NEW DELHI: Multiple vulnerabilities within the system of telecom operator Vodafone Idea have uncovered the decision knowledge information of round 20 million postpaid clients, cyber safety analysis agency CyberX9 stated in a report.
Vodafone Idea (Vi), nevertheless, stated there was no knowledge breach and potential vulnerability in its billing communication was instantly fastened after it realized about it.
According to the CyberX9 report, the vulnerability uncovered postpaid clients’ name knowledge information, comprising the time when a name was made, period of name, location from which the decision was made, buyer’s full identify and deal with, SMS particulars comprising contact quantity to which it was despatched, amongst others.
CyberX9 founder and managing director Himanshu Pathak stated that the agency had shared complete findings with Vodafone Idea by e mail and an organization official had acknowledged the vulnerability on August 24.
Pathak stated CyberX9 reported particulars to Vi on August 22.
“Later on August 22, 2022, Vi confirmed the receipt of our report. Vodafone Idea acknowledged the vulnerabilities discovered and reported by us on August 24, 2022,” Pathak stated.
When contacted, Vodafone Idea stated, “There is no data breach as alleged in the report. The report is false and malicious. Vi has a robust IT security framework to keep our customer data safe.”
“We regularly conduct checks and audits to further strengthen our security framework. We learnt about a potential vulnerability in billing communication. This was immediately fixed and a thorough forensic analysis was conducted to ascertain no data breach,” it stated.
The firm additional stated that it has notified in regards to the potential vulnerability to applicable businesses and made due disclosures, including, “Vi customer data remains fully safe and secure.”