- Attacker claims to possess the full source code for Firebird and other proprietary solutions, as well as sensitive client records and internal credentials.
Altruist Technologies, a leading Indian provider of omnichannel communication solutions to major telecommunications and banking clients, is reportedly the target of a major cybersecurity breach.
A threat actor has surfaced on underground forums, as reported by Daily Dark Web, claiming to have gained unauthorised access to the company’s systems and is now offering a trove of allegedly exfiltrated data and source code for sale.
The threat actor asserts that they have extracted a 25GB database from Altruist’s flagship “Firebird” omnichannel platform, widely used by telecom and financial industry clients for secure, multichannel communications.
In addition to the database, the attacker claims to possess the full source code for Firebird and other proprietary solutions, as well as sensitive client records and internal credentials.
As evidence, the actor published screenshots depicting successful database queries, internal user tables, and system-level access on a server identified as firebird-auth-api.altruistindia.com. The individual further alleges ongoing persistent (root-level) access to Altruist’s internal network.
According to the claims, compromised data includes:
- The entire 25GB Firebird database.
- Full source code of the Firebird platform and related solutions.
- Sensitive information about clients.
- Internal user credentials and personal data such as:
- Usernames
- Email addresses
- User roles
- Last login times
As of this report, Altruist Technologies has not issued a public statement regarding these allegations. The incident, if verified, could have significant implications for the company’s clients in highly regulated sectors, potentially exposing sensitive communications data and proprietary technology.
Industry observers note that the sale of such data could increase the risk profile for affected clients, and stress the importance of immediate internal investigations, public disclosure, and engagement with cybersecurity specialists to mitigate potential harm.
Discover more from TechChannel News
Subscribe to get the latest posts sent to your email.
