In a recent development concerning BSNL, the Union government has officially acknowledged a significant data breach within the state-owned telecom operator's systems. The breach, which came to light on May 20, 2024, was disclosed by Minister of State for Communications, Chandra Sekhar Pemmasani, in response to a query from Congress MP Amar Singh during a Lok Sabha session.

According to Pemmasani, the breach was initially detected by the Indian Computer Emergency Response Team (CERT-In), which flagged a potential intrusion leading to unauthorized access and extraction of sensitive data from BSNL servers. Despite the breach not causing service disruptions, concerns were raised as one of BSNL's servers contained data similar to samples shared by CERT-In.

To address the aftermath of the breach, the government has swiftly established an inter-ministerial committee tasked with auditing telecom networks. This committee aims to identify vulnerabilities within BSNL's infrastructure and recommend robust measures to fortify network security and prevent future breaches, ensuring the integrity of user data and operational continuity.

A report released in June by Athenian Tech, headquartered in London, shed light on the severity of the breach. It revealed that the compromised data encompassed critical information such as International Mobile Subscriber Identity (IMSI) numbers, SIM card details, and Home Location Register (HLR) data. These revelations underscore the potential implications, as the exposed data could enable malicious actors to clone SIM cards and potentially compromise BSNL's network security.

The government's proactive approach in forming the inter-ministerial committee underscores its commitment to safeguarding national telecom infrastructure against cyber threats. The findings from Athenian Tech emphasize the urgent need for heightened security measures within BSNL to mitigate risks to user privacy and prevent unauthorized access to sensitive information.

As investigations into the breach continue, stakeholders are closely monitoring developments to ensure swift remedial actions and enhanced security protocols across BSNL's network. The incident serves as a stark reminder of the evolving cyber threats faced by telecommunications providers globally, necessitating continuous vigilance and proactive measures to safeguard against future vulnerabilities.