Key Takeaways:
- Kudankulam nuclear plant hack exposes 14.3 GB of data linked to the facility.
- Leaked documents include engineering blueprints, supplier records, and inspection reports.
- Indian authorities confirm a partial breach at a third-party data center.
Ransomware Attack Targets India’s Largest Nuclear Facility
A ransomware group known as World Leaks has leaked thousands of operational files linked to India’s largest nuclear power facility, the Kudankulam Nuclear Power Plant, on the dark web.
The breach, reported on July 15, 2026, involved approximately 19,000 files totaling 14.3 gigabytes of data. The documents, allegedly stolen from the infrastructure contractor Reliance Group, contain detailed engineering drawings, control room layouts, and inspection records related to the facility’s third and fourth units, which remain under construction.
“The leaked data primarily relates to balance-of-plant facilities rather than nuclear reactor safety systems,” a spokesperson for the Nuclear Power Corporation of India Ltd. (NPCIL) stated. Despite these assurances, cybersecurity experts warn that the information could allow hostile actors to map support infrastructure and identify security weaknesses in the Kudankulam nuclear plant hack.
Contractor Server Targeted in Cyber Infiltration
Reliance Group acknowledged that the breach originated from a server hosted by Yotta Data Services, a third-party Indian data center provider. The company stated that it detected suspicious activity on its servers in late May, confirming that while a partial data breach occurred, its own core business systems remained largely unaffected.
“We immediately informed the government and relevant cybersecurity agencies once the unauthorized access was identified,” a company representative noted. The Indian Computer Emergency Response Team (CERT-In) is currently leading an investigation into the Kudankulam nuclear plant hack to assess the full extent of the exposure.
The incident marks the second time the Kudankulam facility has been associated with a cyber-related event, following a 2019 malware intrusion on its administrative network. Security analysts emphasize that while the reactor systems are isolated from the internet, the reliance on private contractors introduces significant supply chain vulnerabilities.
Security Experts Call for Stricter Infrastructure Audits
The Kudankulam nuclear plant hack has reignited national debates regarding the cybersecurity preparedness of India’s critical infrastructure projects. Experts suggest that as cyber threats become more sophisticated, the current “compliance-focused” security model is insufficient to protect sensitive project documentation from state-sponsored or criminal hacking groups.
“This breach provides an adversary with a clear view of which systems project partners have access to,” said Nickolas Roth, a senior director at the Nuclear Threat Initiative. “Even without accessing reactor controls, the identification of suppliers and security protocols constitutes a serious long-term risk to the site.”
As investigators continue to verify the authenticity of the leaked files, government agencies are urging all contractors involved in national infrastructure to conduct immediate cybersecurity audits. The investigation remains ongoing, with officials working to determine how such a large cache of sensitive documentation was extracted from a supposedly secured server.
Visit CyberPro Magazine For The Most Recent Information.




