KNPP targeted by ‘serious’ data leak. (Image source: Reuters) NEW DELHI: A ransomware group has published thousands of files allegedly linked to India’s largest nuclear power plant, Kudankulam, in what experts warn could pose a “serious” risk to the facility’s safety.The hacker group World Leaks posted on the dark web what it claims are more than 19,000 sensitive files related to the Kudankulam Nuclear Power Plant in Tamil Nadu. The documents are part of a larger cache of approximately 858,000 files allegedly stolen from Reliance Group, one of the contractors involved in the project.Reliance Group confirmed a “partial breach” of its data on a server hosted by third-party Indian data centre provider Yotta, to Reuters. They added that the government had been informed. The company did not disclose what data had been breached.What the leaked files containReuters reviewed the leaked documents, dated from 2016 to mid-2025 , but could not verify their authenticity. The files reportedly include engineering blueprints for ventilation and cooling systems, floor layouts of a common control room, equipment inspection reports, supplier lists and vendor proposals, meeting records and insurance policies.The documents primarily relate to Units 3 and 4 of the Kudankulam plant, which are currently under construction and expected to be operational by 2027. They do not appear to include designs for the nuclear reactors’ core systems, which are supplied by Russia’s state-owned Rosatom.Experts warn of security risksNickolas Roth, a senior director at the Nuclear Threat Initiative, said the data breach could pose a “serious” risk to the plant’s safety. “They could show an adversary not just who has access to the project but which systems that access reaches,” he told Reuters.Although no evidence suggests that operational reactor systems were compromised, cybersecurity experts say the leaked information could still be valuable to hostile actors. Attackers could potentially exploit vulnerabilities within associated infrastructure or third-party suppliers.Investigation underwayIndia’s Computer Emergency Response Team is investigating the breach alongside the Nuclear Power Corporation of India, according to a source familiar with the matter. Yotta, the data centre provider, said it detected suspicious activity on a server on May 29 and that the suspected ransomware execution was prevented, but Reliance Infrastructure later informed it of claims of a data breach.Neither the Department of Atomic Energy nor the Prime Minister’s Office publicly commented on the investigation conducted by Reuters. World Leaks, which has previously targeted Tata Group and Nike, did not respond to requests for comment.The incident comes amid growing concerns over cybersecurity across India’s critical infrastructure. According to cybersecurity company Surfshark, India recorded 28.9 million compromised accounts last year, making it one of the countries most affected by data breaches globally.A recent industry survey found that 73% of Indian organisations surveyed were “unaware if they have ever been attacked” while 57% lack cyber hygiene practices.Get the latest India news and live updates. Download the TOI App.About the AuthorTOI News DeskThe TOI News Desk comprises a dedicated and tireless team of journalists who operate around the clock to deliver the most current and comprehensive news and updates to the readers of The Times of India worldwide. With an unwavering commitment to excellence in journalism, our team is at the forefront of gathering, verifying, and presenting breaking news, in-depth analysis, and insightful reports on a wide range of topics. The TOI News Desk is your trusted source for staying informed and connected to the ever-evolving global landscape, ensuring that our readers are equipped with the latest developments that matter most.”Read MoreEnd of ArticleFollow Us On Social MediaVideosKGMU Bars Cooking Of Non-Veg Food In Hostels After Governor Flags Issue At ConvocationIndia-UK FTA: What Gets Cheaper, How Exporters Benefit And Why The Deal MattersTMC Rift Deepens As Kalyan Banerjee Launches Fresh Attack On Abhishek And I-PACMP Draft UCC Proposes Jail For Unregistered Live-In Relationships, Mandatory RegistrationMajor Blow To TMC As 20 Rebel MPs Move Closer To Official NCPI Recognition | Watch5 Plots, 4 Flats, Villa: ACB Raid On HMDA Engineer Exposes Rs 9.24 Crore Assets | HyderabadIndia-UK Trade Deal Kicks In From July 15, 99% Of Indian Exports Get Duty-Free AccessSupreme Court Refuses Stay In Bhojshala Case, Allows Alternate Namaz Site Till Final VerdictOp Vijay: How India Captured Tololing And Point 5140 Before Tiger HillAssam’s Tinsukia Uses CCTV And LED Screens To Shame Alleged Public Urinators123PhotostoriesAmla shots for hair growth: 5 powerful ingredients to blend for maximum benefitsPaneer is packed with protein, but do you know how many calories are hidden in your 10 favourite paneer dishes?Discover your spiritual Goddess based on your birth dateMichelle Obama’s parents never promised her the world would be fair, they promised something better: “Come home we…”5 shocking theft stories in India that left people stunned and questioning the societyDiscontinued snacks every ’90s and 2000s kid desperately wants backSnakes with the most vibrant colours and patterns in the animal kingdomAlison Hammond opens up about 22-year age gap with David Putman: Inside the British broadcaster’s dating historyFrom ‘Love for You’ to ‘Dazzling’: The ‘pseudo-sibling’ romance trope taking over Chinese dramasStop throwing away vegetable peels! Here’s how to turn kitchen scraps into natural fertiliser for your garden123Hot PicksOil Price TodayTop Stock RecommendationsMichael JordanKylian MbappeBengaluru ProfessorCarol RuckdeschelRussia Saction BillGold Rate TodayMinecraft Bedrock 26.40.31 BetaTop TrendingMLB All Start Best MomentsTamil Nadu MurderFIFA World Cup 2026Nitin GadkariBengaluru Student SuicideTwisha Sharma Murder CaseBengaluru CapgeminiTaslima NasrinGujarat RapeIran war

KNPP targeted by ‘serious’ data leak. (Image source: Reuters) NEW DELHI: A ransomware group has published thousands of files allegedly linked to India’s largest nuclear power plant, Kudankulam, in what experts warn could pose a “serious” risk to the facility’s safety.The hacker group World Leaks posted on the dark web what it claims are more than 19,000 sensitive files related to the Kudankulam Nuclear Power Plant in Tamil Nadu. The documents are part of a larger cache of approximately 858,000 files allegedly stolen from Reliance Group, one of the contractors involved in the project.Reliance Group confirmed a “partial breach” of its data on a server hosted by third-party Indian data centre provider Yotta, to Reuters. They added that the government had been informed. The company did not disclose what data had been breached.What the leaked files containReuters reviewed the leaked documents, dated from 2016 to mid-2025 , but could not verify their authenticity. The files reportedly include engineering blueprints for ventilation and cooling systems, floor layouts of a common control room, equipment inspection reports, supplier lists and vendor proposals, meeting records and insurance policies.The documents primarily relate to Units 3 and 4 of the Kudankulam plant, which are currently under construction and expected to be operational by 2027. They do not appear to include designs for the nuclear reactors’ core systems, which are supplied by Russia’s state-owned Rosatom.Experts warn of security risksNickolas Roth, a senior director at the Nuclear Threat Initiative, said the data breach could pose a “serious” risk to the plant’s safety. “They could show an adversary not just who has access to the project but which systems that access reaches,” he told Reuters.Although no evidence suggests that operational reactor systems were compromised, cybersecurity experts say the leaked information could still be valuable to hostile actors. Attackers could potentially exploit vulnerabilities within associated infrastructure or third-party suppliers.Investigation underwayIndia’s Computer Emergency Response Team is investigating the breach alongside the Nuclear Power Corporation of India, according to a source familiar with the matter. Yotta, the data centre provider, said it detected suspicious activity on a server on May 29 and that the suspected ransomware execution was prevented, but Reliance Infrastructure later informed it of claims of a data breach.Neither the Department of Atomic Energy nor the Prime Minister’s Office publicly commented on the investigation conducted by Reuters. World Leaks, which has previously targeted Tata Group and Nike, did not respond to requests for comment.The incident comes amid growing concerns over cybersecurity across India’s critical infrastructure. According to cybersecurity company Surfshark, India recorded 28.9 million compromised accounts last year, making it one of the countries most affected by data breaches globally.A recent industry survey found that 73% of Indian organisations surveyed were “unaware if they have ever been attacked” while 57% lack cyber hygiene practices.Get the latest India news and live updates. Download the TOI App.About the AuthorTOI News DeskThe TOI News Desk comprises a dedicated and tireless team of journalists who operate around the clock to deliver the most current and comprehensive news and updates to the readers of The Times of India worldwide. With an unwavering commitment to excellence in journalism, our team is at the forefront of gathering, verifying, and presenting breaking news, in-depth analysis, and insightful reports on a wide range of topics. The TOI News Desk is your trusted source for staying informed and connected to the ever-evolving global landscape, ensuring that our readers are equipped with the latest developments that matter most.”Read MoreEnd of ArticleFollow Us On Social MediaVideosKGMU Bars Cooking Of Non-Veg Food In Hostels After Governor Flags Issue At ConvocationIndia-UK FTA: What Gets Cheaper, How Exporters Benefit And Why The Deal MattersTMC Rift Deepens As Kalyan Banerjee Launches Fresh Attack On Abhishek And I-PACMP Draft UCC Proposes Jail For Unregistered Live-In Relationships, Mandatory RegistrationMajor Blow To TMC As 20 Rebel MPs Move Closer To Official NCPI Recognition | Watch5 Plots, 4 Flats, Villa: ACB Raid On HMDA Engineer Exposes Rs 9.24 Crore Assets | HyderabadIndia-UK Trade Deal Kicks In From July 15, 99% Of Indian Exports Get Duty-Free AccessSupreme Court Refuses Stay In Bhojshala Case, Allows Alternate Namaz Site Till Final VerdictOp Vijay: How India Captured Tololing And Point 5140 Before Tiger HillAssam’s Tinsukia Uses CCTV And LED Screens To Shame Alleged Public Urinators123PhotostoriesAmla shots for hair growth: 5 powerful ingredients to blend for maximum benefitsPaneer is packed with protein, but do you know how many calories are hidden in your 10 favourite paneer dishes?Discover your spiritual Goddess based on your birth dateMichelle Obama’s parents never promised her the world would be fair, they promised something better: “Come home we…”5 shocking theft stories in India that left people stunned and questioning the societyDiscontinued snacks every ’90s and 2000s kid desperately wants backSnakes with the most vibrant colours and patterns in the animal kingdomAlison Hammond opens up about 22-year age gap with David Putman: Inside the British broadcaster’s dating historyFrom ‘Love for You’ to ‘Dazzling’: The ‘pseudo-sibling’ romance trope taking over Chinese dramasStop throwing away vegetable peels! Here’s how to turn kitchen scraps into natural fertiliser for your garden123Hot PicksOil Price TodayTop Stock RecommendationsMichael JordanKylian MbappeBengaluru ProfessorCarol RuckdeschelRussia Saction BillGold Rate TodayMinecraft Bedrock 26.40.31 BetaTop TrendingMLB All Start Best MomentsTamil Nadu MurderFIFA World Cup 2026Nitin GadkariBengaluru Student SuicideTwisha Sharma Murder CaseBengaluru CapgeminiTaslima NasrinGujarat RapeIran war


'Serious risk' to India's largest nuclear plant after sensitive files leaked on dark web: Report
KNPP targeted by ‘serious’ data leak. (Image source: Reuters)

NEW DELHI: A ransomware group has published thousands of files allegedly linked to India’s largest nuclear power plant, Kudankulam, in what experts warn could pose a “serious” risk to the facility’s safety.The hacker group World Leaks posted on the dark web what it claims are more than 19,000 sensitive files related to the Kudankulam Nuclear Power Plant in Tamil Nadu. The documents are part of a larger cache of approximately 858,000 files allegedly stolen from Reliance Group, one of the contractors involved in the project.Reliance Group confirmed a “partial breach” of its data on a server hosted by third-party Indian data centre provider Yotta, to Reuters. They added that the government had been informed. The company did not disclose what data had been breached.

What the leaked files contain

Reuters reviewed the leaked documents, dated from 2016 to mid-2025 , but could not verify their authenticity. The files reportedly include engineering blueprints for ventilation and cooling systems, floor layouts of a common control room, equipment inspection reports, supplier lists and vendor proposals, meeting records and insurance policies.The documents primarily relate to Units 3 and 4 of the Kudankulam plant, which are currently under construction and expected to be operational by 2027. They do not appear to include designs for the nuclear reactors’ core systems, which are supplied by Russia’s state-owned Rosatom.

Experts warn of security risks

Nickolas Roth, a senior director at the Nuclear Threat Initiative, said the data breach could pose a “serious” risk to the plant’s safety. “They could show an adversary not just who has access to the project but which systems that access reaches,” he told Reuters.Although no evidence suggests that operational reactor systems were compromised, cybersecurity experts say the leaked information could still be valuable to hostile actors. Attackers could potentially exploit vulnerabilities within associated infrastructure or third-party suppliers.

Investigation underway

India’s Computer Emergency Response Team is investigating the breach alongside the Nuclear Power Corporation of India, according to a source familiar with the matter. Yotta, the data centre provider, said it detected suspicious activity on a server on May 29 and that the suspected ransomware execution was prevented, but Reliance Infrastructure later informed it of claims of a data breach.Neither the Department of Atomic Energy nor the Prime Minister’s Office publicly commented on the investigation conducted by Reuters. World Leaks, which has previously targeted Tata Group and Nike, did not respond to requests for comment.The incident comes amid growing concerns over cybersecurity across India’s critical infrastructure. According to cybersecurity company Surfshark, India recorded 28.9 million compromised accounts last year, making it one of the countries most affected by data breaches globally.A recent industry survey found that 73% of Indian organisations surveyed were “unaware if they have ever been attacked” while 57% lack cyber hygiene practices.



Source link

Leave a Reply

Your email address will not be published. Required fields are marked *