The personal data of 301 million Vodafone Idea customers have been exposed over a two-year period, claims cybersecurity firm CyberX9 in a report released on Sunday. Vodafone Idea denied the findings, according to the Economic Times, describing the report as 'false and malicious' while defending the company's regularly audited 'robust IT security framework'. The data exposed includes personal data and call logs of all of Vodafone Idea's 20.6 million postpaid subscribers. Other data exposed includes SMS records, residential addresses, phone numbers users spoke with, detailed call records, residential addresses, credit limits, and plan, Internet usage, and billing details, Why it matters: CyberX9 claims the exposure stems from 'easy to discover' vulnerabilities in Vodafone India's systems and that the data may have been stolen by malicious hackers. 'All of these discovered vulnerabilities were possible to be used for large scale automated exfiltration of sensitive and confidential user data without any restrictions by Vodafone Idea’s systems,' the report claims. This data loss could result in 'identity theft, extortion, threats, [and] national security threats.' CyberX9 reportedly shared the report's 16 pages of findings with the telco's 'executive team' including its CEO on August 22nd. The company acknowledged the weakness on August 24th, reports Economic Times, the same day CyberX9 escalated the issue with CERT-In and the National Critical Information Infrastructure Protection Centre (NCIIPC). On August 25th, CyberX9 confirmed that the system weaknesses were 'no longer exploitable'. Acknowledging a 'potential vulnerability in billing communication', Vodafone Idea reiterated in a statement to Economic Times that 'this was immediately…
- RBI increases UPI and recurring transaction limits for certain categories December 8, 2023
- The Quantum Hub discusses concerns on age verification and children’s data processing under India’s data protection law December 8, 2023
- India’s central bank to set up cloud facility for financial sector December 8, 2023
- Navigating the Complexities of Open Source AI: Insights from Carnegie India Summit December 8, 2023
- Supreme Court Dismisses Plea by Foundation for Media Professionals on Internet Shutdowns December 8, 2023
MediaNama’s mission is to help build a digital ecosystem which is open, fair, global and competitive.
Factors like Indus not charging developers any commission for in-app payments and antitrust orders issued by India's competition regulator against Google could contribute to...
Is open-sourcing of AI, and the use cases that come with it, a good starting point to discuss the responsibility and liability of AI?...
RBI Deputy Governor Rabi Shankar called for self-regulation in the fintech sector, but here's why we disagree with his stance.
Straw man fallacy: IT Ministers’ defence of government exemptions in data protection law misses the point
Both the IT Minister and the IT Minister of State have chosen to avoid the actual concerns raised, and have instead defended against lesser...
The Central Board of Film Certification found power outside the Cinematograph Act and came to be known as the Censor Board. Are OTT self-regulating...
Please subscribe to MediaNama. Don't share prints and PDFs.
You May Also Like
Google has released a Google Travel Trends Report which states that branded budget hotel search queries grew 179% year over year (YOY) in India, in...
135 job openings in over 60 companies are listed at our free Digital and Mobile Job Board: If you’re looking for a job, or...
Twitter takes down tweets from MP, MLA, editor criticising handling of pandemic upon government request
By Aroon Deep and Aditya Chunduru You’re reading it here first: Twitter has complied with government requests to censor 52 tweets that mostly criticised...