Cyber Incident Victim: Reliance Jio
Date:
Jul 2017
Location:
India
Summary
A major Indian telecommunications provider experienced a data breach involving sensitive customer information, with reports indicating over 120 million subscribers' details—including names, mobile numbers, email addresses, and government-issued Aadhaar identity numbers—were leaked. The compromised data appeared on a website prompting visitors to enter mobile numbers to access SIM card specifics, though the company disputed the authenticity of the claims while initiating an investigation. Law enforcement agencies were notified, with commitments to pursue legal action against those responsible. Independent verification by media confirmed valid subscriber information was accessible through the site prior to its takedown. The firm emphasized its security measures and assured customers their data remained protected despite the incident.
| CIA Posture | Motives | Tactics, Techniques & Procedures |
|---|---|---|
| Available to members | 1 motive | 1 technique |
| Threat Actors | Type | Location |
|---|---|---|
| 0 actors | Available to members | Available to members |
Description
On July 9, 2017, reports emerged that Reliance Jio, a major Indian telecom operator, experienced a significant data breach potentially affecting over 120 million customers. Indian technology news outlet Fonearena first disclosed the incident, revealing that a database containing sensitive subscriber information had been leaked and made accessible through the website magicapk.com. The compromised data allegedly included customers' full names, mobile numbers, email addresses, and Aadhaar numbers—12-digit unique identity identifiers issued by the Indian government. The breach became publicly visible when the magicapk.com site, promoted through Indian social media channels, allowed visitors to retrieve SIM card details by entering any Jio mobile number. This unauthorized access method indicated that substantial volumes of customer records had been extracted from Jio's systems, though the exact infiltration vector remained unspecified in initial reports.
Reliance Jio responded to the allegations by questioning the authenticity of the leaked data, with a company spokesperson describing the claims as "unverified and unsubstantiated" while initiating an internal investigation. The telecom provider publicly assured subscribers that their information remained secure under the company's "highest security" protocols, emphasizing that customer data was only shared with authorized entities per regulatory requirements. Concurrently, Jio notified law enforcement agencies about the potential breach and committed to pursuing legal action against those responsible. Fonearena maintained the validity of its reporting, with the article's author confirming they personally verified functional customer data retrievals through the magicapk.com portal before its takedown. The incident occurred during Jio's aggressive expansion phase following its 2016 market entry, which disrupted India's telecom sector through competitively priced data plans and free voice services, positioning the company for nationwide digital service dominance.