The Reserve Bank of India has allegedly been targeted in a cyberattack, linked to threat actor ZALCYBER. Although the RBI data breach reportedly occurred in 2023, it has gained renewed attention due to claims made by the hacker collective on BreachForums.
The Reserve Bank of India (RBI), India’s central bank and regulatory authority overseeing the country’s banking system, operates under the ownership of the Ministry of Finance, Government of India. It holds responsibility for the regulation, issuance, and management of the Indian rupee.
If confirmed, the reported RBI data breach could carry significant implications for both individuals and financial entities.
Addressing the RBI Data Breach
According to assertions made by ZALCYBER, two PDF files containing purportedly extensive data linked to the RBI were posted on BreachForums. One of these files includes applicant information, while the other encompasses administrative data.
The applicant data file comprised over 2000 records containing various personal identifiers, while the RBI admin file supposedly contained 48 records detailing stages, applications, and service descriptions.
While preliminary investigations tentatively suggest a potential association with individuals applying to the RBI’s enterprise incubation program, the authenticity of the leaked data remains uncertain.
The Cyber Express has reached out to the bank to learn more about the RBI data breach and the reliability of the data. However, at the time of writing this, no official statement or response has been received, leaving the claims for the data breach unverified.
Who is ZALCYBER?
ZALCYBER, a member of BreachForums since February 4, 2024, displays minimal activity with only 1 hour and 39 minutes spent online. Contributing to six threads and posts, they are still establishing their presence on the platform.
Despite their recent engagement, ZALCYBER is yet to earn any reputation points or awards, indicating their status as a newcomer within the community. With the potential for further involvement in discussions and activities, their profile suggests that ZALCYBER might be a new hacker group/individual within the forum.
However, the alleged RBI data breach immediately thrusts them into the spotlight, given that the RBI operates 31 branches across India and is responsible for the creation, manufacturing, distribution, and comprehensive administration of the country’s currency. The bank’s mandate also encompasses ensuring an abundant supply of genuine and untainted banknotes nationwide.
Financial Institutions Under Siege: A Surge in Cyberattacks
The alleged RBI data breach is not an isolated incident. In recent years, cyberattacks on financial institutions have become increasingly common, with hackers targeting banks and their customers with alarming frequency.
One such example is the reported breach affecting Bank of America customers, where the personal information of approximately 57,000 customers was compromised due to a cyberattack on bank service provider Infosys McCamish Systems.
Furthermore, The Cyber Express previously reported about cyberattacks on major Indian banks, including the Federal Bank Limited and Indian Bank. The perpetrators, identified as the “Mysterious Silent Force,” purportedly targeted these institutions to expose vulnerabilities within the banking system.
Media Disclaimer: This report is based on internal and external research obtained through various means. The information provided is for reference purposes only, and users bear full responsibility for their reliance on it. The Cyber Express assumes no liability for the accuracy or consequences of using this information.