Cryptolulz666 gained access to user data, including emails, passwords, phone numbers, and security questions, by breaking into the Indian Institute of Technology Kharagpur's database.
The hacker claimed to have access to over 12,000 users' data, but he only disclosed a small percentage of it on Pastebin as evidence of the attack.
The hacker draws attention to the companies' lax security once more. His goal is to make the authorities aware of this.
Although there were around 12555 users in the database, the hacker only disclosed less than 25% of it because the organisation could face legal action for this information disclosure.
Source: https://securityaffairs.com/54526/data-breach/indian-institute-of-technology-kharagpur-hacked.html
"id": "IND253131123",
"linkid": "indian-institute-of-technology-kharagpur",
"type": "Breach",
"date": "12/2016",
"severity": "60",
"impact": "3",
"explanation": "Attack with significant impact with internal employee data leaks"