CyberX9 claims exposing of 226 million customers data by Vodafone Idea


By MYBRANDBOOK


CyberX9 claims exposing of 226 million customers data by Vodafone Idea

Cybersecurity research firm CyberX9 has said that multiple system vulnerabilities in Vodafone Idea (Vi) exposed the sensitive and confidential call records and other personal data of around ~226 million (22.6 crore) Vi customers, including 20.6 million postpaid customers for the last 2 years to the internet.

 

Vodafone Idea though vehemently denied the data breach, alleging the report to be false and malicious.

 

In a report the cybersecurity research firm claimed the data exposed by the vulnerabilities included all call records (date/time, other phone number talked to, and duration), all SMS records, internet usage details, full name, Vi phone number, and residential address, among others.

 

“There is no data breach as alleged in the report. The report is false and malicious. Vi has a robust IT security framework to keep our customer data safe. We regularly conduct checks and audits to further strengthen our security framework,” the telco said.

 

The potential vulnerability, as per Vi, was in its billing communication system which was immediately fixed and a thorough forensic analysis was conducted which ascertained that no breach had taken place.

 

As per the company, “We have notified appropriate agencies and made due disclosures. Vi customer data remains fully safe and secure.”

 

According to CyberX9, it discovered vulnerabilities such as improper authorization and Insecure direct object references (IDOR) vulnerabilities, which exposed massive troves of data to the internet.

 E-Magazine 
 VIDEOS  Placeholder image

Copyright www.mybrandbook.co.in @1999-2024 - All rights reserved.
Reproduction in whole or in part in any form or medium without express written permission of Kalinga Digital Media Pvt. Ltd. is prohibited.
Other Initiatives : www.varindia.com | www.spoindia.org