InfoSecBulletin Cybersecurity for mankind
Platform BreachForum, bad actor perell, same person who claimed to expose the data of “Bharat Sanchar Nigam Limited” BSNL for the second time.
The threat actor claimed first December-3, 2023 where he wrote “India’s 4th most popular telecommunications company has suffered a substantial data breach” and he claimed to have sent BSNL for the negotiation.
Researcher found non protected database form ESHYFT containig 86000 records
CVE-2024-55591 and CVE-2025-24472
New SuperBlack ransomware exploits Fortinet flaws
CVE-2025-25291 & CVE-2025-25292
Attention! GitLab Patched Critical Authentication Bypass Flaws
CVE-2025-20138
Cisco released High Security Alert for IOS XR Software
400+ IPs Exploiting Multiple SSRF Vulnerabilities
NVIDIA has released update for NVIDIA Riva
CVE-2025-24201
Apple fixes 0-day exploited in “extremely sophisticated attack”
Microsoft’s March 2025 updates fix 7 zero-day, 57 flaws
Ballista Botnet infects 6000 Unpatched TP-Link Routers
CVE-2025-24813
Flaw in Apache Tomcat Exposes Servers to RCE
Now for the second time Wednesday April-24, 2024 the bad actor resurfaced the issue again and claimed over 2.9 million lines of data were exfiltrated. The reason for the resurfacing of data from 2023 is unknown, but Perell shared a link on BreachForums for the stolen data, mentioning that a list of databases has been exfiltrated.
The leaked data from BSNL in 2024, which was claimed to be recent, actually dates back to 2023. Even though it is old, the data is still concerning due to its large size and sensitive information. It is puzzling why the same data was leaked again in 2024, raising questions about the motives behind this.
Saket Modi, CEO of the cyber risk management startup Safe Security told Economic Times that the nature of the hack suggested it was likely carried out by an individual rather than an organization. Modi pointed out that the claim of approximately 2.9 million records being compromised suggested that the breach might involve a single website.
Kanishk Gaur, founder of India Future Foundation told media that the wider consequences of the breach, emphasizing its significant impact on both BSNL and its customers.
(Media Disclaimer: This report is based on research from various sources. The information is for reference only and users are responsible for their reliance on it. Infosecbulletin is not liable for the accuracy or consequences of using this information.)
