A major data breach has struck Simplex Infrastructures Limited, one of India’s leading engineering and construction companies, resulting in the exposure of 33GB of highly sensitive corporate and employee information.
Breach Details
Date of Attack: The cyberattack occurred on Wednesday, July 23, 2025, targeting the company’s backup and mail servers.
Data Compromised: The breach exposed a massive trove of sensitive information including:
-
Complete database backups
-
Server credential dumps
-
Employee personal information and credentials
-
Corporate email communications
-
Backup server data
Attack Attribution
The breach has been claimed by a threat actor identified as “N1KA” on dark web forums. According to cybersecurity researchers at CYFIRMA, this group has been identified as a highly active entity specializing in data leaks and has connections to multiple security breaches involving unauthorized system access and the attempted sale of exfiltrated data on dark web marketplaces.
Company Profile
Simplex Infrastructures Limited is a prominent Indian engineering and construction firm widely recognized for its large-scale projects across multiple sectors including:
-
Transportation infrastructure
-
Energy projects
-
Real estate development
-
Both domestic Indian and international operations
Security Impact Assessment
The 33GB data dump represents a significant exposure of personally identifiable information (PII) and corporate secrets. The breach targeted critical infrastructure including mail servers and backup systems, suggesting the attackers gained extensive access to the company’s IT environment.
Industry Response
This incident highlights the evolving and persistent nature of cyber threats emerging from underground forums, according to CYFIRMA’s threat intelligence assessment. The breach underscores the critical importance for organizations, particularly large infrastructure companies, to strengthen their cybersecurity posture through:
-
Continuous monitoring systems
-
Advanced threat intelligence capabilities
-
Proactive defense strategies
-
Enhanced protection for sensitive data and infrastructure
The Simplex Infrastructures breach represents another significant cybersecurity incident affecting India’s critical infrastructure sector, demonstrating the ongoing vulnerability of large enterprises to sophisticated cyber attacks targeting backup and email systems.
Sourec:https://x.com/TweetThreatNews/status/1948078841328542026
https://x.com/UndercodeNews/status/1948030700583576030 -
