Cyber Incident Victim: Public Distribution Service of Tamil Nadu

On June 28, 2021, cybersecurity firm Technisanct identified a significant data breach impacting the Public Distribution System (PDS) operated by the government of Tamil Nadu. The Bangalore-based company reported that sensitive records of over 4.5 million citizens were compromised and offered for sale on a data-sharing platform. The exposed information included critical Personal Identifiable Information (PII) alongside Aadhaar numbers, India’s national identity documents. A vendor with a history of distributing leaked databases uploaded a link to 5.2 million user records on a prominent hacker forum the same day. This dataset contained 4,919,668 unique Aadhaar numbers directly linked to individuals’ ration entitlements and subsidy benefits under the PDS framework. The breach represented a systemic exposure of welfare management infrastructure, though the specific intrusion vector or duration of unauthorized access remained unspecified in initial disclosures.

The leaked records posed severe risks of identity theft, financial fraud, and social engineering attacks due to the inclusion of both demographic details and national ID numbers. Technisanct’s analysis confirmed the authenticity of the sample data, verifying its alignment with legitimate PDS beneficiary information. While no explicit ransom demands or attacker affiliations were documented, the forum post’s timing and the vendor’s established presence suggested intentional exploitation of the stolen dataset for financial gain. The scale of Aadhaar exposures marked one of the largest government-linked identity breaches in India that year, directly impacting a vital social safety net program. No public statements from Tamil Nadu’s PDS authorities or law enforcement regarding containment measures, forensic investigations, or victim notifications were reported contemporaneously with the breach disclosure.