On August 1, 2025, the Bengal Police launched a serious investigation after they discovered that someone had compromised the data centre used by the State Cyber Crime Wing (CCW). This centre handles highly confidential information related to cybercrime investigations across the state.
A private IT company manages the cyber wing’s data, but the police doubt the company’s explanation. The company claimed a ransomware attack was responsible for the breach, which allegedly encrypted all files and systems. However, the police have filed a formal complaint (FIR) with the Bidhannagar Cyber Crime Police Station, suspecting that the incident might be the result of intentional sabotage by the vendor.
According to officials, the issue came to light on the morning of July 28, when the entire data centre went offline. Representatives from the IT firm told the police that a ransomware attack had disrupted services and locked access to all systems. They even found a ransom note during an initial inspection. However, the CCW suspects that this explanation might be a cover-up, as the vendor had full remote access to the system even at the time of the alleged attack.
Sources say that this data centre isn’t just an ordinary server room. It plays a vital role in handling law enforcement data and tools like the CAT C5 application, which helps trace and block Voice-over-IP (VoIP) app-to-app calls — crucial for digital investigations. It supports various police departments in analyzing internet and software-based crimes throughout West Bengal.
Vendor delays and internal lapses deepen cyber breach probe.
Webel Technology Ltd. selected the vendor as the lowest (L1) bidder through an e-tender process in December 2023. The contract included supplying and installing hardware, storage, and licensed software as part of the West Bengal Police State Grid Project. The authorities officially installed and handed over the system on September 30, 2024.
Despite repeated follow-ups, officials from the IT firm reportedly refused to share administrative access and login credentials for the state data centre. Even a high-level meeting held on July 25 at the office of the Director General (DG) and Inspector General of Police (IGP), Cyber Crime Wing, failed to resolve the issue. Shockingly, just two days later, on July 27, multiple police districts across West Bengal began reporting problems with their Virtual Private Network (VPN) connections and were unable to access the critical C5 application.
Sources also revealed that several government officers have come under scrutiny for their possible involvement or negligence in the matter. Some action has already been taken, and senior officers are also being questioned.
The police are currently investigating the matter under multiple sections of the Bharatiya Nyaya Sanhita (BNS), including criminal conspiracy, cheating, and breach of trust, along with relevant sections of the Information Technology (IT) Act.
This incident raises serious concerns about data security and the risks of outsourcing critical infrastructure to private players without proper oversight. The Bengal Police are actively investigating the case, and they expect more developments soon.
Also read: Digital Arrest Scam in Gujarat: Woman Doctor Cheated of ₹19.24 Crore