CloudSEK researchers warned that a database containing data of 750 million Indian mobile subscribers was offered for sale on dark web hacker forums earlier in January.
According to the researchers, at least two cybercrime gangs, CYBO CREW affiliates known as CyboDevil and UNIT8200, were offering the database for $3,000.
The database is 1.8TB in size and contains Indian mobile subscribers’ names, phone numbers, addresses, and Aadhaar details.
The cyber gangs claim to have “obtained the data through undisclosed asset work within law enforcement channels” rather than as a result of a leak from Indian telcos. CloudSEK told The Register that its initial investigation found that the leak affects all major telecom providers. “The leak of Personally Identifiable Information (PII) poses a huge risk to both individuals and organizations, potentially leading to financial losses, identity theft, reputational damage, and increased susceptibility to cyber attacks,”
CloudSEK notified relevant authorities and potentially impacted organizations.
The data leak exposes mobile subscribers to serious risks; the stolen data can be used to carry out a broad range of malicious activities against them, including financial fraud and identity theft
(SecurityAffairs – hacking, dark web)