Telangana Police apps hacked; perpetrator, Jatin Kumar, a 20-year-old student from Noida apprehended

In a significant cybercrime bust, the Telangana Cyber Security Bureau (TGCSB) has apprehended Jatin Kumar, a 20-year-old student from Noida, for hacking into the Hawk Eye and TSCOP applications of the Telangana police. Kumar, originally from Jhansi, was arrested in Delhi after a series of investigations led to his identification.

Details of the Breach

Kumar allegedly hacked into the Hawk Eye and TSCOP applications and posted details of the breach on the forum databreachforum.st. He offered the compromised data for sale at $150, providing Telegram IDs "Adm1nfr1end" and "Adm1nfr1ends" for interested buyers to contact him.

Social media platforms quickly became abuzz with concerns about privacy as screenshots of the breach circulated online. The case was prioritized by the TGCSB, marking it as the ninth cybercrime incident involving state applications this year. The TGCSB's prompt action helped mitigate further potential misuse of the data.

No Sensitive Data Compromised

In an official statement, Telangana Director General of Police Ravi Gupta assured the public that no sensitive or financial data had been compromised. He emphasized that the TSCOP application is used exclusively for internal tasks and does not collect or store any visitor or hotel management data, ensuring that no such data was leaked to third parties.

Investigation and Arrest

The TGCSB's investigation team used advanced tools and social engineering techniques to trace Kumar's digital footprint, leading to his arrest on June 8 in Delhi. Despite his attempts to hide his identity, the team successfully tracked him down. Kumar, who has a history of cybercrimes, was previously involved in a 2023 incident where he leaked Aadhaar data and sensitive information related to the Central Bureau of Investigation (CBI).

Following his arrest, Kumar is being brought to Hyderabad on a transit remand. The TGCSB is now probing whether Kumar had any accomplices or acted alone, focusing particularly on his cryptocurrency transactions related to the sale of the data.

Increased Security Measures

DGP Gupta announced that the police department is conducting thorough security assessments across all their networks and applications to prevent future breaches. Comprehensive monitoring and vulnerability assessments are being carried out on internal and external networks, web and mobile applications, cloud services, and endpoints.

The department also warned against the spread of misinformation related to the breach. Legal actions are being considered against individuals spreading false information that could hinder the ongoing investigation.

The swift action by the TGCSB underscores the importance of robust cybersecurity measures and the need for continuous monitoring to protect sensitive data from cyber threats. The Telangana police remain committed to ensuring the security of their digital platforms and maintaining public trust.