D2
Администратор
- Регистрация
- 19 Фев 2025
- Сообщения
- 4,380
- Реакции
- 0
Discovery of the leak
CloudSEK’s proprietary risk monitoring tool XVigil discovered a post on a popular surface web forum on 29 January 2021. The actor claims to have 500,000 records and has shared a sample of the leak that contains the data of 10,000 users. For more records, the threat actor has to be reached via email or Telegram.
Contents of the leak
The sample CSV file, shared over a file hosting link, contains 10,452 records. Each record includes the following fields:
On analysing the sample, CloudSEK researchers identified that the common denominators of a significant amount of the sample data are Bihar (“wedistrict”) and 22 December 2019 (“wedate”). This points to the candidates of the preliminary examination conducted by Bihar Police Subordinate Services Commission (BPSSC) for the post of Sub Inspector/ Sergeant/ Assistant Superintendent Jail / Assistant Superintendent Jail, on 22 December 2019.
The mobile numbers provided in the sample have been validated against the candidate’s name.
Impact
The entire leaked database consists of ~500K records. Since the database includes sensitive data, i.e. name, mobile number, and PII, it makes the victims vulnerable to phishing campaigns, scams, and even identity theft.
CloudSEK’s proprietary risk monitoring tool XVigil discovered a post on a popular surface web forum on 29 January 2021. The actor claims to have 500,000 records and has shared a sample of the leak that contains the data of 10,000 users. For more records, the threat actor has to be reached via email or Telegram.
Contents of the leak
The sample CSV file, shared over a file hosting link, contains 10,452 records. Each record includes the following fields:
- transactionid
- first_name
- middle_name
- last_name
- name
- father_name
- mother_name
- husband_name
- mobileNumber
- email address
- sex
- dob
- marrital_status
- nationality
- identity_type
- identification_mark
- community
- jk_domiciled
- hno
- street
- village postoffice
- district state
- pincode
- correspondance_address
- hno1
- street1 village1
- postoffice1
- district1
- state1
- pincode1
- ffw
- exman govt_emp_service
- debarment
- fir_case
- fir_case_pending
- arrested
- criminal_case_acquitted
- good_behavior_bond
- preference1
- preference2
- preference3
- is_duplicate
- wedistrict
- weexamcode
- wedistrictcode
- wecentrecode
- werollno
- wedate wecentre
- attendence
- attendence1
- attendence_scaning
- attendence_scaning_remarks
- omr_remark
On analysing the sample, CloudSEK researchers identified that the common denominators of a significant amount of the sample data are Bihar (“wedistrict”) and 22 December 2019 (“wedate”). This points to the candidates of the preliminary examination conducted by Bihar Police Subordinate Services Commission (BPSSC) for the post of Sub Inspector/ Sergeant/ Assistant Superintendent Jail / Assistant Superintendent Jail, on 22 December 2019.
The mobile numbers provided in the sample have been validated against the candidate’s name.
Impact
The entire leaked database consists of ~500K records. Since the database includes sensitive data, i.e. name, mobile number, and PII, it makes the victims vulnerable to phishing campaigns, scams, and even identity theft.