Report Alleges Data Breach; Telco Denies

The cybersecurity agency alleged that Vi mishandled the delicate private knowledge of its customers and was negligent

The telecom large has refuted the information breach, calling the report false and malicious

Vi said that vulnerabilities have been recognized, disclosed and glued, and there was no knowledge breach

According to a report launched by the cybersecurity agency CyberX9, vulnerabilities with the telecom operator Vi (previously Vodafone Idea) has uncovered demographics, name data, telephone numbers, web utilization particulars, credit score restrict, and so forth of 301 Mn clients. It added that 20 Mn of those have been Vodafone Idea’s total postpaid client base. 

“This would permanently damage millions of Vodafone Idea customers’ privacy and security,” CyberX9 said in a weblog including its suspects that these leaked knowledge might need already been stolen by malicious attackers. It additional said that the character of the information breach and vulnerabilities signifies negligence on behalf of Vi, which has mishandled the delicate private knowledge of its customers. 

The knowledge leak exposes Vi clients to spam calls, identification thefts, phishing, Business e-mail compromise (BEC) scams, extortion and earnings tax refund scams, CyberX9 claims. It additional alleged Vodafone Idea of exposing delicate knowledge of a number of of its clients for the previous two years, together with 55 Mn customers who’ve ported their numbers to different telecom firms.

Vi had over 247 Mn energetic subscribers at the start of the yr.

The telecom large later refuted the information breach, calling the report false and malicious. 

In a press release days earlier than CyberX9’s report, Vi has stated that it discovered a possible vulnerability in its billing system by way of forensic audit, which was instantly fastened. It added that there was no knowledge breach. It claims to have made due disclosures, together with notifying the vulnerability to applicable companies and its customers on its web site.

Vi data breach

The cybersecurity agency contested Vodafone Idea’s declare of a forensic audit, stating {that a} detailed forensic audit would require months. 

This yr, it’s the second knowledge leak report on Vi’s. In April 2022, a cybersecurity researcher and moral hacker Sunny Nehra, alleged a listing leak of Vi clients on the darkish net, most certainly resulting from a weak ID password.

Of late, a number of safety vulnerabilities and knowledge breaches have come to mild, the latest being Shipyaari and Cleartrip.

Leave a Comment