Tata Power – India’s Largest Integrated Power Company was hacked by a ransomware group called the Hive.
According to Tech Crunch and Cybernews the data stolen of stolen included “employee information, such as Aadhaar national identity card numbers, tax account numbers, salary information, home addresses and phone numbers. The leaked data, which was posted to Hive’s dark web leak site on October 24, also includes engineering drawings, financial and banking records, client records and some private keys”.
“The leak has sensitive data but nothing that affects power grids,” Rahul Sasi, co-founder and CEO of threat intelligence firm CloudSEK, who also reviewed the leaked data, told TechCrunch.
According to Cybernews, Hive claims to have corporate data such as contracts, non-disclosure agreements (NDAs), and other company documents.
“The Company has taken steps to retrieve and restore the systems. All critical operational systems are functioning; however, as a measure of abundant precaution, restricted access and preventive checks have been put in place for employee and customer facing portals and touch points,” the company said in a note to the National Stock Exchange of India.