Beginning in May 2025 and peaking mid-July, India has seen a surge in bomb threat emails targeting key locations—schools, colleges, religious sites, and stock exchanges. Although no explosives have been found, the scare caused mass evacuations, panic, and extensive security sweeps.
-
May 2025: Taj Mahal, Agra
-
July 14–18: Over 45 schools in Delhi and 40 in Bengaluru received bomb emails, many referring to explosives in plastic bags.
-
July 15: Bombay Stock Exchange
-
July 16: Schools like St. Thomas and Mother International reported threats, raising the total to over 10 institutions.
These emails were traced back to platforms like Microsoft Outlook and Atomic Mail, often routed through TOR to hide identities. Microsoft Platforms – Outlook and Hotmail are repeatedly being abused by Threat Actors.
ommon Threads: Tamil Nadu Link, Fake IDs, and VPNs
A clear pattern is emerging. Many threat emails contain references to Tamil Nadu, DMK, or Anna University. Email accounts often carry suspicious or politically themed names like drezhilanaganathan@outlook.com or aliases like “Roadkill” through Atomic Mail (roadkill333@atomicmail.io).
In Tamil Nadu alone, over 200 similar cases were reported. The accused used a combination of fake email IDs, VPNs, virtual numbers, and dark web tools to orchestrate these nationwide hoaxes. According to the Ahmedabad Cyber Crime Branch, one key suspect from Chennai was arrested for sending such threats to schools and stadiums across multiple states.
Investigative Dead Ends: Microsoft & Atomic Mail Non-Cooperation
Law enforcement agencies, especially in Chennai and Thiruvananthapuram, have struggled to trace the culprits due to a lack of cooperation from email service providers. Key challenges include:
-
Delayed or vague responses to official data requests
-
Microsoft citing privacy rules and absence of a US–India treaty
-
Lack of alternate IDs or mobile numbers from requested accounts
-
Courts had to intervene to compel Microsoft’s compliance—one even named a Microsoft nodal officer in the proceedings
Atomic Mail’s lack of jurisdiction and anonymity-based service model further complicate investigations.
Policy Push: India Demands Intermediary Accountability
Union Minister Ashwini Vaishnaw reiterated the government’s stance, stating:
“Law of the land is supreme. Intermediary to ensure accessibility of its services to all users and respect their rights under the Constitution of India.”
The Ministry of Home Affairs, through the Indian Cybercrime Coordination Centre (I4C), is now working with states to tackle this rising threat and pushing for intermediary reforms under the #IntermediaryGuidelinesAmendment framework.
The hoax threats, while fake in substance, are very real in impact—diverting resources, straining law enforcement, and spreading fear across educational campuses. With platforms like Microsoft Outlook and Atomic Mail under scrutiny, the case underscores the pressing need for digital accountability in India’s evolving cybercrime landscape.
Prof. Triveni Singh, a renowned cybercrime expert and retired IPS officer known for cracking several high-profile cyber cases, emphasized the growing seriousness of bomb threats facilitated through Microsoft Outlook, Hotmail, and Atomic Mail.
“I urge citizens not to panic upon receiving such emails but to report them immediately to their nearest cyber police station or through the Cybercrime Portal,” he said.
He also called on cybersecurity experts and academic researchers to collaborate with law enforcement agencies in identifying and apprehending those behind these digital hoaxes.
