Kudankulam Nuclear Power Plant Data Leak: Ransomware Group Claims to Publish Thousands of Files
A ransomware group has claimed to have leaked over 19,000 sensitive files related to the Kudankulam Nuclear Power Plant on the dark web.
Muskan Kumawat Verified Public Figure • 16 Apr, 2026Journalist
Jul 15, 2026 • 6:54 PM
I
India
NEWS CARD
“Kudankulam Nuclear Power Plant Data Leak: Ransomware Group Claims to Publish Thousands of Files”
Read more onen.sangritimes.com/s/86c53b
15 Jul 2026
https://en.sangritimes.com/s/86c53b
Copied
Kudankulam Nuclear Power Plant Data Leak: Ransomware Group Claims to Publish Thousands of Files
A ransomware gang claims to have dumped thousands of files belonging to India's largest nuclear power plant, namely the Kudankulam Nuclear Power Plant. Experts have said that such an action poses a significant security threat for the plant.
According to the hackers operating under the name 'World Leaks,' more than 19,000 documents related to the Kudankulam Nuclear Power Plant of Tamil Nadu have been published on the dark web. These documents make up part of a total of 858,000 documents that hackers claim to have stolen from the Reliance Group, one of the contractors of this project.
The Reliance Group, in turn, informed Reuters that a limited breach took place in its data stored in servers managed by Yotta, a third-party Indian data center operator. They stated that the government has been informed of the incident. The company did not disclose exactly which data had been compromised.
Reuters reviewed the leaked documents-dating from 2016 to 2025-but could not independently verify their authenticity. According to reports, the files include engineering blueprints for ventilation and cooling systems, floor layouts for the common control room, equipment inspection reports, supplier lists and vendor proposals, meeting records, and insurance policies.
These documents primarily pertain to Units 3 and 4 of the Kudankulam plant, which are currently under construction and expected to become operational by 2027. It appears that the files do not include designs for the nuclear reactor's core systems, which are supplied by the Russian state-owned company Rosatom. Nicholas Roth, a senior director at the Nuclear Threat Initiative, stated that the data breach could pose a serious threat to the plant's security. He told Reuters that this could reveal to an adversary not only who has access to the project but also which specific systems that access covers.
Although there is no evidence that active reactor systems have been compromised, cybersecurity experts say the leaked information could still be valuable to hostile forces. Attackers could exploit vulnerabilities in related infrastructure or third-party supply chains.
According to Jagran sources, India's Computer Emergency Response Team is investigating the breach in collaboration with the Nuclear Power Corporation of India. Data center provider 'Yotta' reported detecting suspicious activity on a server on May 29 and thwarting a suspected ransomware attack; however, Reliance Infrastructure later informed them of claims regarding a data leak.
Neither the Department of Atomic Energy nor the Prime Minister's Office has publicly commented on the Reuters inquiry. 'World Leaks'-a group that previously targeted the Tata Group and Nike-also did not respond.
This incident occurs amidst growing concerns regarding the cybersecurity of India's critical infrastructure. According to the cybersecurity firm 'Surfshark', 28.9 million accounts in India were compromised last year, making it one of the countries most affected by data leaks globally.
Muskan Kumawat is a Journalist & Content Writer at Sangri Times English, covering a wide range of topics, including news, entertainment, and trending stories. With a strong passion for storytelling and in-depth reporting, she delivers engaging and informative content to readers.