Imagine the chaos that could ensue if a massive data breach is not detected and dealt with swiftly. The consequences could be catastrophic for national security, especially considering the breach may contain data from the government and critical organizations. This includes details of defense personnel, as well as personal and confidential data of about 16.8 crore citizens and NEET applicants. The potential impact of a data breach of this magnitude is both alarming and concerning.

The threat actors were found selling more than 140 different categories of information, which include sensitive information such as details of defence personnel and the mobile numbers of citizens and NEET students, among others, Cyberabad Police Commissioner M Stephen Raveendra said.

Seven data brokers were arrested from Delhi, police said adding that the accused had been operating through three call centres in Noida and other places in order to sell the information for a decent amount to other threat indicators. So far, it has been found that the accused sold data to at least 100 fraudsters after following the trail of leaked data.

The data which was sold to fraudsters according to initial reports include sensitive data of defence personnel containing their ranks, email ids, place of posting , info about Energy and Power sector, PAN card data, Government employees, Gas and Petroleum, HNIs (High Net-worth Individuals), demat accounts, student databases(neet applicants data with their names, mobile number and their residential address), women databases, data of people who have applied for loans and insurance, and credit card and debit card holders (of private banks), WhatsApp users, Facebook users, IT organisation employees, frequent flyers.

Further, a mobile number database of three crore individuals, probably leaked from telecom service providers, with order number, service start date, segment details, billing details, account number, SIM number, etc was also found, which can be used for committing various crimes, the Commissioner said.

As a cyberized citizen, we should be well aware of factors causing a data breach -

• Human error: This can include things like employees accidentally sending sensitive information to the wrong person, or falling for phishing scams that allow hackers to gain access to systems.
• Weak passwords: Weak passwords that are easy to guess or crack can make it easy for hackers to gain access to systems and steal data.
• Software vulnerabilities: Software vulnerabilities can be exploited by hackers to gain access to systems and steal data.
• Malware: Malware such as viruses, Trojans, and ransomware can be used to gain access to systems and steal data.
• Insider threats: Insider threats can include malicious employees or contractors who intentionally steal data or accidentally expose sensitive information.
• Social engineering: Social engineering tactics such as phishing, pretexting, and baiting can be used to trick people into giving up their login credentials or other sensitive information.
• Lack of security policies and procedures: Without clear security policies and procedures in place, it can be difficult to prevent and respond to data breaches effectively.
• Lack of encryption: Without proper encryption, sensitive data can be easily intercepted and stolen by hackers.
• Third-party breaches: Third-party vendors and partners can also be sources of data breaches if they do not have proper security measures in place.

Data breaches have become a major concern in today's digital age, as they can result in significant financial losses, reputational damage, and legal consequences. While stopping a data breach completely may not be possible, individuals and organisations can take several steps to minimise the risk of a breach. These include implementing robust cybersecurity measures, such as using strong passwords and encryption, limiting access to sensitive data, and training employees on cybersecurity.