This Website Has Leaked Details of Reliance Jio Users in India

-

On Sunday evening, a website called “magicapk.com” surfaced that contained the personal data of millions of Reliance Jio users.

Screenshot of leaked Jio data. Credit: Twitter

New Delhi:  A website that reportedly contained the personal data of millions of Reliance Jio users surfaced on Sunday evening and crashed later that night presumably due under a high load of web traffic.
At roughly 6 pm on Sunday, a website called “magicapk.com” started making its way through various Indian social media channels including Twitter, WhatsApp and Reddit India. The website, which came with a simple user interface as shown above, simply asks visitors to enter a Reliance Jio mobile number to get access to “Jio sim details”.
Throughout the evening, the authenticity of some of the leaked data was confirmed by users online as well as tech website Fonearena.
It should be noted that the scale of this data breach is unclear at this point: when The Wire tried searching for a few Reliance Jio numbers, no results or personally identifiable information turned up.
When contacted, a Reliance Jio spokesperson pointed out that “prima facie, the data appears to be unauthentic”.
“We have come across the unverified and unsubstantiated claims of the website and are investigating it. Prima facie, the data appears to be unauthentic. We want to assure our subscribers that their data is safe and maintained with highest security. Data is only shared with authorities as per their requirement. We have informed law enforcement agencies about the claims of the website and will follow through to ensure strict action is taken,” a company spokesperson said.
However, as pointed out above, multiple Reliance Jio customers confirmed online that their data had indeed been leaked and that the data leak was in part authentic. This, according to multiple cyber security experts, throws some doubt on the company’s steadfast denial.
By 11 pm on Sunday, and as of the time of publishing this article, the MagicaPk website had crashed and visitors looking to figure out if their data had been leaked were denied such an opportunity.
Instead, visitors were greeted with an announcement that “this account has now been suspended”, presumably by the website’s hosting service provider.
Source : The Wire

Comments

Post a Comment

Popular posts from this blog

Kali Linux 2017.2 Released with Powerful New Tools

-
Image
Kali Linux is a Penetration Testing Distribution based on Debian. Developed by Offensive Security. It is the world’s most capable and famous security testing platform, utilized by security experts in an extensive variety of specializations, including penetration testing, forensics, reverse engineering, and vulnerability assessment. Kali Linux 2017.2 With the new release, they have added dozens of Powerfull tools and also updates for existing tools, if you are kali lover then it’s time to Upgrade by using following Commands. First Time users can download from here . Some New Tools hurl  – a beneficial little hexadecimal and URL encoder/decoder phishery  – phishery lets you inject SSL-enabled basic auth phishing URLs into a .docx Word document ssh-audit  – an SSH server auditor that checks for encryption types, banners, compression, and more apt2  – an Automated Penetration Testing Toolkit that runs its own scans or imports results from various scanners, and t
Read more

Wannacry/ WannaCrypt Ransomware First Analysis Report

-
Image
CRITICAL ALERT Wannacry/ WannaCrypt Ransomware Original Issue Date:- May 13, 2017 Updated On:- May 15, 2017 Virus Type:-  Ransomware It has been reported that a new ransomware named as "Wannacry" is spreading widely. Wannacry encrypts the files on infected Windows systems. This ransomware spreads by using a vulnerability in implementations of Server Message Block (SMB) in Windows systems. This exploit is named as ETERNALBLUE. The ransomware called WannaCrypt or WannaCry encrypts the computer's hard disk drive and then spreads laterally between computers on the same LAN. The ransomware also spreads through malicious attachments to emails. In order to prevent infection, users and organizations are advised to apply patches to Windows systems as mentioned in Microsoft Security Bulletin MS17-010. https://technet.microsoft.com/library/security/MS17-010 After infecting, this Wannacry ransomware displays following screen on infected system: Source: Symante
Read more

RoboTryst-2017 IIT Delhi

-
Image
Tryst  is the annual technical festival of the  Indian Institute of Technology Delhi , held in February and March. The festival is the largest technical fest of North India with a huge footfall of more than 45,000 people around the globe. It is one of the largest and a highly acknowledged technical festival of India .It is entirely organized by the  IIT Delhi  student body and serves as a perfect launch-pad for technology enthusiasts to showcase their intelligence and inventiveness and a massive platform for various activities, organized in the form of competitive events, guest lectures, technical workshops and exhibition.The festival has always been driven by the motivation to bring together the world’s leading scientific minds along with renowned technologists and influential thinkers and connect them to a broader public involving students and faculty across India. Tryst 2017 will be held from 26th Feb – 29th Feb 2017, and will feature an impressive line-up of more than 50
Read more