The Rural Business Incubator (RBI) in the Indian state of Uttarakhand has reportedly fallen victim to a cyberattack linked to threat actor ZALCYBER, sparking concerns about the potential implications of the data breach. The incident, which is said to have occurred in 2023, has gained renewed attention due to claims made by the hacker collective on BreachForums.
The RBI falls under the purview of the Ministry of Rural Development, which spearheads various initiatives aimed at alleviating rural poverty through collaborative efforts between the Government of India and state governments. The RBI, in particular, is a collaborative program tailored to support youth with innovative business concepts, startups, and nano-enterprises in achieving their entrepreneurial objectives. If confirmed, the reported RBI data breach could carry significant implications for both individuals and entities involved in the program.
According to assertions made by ZALCYBER on BreachForums, two PDF files containing purportedly extensive data linked to the RBI were posted. One of these files includes applicant information, while the other encompasses administrative data. The Cyber Express reached out to the program to confirm the breach and verify the authenticity of the leaked data, but no official statement or response has been received at this time.
The applicant data file reportedly comprised over 2000 records containing various personal identifiers, while the RBI admin file supposedly contained 48 records detailing stages, applications, and service descriptions. While preliminary investigations tentatively suggest a potential association with individuals applying to the RBI’s enterprise incubation program, the authenticity of the leaked data remains uncertain.
As for ZALCYBER, the threat actor is a member of BreachForums with minimal activity and a newcomer within the community. Despite their recent engagement, they are yet to earn any reputation points or awards, indicating their status as a new hacker group or individual within the forum.
The implications of this cyberattack on the RBI are still unclear, and there is a need for further investigation and confirmation of the authenticity of the leaked data. The Ministry of Rural Development and other relevant authorities need to address the situation to ensure the protection of individuals and entities associated with the Rural Business Incubator. The potential risks associated with a data breach of this nature are significant, and it is essential for the authorities to take appropriate steps to mitigate any potential harm.