Reliance Jio could be the biggest data breach victim ever in India. The compromised data of nearly 120 million users has been posted on a website, magicapk.com.
In the early phase of the investigation, it seems that data is unauthentic and the claims by the website are unverified and unsubstantiated, and the website has gone offline ever since the news broke.
The breach was first reported by Fonearena.com. Editor of the Fonearena, Varun Krish told indianexpress.com that he was shocked when he found out his and his colleague's personal details on the website.
Then Indianexpress.com authenticated by checking with some Jio numbers and found that details of numbers are up on the site. However, they were not sure whether the data for all the numbers are available on the site.
The website has a search box where you can enter any Jio number and get details of the customer. When they tried to get the details of the number purchased on July 2, 2017, they were able to get the activation date, circle, and name of the customer. While the Aadhar and email numbers were blank for this number.
In a statement, a Reliance Jio spokesperson said, “We want to assure our subscribers that their data is safe and maintained with the highest security. Data is only shared with authorities as per their requirement. We have informed law enforcement agencies about the claims of the website and will follow through to ensure strict action is taken.”