The company did not pay the ransom, so the hackers posted the data on their website.
The Hive operators said they were releasing the stolen data on their leak site because their conditions were not met.
Cybersecurity researcher Rakesh Krishnan shared screenshots of the stolen data, which contain, among other things:
personal information of Tata Power employees;
numbers of national identification cards (Aadhaar);
PAN numbers (tax accounts);
salary information.
Krishnan suggested that the data dump also contained technical drawings, financial and banking records, and customer information.
Tata Power, a subsidiary of the multinational conglomerate Tata Group, is India's largest integrated energy company based in Mumbai.
The attack became known on October 15, when Tata Power confirmed the cyberattack and said that it had taken measures to restore the affected systems, isolated them and installed additional protection measures on the portals used by customers. However, the company did not provide any technical details about the attack. Chinese state hackers from the TAG-38 group were suspected of this attack.
Comments 0