Data Breach Raises Alarms Over Sensitive Land Records in Telangana
In a significant cybersecurity incident, Telangana Chief Minister Revanth Reddy has raised serious concerns regarding a breach of sensitive land records accessed through the Dharani portal—an online platform launched by the previous administration. This breach allegedly exposed critical information related to the state’s farmers, including Aadhaar numbers, bank account details, and personal contact information, to foreign entities, highlighting potential risks, including access by criminal organizations engaged in financial misconduct.
During a discussion on the recently enacted Telangana Bhoobharthi (Land Rights) Act, 2024, Reddy articulated the extent of the problems stemming from the Dharani portal. He pointed out that rather than providing a secure environment for land records, the platform inadvertently facilitated the international transfer of sensitive personal data, compromising the privacy and safety of farmers across Telangana. The Chief Minister emphasized the gravity of the situation, stating, “The information collected from transactions since 2020 has been compromised, resulting in personal data falling into the hands of foreign actors, some of whom may have ties to economic crimes.”
The newly passed Telangana Bhoobharthi Act aims to enhance the security and reliability of land records for approximately 1.52 million acres in the state. The initiative seeks not only to maintain accurate records of land ownership, but also to uphold the rights of landowners amidst a troubling backdrop of unauthorized data access. Reddy assured lawmakers that the legislation would effectively restore public confidence and strengthen the integrity of land records.
Criticism was directed at the prior government’s handling of the Dharani portal, which involved outsourcing critical data processes to foreign companies, including entities associated with tax havens like the Cayman Islands and British Virgin Islands. Findings suggest that firms such as Falcon SG from the Philippines gained unauthorized access to vital land data, raising ethical and security concerns regarding management and oversight of this sensitive information.
The investigation also uncovered troubling practices where private companies manipulated land ownership records, including those pertaining to government and religious assets, without proper authorization. This unauthorized modification and mismanagement of records have sparked serious doubts about the integrity of land data throughout the state.
Upon assuming office, Reddy’s administration scrutinized the agreements made with foreign companies and determined that these contracts violated regulatory guidelines—specifically regarding data security and access. Notably, firms like Falcon Investments, which previously managed the Dharani portal, exhibited uncooperative behavior during the transition of records to the National Informatics Centre (NIC), further complicating the restoration of secure data management protocols.
To counteract the identified vulnerabilities, the Telangana government has initiated plans to migrate the management of the Dharani portal to the NIC, a strategy aimed at ensuring secure and confidential handling of land records. However, this transition has faced resistance from private entities that have retained control over sensitive data, complicating efforts to mitigate risks associated with unauthorized access.
The introduction of the Bhoobharthi Act signifies a concerted effort by the Telangana government to rectify the challenges presented by the Dharani portal’s management and to reinforce data protection under state oversight. While the process has been sluggish due to careful evaluation, Reddy’s administration remains committed to implementing necessary changes that ultimately aim to bolster the security of land records for the citizens of Telangana.
In the context of this breach, potential tactics identified in the MITRE ATT&CK framework suggest initial access methods may have included credential dumping or phishing, followed by privilege escalation tactics that could have enabled unauthorized modifications to sensitive records. This incident underscores the ongoing cybersecurity threats facing governmental data systems and the importance of robust data management protocols to safeguard sensitive information from unauthorized access by both domestic and international actors.
