In what could be one of the biggest data breaches in the country, personal details of over 100 million Reliance Jio users have been leaked.
According to a report in Quint, multiple users have reported that a website called Magicapk has access to the data of Reliance Jio users. The name of the user, their mobile number, where the sim was activated from were available for anyone to access.
The data has reportedly been available on this website since July 5.
Many users took to Twitter to express their concern over the issue.
This Reliance Jio user data leak is real. Just tested. https://t.co/JJcuadzm6Yâ€” Gaurav Singh (@sgaurav_baghel) July 9, 2017
Jio leak is real, i got all information!! Posting a video, right now!â€” Vaibhav (@vvaiibhav) July 9, 2017
If it's indeed true that the Reliance Jio customer database has leaked let's remember it was populated on the basis of Aadhaar e-KYC.â€” Apar (@aparatbar) July 9, 2017
Quint reports that it confirmed personally that the data breach is true. On entering mobile number, the First, middle, last name of the person, their email ID, circle ID, date and time of sim activation and in some cases the Aadhaar number were made available.
A data breach of this kind could have serious repercussions of an individualâ€™s privacy.
According to the quint report, it seems the data leak is only confined to early adopters of Jio last year.
After further investigation, it has confirmed that the website has been registered in India, but there are no details as to who owns this portal.
Reliance Jio says that strict measures have been put in place to ensure no major data mishaps take place.
â€śWe have come across the unverified and unsubstantiated claims of the website and are investigating it. Prima facie, the data appears to be inauthentic. We want to assure our subscribers that their data is safe and maintained with highest security. The data is only shared with authorities as per their requirement. We have informed law enforcement agencies about the claims of the website and will follow through to ensure strict action is taken,â€ť said a Jio spokesperson.
Despite Jioâ€™s claims, information on Magicapk said otherwise.
However, it seems like there has been some action taken against the website. Quint reported on Sunday that the breach seemed to be under control and no details of users were available anymore even after entering the Jio number.
As on Monday, the website has been suspended. Trying to access www.magicapk.com throws up an error saying â€śThis account has been suspended. Contact your hosting provider for more information.â€ť