Russia

No safety info exposed in India nuclear plant data breach – operator

RT English · 2026-07-16

AI SUMMARY

• What happened: The Nuclear Power Corporation of India (NPCIL) reported a data breach at the Kudankulam Nuclear Power Plant, asserting that no critical safety or security information was compromised, as the leaked data pertains to common service facilities. • Why it matters: The breach, involving approximately 19,000 files posted on the dark web by the ransomware group World Leaks, raises concerns about cybersecurity at critical infrastructure sites, despite NPCIL's reassurances regarding the integrity of nuclear operations. • What to watch next: Ongoing investigations into the breach, the response from NPCIL and Reliance Group, and potential implications for cybersecurity measures at nuclear facilities in India will be closely monitored.

**No Safety Information Compromised in Kudankulam Nuclear Plant Data Breach, Operator Asserts**

The Nuclear Power Corporation of India Limited (NPCIL), which operates India’s largest nuclear power facility, the Kudankulam Nuclear Power Plant, has issued a statement denying that any critical safety or security information was compromised in a recent data breach. The breach, reported by the ransomware group World Leaks, involved a substantial cache of documents, but NPCIL clarified that the exposed data pertains to common service facilities rather than the nuclear operations of the plant itself.

According to NPCIL, the leaked information does not relate to any systems or information concerning nuclear safety or security. The corporation described the facilities involved as conventional, akin to those found in thermal power plants and other industrial processes. This assertion aims to reassure the public and stakeholders about the integrity of the plant's core operational systems.

The incident came to light when World Leaks posted approximately 19,000 files, amounting to 14.3 gigabytes, on the dark web. These files reportedly included blueprints and details about suppliers tied to the Kudankulam facility. The plant, located in Tamil Nadu, is being developed in partnership with Russia's state-owned nuclear energy corporation, Rosatom. Currently, two of its six planned pressurized water reactors are operational, each with a capacity of 1,000 megawatts.

The breach is said to have originated from a contract awarded to the Reliance Group, led by Indian businessman Anil Ambani, in 2018. This contract involves the construction of various systems for the power plant, excluding the nuclear components. Following the data leak, Reliance Group confirmed a "partial breach" of its data hosted on a server managed by Yotta, a third-party data center service provider. The company has notified the government about the incident.

Yotta has stated that it managed to thwart the execution of suspected ransomware on May 29, prior to the breach becoming public knowledge. However, security experts have raised concerns regarding the potential implications of the data leak. Nickolas Roth, a senior director at the Nuclear Threat Initiative, warned that the breach could pose a serious risk to the safety of the plant, although the authenticity of the documents shared on the dark web has not been verified by independent sources.

The dark web, where the data was posted, is a part of the internet that is not indexed by traditional search engines and requires specialized software to access. World Leaks is known for releasing stolen corporate data when victims refuse to comply with ransom demands. In a previous incident, the group published sensitive files from Tata Group after the conglomerate did not meet a $1.5 million ransom request.

This breach is not the first cybersecurity incident involving the Kudankulam plant. In 2019, malware associated with a North Korean hacker group was discovered on the plant's administrative network, raising alarms about the cybersecurity measures in place at critical infrastructure sites.

As the situation develops, NPCIL continues to emphasize that the integrity of the Kudankulam Nuclear Power Plant's safety and security systems remains intact, and it is working closely with relevant authorities to address the breach and mitigate any potential risks.

Source: RT English
RELATED NEWS

More Stories

All News
Russia

Transfer of extra funds to Kiev fueling escalation with Russia — Finnish politician

• What happened: Finnish politician Armando Mema criticized the European Commission's decision to allocate an additional 10 billion euros to Ukraine for mi...

Russia

MOEX Index down below 2,025 points first since October 21, 2022

• What happened: The MOEX Index fell below 2,025 points for the first time since October 21, 2022, closing at 2,023.66 points after a 4.18% drop during trading....

Russia

Russian troops trying to eliminate pocket of resistance in DPR — official

• What happened: Russian troops are attempting to eliminate a pocket of resistance between Konstantinovka and Chasov Yar in the Donetsk People's Republic (...

Russia

Strait of Hormuz is Iran’s nuclear weapon – ex-Indian diplomat (VIDEO)

• What happened: Former Indian diplomat Rajiv Sikri stated in an interview that Iran has recognized the strategic importance of the Strait of Hormuz as a key as...

Russia

Houthis threaten to attack Saudi oil facilities

• What happened: Yemeni rebel leader Abdul-Malik al-Houthi threatened to target Saudi oil facilities in response to any aggression from Saudi Arabia against the...

Russia

Zaporozhye NPP engineer was killed with help of NATO intelligence — expert

• What happened: Alexander Yakovlev, the chief engineer of the Zaporozhye Nuclear Power Plant, was killed in a drone strike carried out by Ukrainian forces, all...