• Hello and welcome! Register to enjoy full access and benefits:

    • Advertise in the Marketplace section for free.
    • Get more visibility with a signature link.
    • Company/website listings.
    • Ask & answer queries.
    • Much more...

    Register here or log in if you're already a member.

  • 🎉 WHV has crossed 14,000 monthly views and 157,000 clicks per month, as per Google Analytics! Thank you for your support! 🎉

After 16 Billion Login Records Leak, India Switches to New Government Email Domain

johny899

New Member
Content Writer
Messages
460
Reaction score
3
Points
23
Balance
$519.4USD
This is significant news. India has disclosed that 16 billion login credentials were posted online. In response to the breach of security on official government email, they intend to migrate all accounts to a new email domain.

What was leaked?​

In June of 2025, cybersecurity experts discovered an enormous breach:

  • 16 billion login credentials were posted online.
  • This included usernames, email addresses, passwords, and login tokens.
  • The breach originated from all major platforms, such as Google, Apple, Facebook, Telegram, GitHub, X (Twitter), and some VPNs.
The government has reported that they have found no evidence that official emails (@nic.in) have been hacked, but they do not want to take any chances.

What does this mean?​

A new email domain: @mail.gov.in

All Ministries and Departments will migrate to the new email domain: @mail.gov.in away from their current email domain - @nic.in.

  • Emails will be more secure.
  • It gives the government improved security oversight.
  • The transition will be led by a vendor called Zoho.

Reasons for the change​

  • A phishing attempt was made against a defense email which made it high priority.
  • CERT India reported leaked passwords could again be used to access government email without us knowing.
  • Old email platforms are less secure than newer email systems justifying new email systems.

Here’s what you should do​

CERT In recommends everyone:

  • Change your passwords ASAP
  • Implement multi-factor-authentication (MFA)
  • Be vigilant of suspicious emails
Hackers can:

  • Re-use passwords that have been leaked online (credential stuffing)
  • Deceive individuals using fake emails
  • Deploy ransomware or breach systems
Even if government emails are safe currently, acting sooner is better than later.

In my opinion​

I think it is smart to switch to a new email domain. A leak that involves this many individuals and accounts is nothing to ignore. Mentioning you had no concerns about your account at the time doesn’t mean that you won’t be impacted in the future. Old passwords or previous phishing attacks could very well have ongoing affects.

If I were to take charge, I would:

  • Transition over to new emails as quickly as possible
  • Employ strong, well-unique passwords
  • Implement MFA everywhere
  • Be cautious of links in emails

Takeaways​

India, following a leak that compromised 16 billion records, transitioned many governmental email accounts from one domain (@nic.in) to another (@mail.gov.in) with the objective of improving protection of user accounts and allowing the authorities to establish certain controls. CERT In recommends that everyone institutes account safety procedures as a matter of right-now attention.

Keeping your accounts and online engagement safe in today’s world is so much more critical than anything before. Don’t wait to implement changing your passwords and don’t delay yourselves from becoming aware of your activity.
 
You must log in or register to reply here.
Menu
Log in
Register