A ransomware group known as Hunters International has publicly released a portion of the data it claims to have stolen from Tata Technologies. This leak comes just over a month after the Indian company acknowledged a ransomware attack that temporarily suspended some services.
Table of Contents
Details of the Data Breach
The leaked information, which was published on Hunters International’s dark web leak site and reviewed by TechCrunch, includes sensitive details about current and former Tata Technologies employees, as well as confidential corporate data. The exposed data set reportedly contains over 730,000 documents, comprising Excel spreadsheets, PowerPoint presentations, and PDF files, with a total size of approximately 1.4 terabytes.
Among the leaked documents are:
- Personal information of Tata Technologies employees.
- Purchase orders and financial data.
- Confidential contracts with clients in India and the United States.
Background of the Ransomware Attack
In late January, It Technologies informed Indian stock exchanges about a ransomware attack that had affected some of its IT assets. The company assured stakeholders that client services remained fully functional and were not impacted by the breach. However, it remains unclear whether the data published by Hunters International is directly related to this specific incident.
Despite multiple requests for comments from TechCrunch, It Technologies has not yet provided an official statement regarding the latest data leak.
About Tata Technologies
It Technologies, founded in 1989 as part of It Motors, became an independent entity in 1994 and continues to operate as a subsidiary of the It Group. The company specializes in product engineering and research and development services for the automotive, aerospace, and engineering industries across 27 countries. It operates 20 delivery centers and employs over 12,500 professionals globally.
Who is Hunters International?
Hunters International is a relatively new ransomware-as-a-service (RaaS) group that surfaced in late 2023. The group leases its infrastructure to affiliate hackers who execute ransomware attacks, while Hunters International takes a share of any ransom payments collected. Cybersecurity experts have noted potential links between Hunters International and the now-defunct Hive ransomware gang, which was dismantled by law enforcement in 2023. Notably, the Hive gang was responsible for leaking stolen data from Tata Power, another Tata Group company, in 2022.
Implications and Cybersecurity Concerns
The breach underscores the growing threat of ransomware attacks on major corporations and highlights the need for robust cybersecurity measures. Companies across industries must enhance their security infrastructure, implement proactive threat detection, and educate employees about cyber threats to mitigate risks associated with such attacks.
As the investigation into the Tata Technologies breach continues, organizations are reminded of the critical importance of cybersecurity vigilance to protect sensitive corporate and customer data from cybercriminals.
