This Website Has Leaked Details of Reliance Jio Users in India

It seems the data leak is only confined to early adopters of Jio last year.

S Aadeetya

10 Jul 2017, 11:17 AM IST

A Reliance Jio 4G SIM.

Multiple users in India have reported that a website called Magicapk has access to data of existing Reliance Jio users. After cross-checking ourselves, The Quint confirm that the data breach is true, with leaked details such as name of the user, his/her Jio mobile number and the region from where they have activated the connection available on the portal.

Reliance Jio has over 100 million users on its network right now, and if the data breach reported affects all its users, then we’re looking at a serious situation, especially for those who have multiple Jio connections.

Many users tweeted in angst, expressing concern about the security of their data.

Many people are reporting that Reliance #Jio user's Data are leaked on https://t.co/IRxDJtAasH #Sad #Privacy
— SANJAY BAFNA (@sanjaybafna) July 9, 2017

Jio user Data leakedhttps://t.co/fjBRRmTWNm
— â¨Amit Meena ð (@amit_meena) July 9, 2017

Jio user's details leaked (including name, activation date,email) massive breach in India. 50-70% of 120 million customer's can be effected.
— Imtiaz (@Im3iaz) July 9, 2017

Jio was one of the first telecom operators in India to use Aadhaar ID for SIM activation. Users were signed up in a matter of minutes just by verifying their biometric data and their Aadhaar number.

As you can see below, even though the Aadhaar number isn’t revealed here, one cannot be sure that whoever has registered the website doesn’t already have the details with them.

Details of Jio user out in the open.

We’ve checked with multiple Jio users, and it seems the data leak is only confined to early adopters of Jio last year.

Doing further investigation on the whereabouts of the website, we can confirm that the website has been registered in India, but there are no details as to who owns this portal.

Domain details about the Magicapk.com website.

The Quint has reached out to Reliance Jio in the meanwhile, and the company has informed that strict measures have been put in place to ensure no major data mishaps take place.

We have come across the unverified and unsubstantiated claims of the website and are investigating it. Prima facie, the data appears to be inauthentic. We want to assure our subscribers that their data is safe and maintained with highest security. The sata is only shared with authorities as per their requirement. We have informed law enforcement agencies about the claims of the website and will follow through to ensure strict action is taken.

Jio spokesperson

After checking multiple times, it seems the breach has been taken under control now. As shown in the screenshot of the website below, no details of users were available anymore even after entering the Jio number

The leak appears to have been plugged later.

Stay tuned to The Quint for more on this story.