Are you a Reliance Jio customer? Beware your details could have been leaked. In what is being touted as one of the biggest data breach in India ever, the customer data of Reliance Jio was posted on a website by the name magicapk.com. However, the company has denied the allegations saying that from the looks of it, the data on the website looks unauthentic but also added that the ‘unverified and unsubstantiated claims of the website’ are being investigated.
Reliance Jio has over 120 million users in India. The site magicapk.com has since gone offline and can no longer be accessed. As per a report in The Indian Express, the breach was first reported by Fonearena.com which found the details of some employees of the company available on the website. However, it is not yet clear whether the data for all numbers was available or was it just for a few of them. Some search queries had no result to know when searched.
As per the report, the site has a search box where the Jio number can be entered, and what you get in return is all the details of the customer. Fonearena has even put the details of at least three numbers for which Aadhaar and emails were also available on the magicpak page.
Jio Customer Database of over 120 million users leaked, could be biggest data breach in India https://t.co/1HseLN2kWg Tip @techmeme
— Varun Krishnan (@varunkrish) July 9, 2017
Crazy big data breach. If you got a Jio sim early on , most likely you are compromised ! https://t.co/vllB0YMED0
— Varun Krishnan (@varunkrish) July 9, 2017
Late on Sunday night, the site seemed to have gone offline. There is no information whether it crashed due to several queries or whether it was suspended by authorities.
Reliance Jio however, has maintained that the company has maintained optimum security. “We want to assure our subscribers that their data is safe and maintained with highest security. Data is only shared with authorities as per their requirement. We have informed law enforcement agencies about the claims of the website and will follow through to ensure strict action is taken,” the spokesperson said over the alleged data leak.
The site was reportedly registered with godaddy.com on May 18, 2017.
