1/2‼️🇮🇳 BLS International allegedly breached exposing 29 million records, source code, and SSH...

Summary

BLS International, a major Indian visa services provider, has allegedly suffered a significant data breach exposing approximately 29 million records along with sensitive backend source code, AWS S3 bucket contents, MySQL ROOT credentials, and SSH private keys. The threat actor claims to be selling these compromised assets on underground forums. This breach affects a critical infrastructure provider handling visa processing for multiple countries and represents a severe compromise of both customer data and system security credentials.

Indicators of Compromise

• malware — BLS International breach data

Entities