially be exploited for identity theft or financial fraud.
Despite the serious nature of the breach, sources in the BWSSB assured that the data was safe. "The entire billing data is stored in the Data Centre maintained by the Karnataka government. The 24x7 monitoring is at a high-security level and a breach of billing data was next to impossible,” DH quoted BWSSB sources as saying.
Meanwhile, BWSSB Chairman Ram Prasath Manohar acknowledged the report and stated that adequate measures would follow, noting that a case would be filed with the cybercrime police. “If a breach has indeed occurred, we will identify the root cause and involve technical experts to bolster our data security systems,” DH quoted Manohar as saying.
As part of its findings, CloudSEK recommended immediate corrective measures, including conducting a comprehensive security audit, revoking any exposed or potentially compromised credentials, and removing public access to administrative interfaces to prevent future breaches.
Let the Truth be known. If you read VB and like VB, please be a VB Supporter and Help us deliver the Truth to one and all.
Ex-minister Ramanath Rai hits out at BJP leader Ashoka for ‘irresponsible’ comments on KC Venugopal
Mangaluru: Congress leader and former minister B Ramanath Rai slammed BJP leader R Ashoka for calling AICC General Secretary KC Venugopal an agent of the party high command, and asked if the general secretary and other office-bearers in the BJP were commission agents too.
Rai, who addressed a press meet at the Congress office in the city on Friday, expressed fury over the recent comments of the BJP leader that Chief Minister Siddaramaiah was presenting himself in a shameless manner in public life. Ashoka, who is also Leader of the Opposition (LoP) in the Karnataka Legislative Assembly, had said that the Congress government had ‘broken every previous record on corruption-related controversies’.
“Ashoka has spoken with sheer ignorance and displays his lack of maturity, as he often does while facing the media. KC Venugopal has been working at organization of the party and it is unbecoming of Ashoka to criticize Venugopal as he did,” Rai told reporters.
“Being in a responsible position, how acceptable is it for Ashoka to pass disrespectful, random comments about another leader who also holds a responsible position? If KC Venugopal is indeed an agent of the party high command, what should we consider BJP leaders to be? Are they brokers?” he asked
Commenting on Ashoka’s allegations of corruption in the Congress government in Karnataka, Rai pointed out, “The KSRTC land was sold to private parties when he (Ashoka) was transport minister. We can find several such cases across the state, which need to be probed.”
The former minister, however, refused to comment on the incident that occurred at Mangaluru airport during CM Siddaramaiah’s visit to the city recently.
Former mayors Ashraf and Shashidhar Hegde, Congress activists Vishwas Kumar Das, Subhodaya Alva, Shabeer, Baby Kundar, Padmanabha, Nazeer Bajal and Prem were present.
