Overview
- World Leaks posted the cache on July 15 claiming roughly 858,000 Reliance‑related files, of which about 19,000 were labeled by the group as sensitive and tied to the Kudankulam Units 3 and 4 project.
- Yotta detected suspicious activity on a Reliance‑hosted server on May 29 and terminated the process, and Reliance has since confirmed a partial breach and told the government about the incident.
- The posted documents reportedly include engineering drawings for ventilation and cooling, a common control‑room floor plan, supplier and vendor lists, meeting and inspection records, and an insurance policy citing $112 million of terrorism coverage, though Reuters and others could not fully verify authenticity.
- India’s nuclear operator NPCIL and cybersecurity agency CERT‑In are investigating and NPCIL has said reactor core systems were not compromised, but security experts warn that exposed balance‑of‑plant and supplier details could meaningfully raise security and supply‑chain risks.
- The leak highlights how third‑party and contractor data can create attack paths for critical infrastructure, recalls a 2019 administrative‑network malware incident at Kudankulam, and may prompt tighter forensic exams, supplier audits, and stricter cloud‑provider controls.