Breaking Jio customer data leaked online

[abhisek]

So the guy was arrested on this law

That i dont know bro. But there are laws for these kind of privacy thefts.

 

[abhisek]

If any one intersted to read these laws, just google "Information technology act 2008" u will get a pdf link. its just about 35 pages.

 

[Bapun]

In Police Complaint, Reliance Jio Acknowledges Systems Breach

Jio, headed by India’s richest man Mukesh Ambani, rubbished the website’s claims and said its subscriber data was safe and maintained with the highest security. Jio said that data on the Magicapk website appeared to be “unauthentic.”

Meh..!

 

[Sai Jai]

Mumbai: Maharashtra police, probing the case of alleged leak of customer data from India's newest telecom entrant - Reliance Jio, have recovered 50 SIM cards from the 35-year-old computer science dropout from Rajasthan, arrested in this connection.

The cards were recovered in Rajasthan's Churu district, from the house of Imran Chippa, a dropout of the Bachelor of Computer Science, a police official told .

More....

Suspected data leak: 50 SIM cards found from arrested man - ET Telecom

..

 

[Bapun]

The accused, Imran Chhimpa from Churu town, holds a Masters in Computer Application and was placed under arrest after the Maharashtra Cyber Department traced the Internet Protocol address of the website on which he had allegedly uploaded Jio’s customer data.

Man held for Jio ‘breach’ wanted to create search engine: Police

 

[Bapun]

Jio has repeatedly denied any breach took place and said that names, telephone numbers and email addresses of Jio users on a website called "Magicapk" appeared to be "unauthentic." The website was later shut down.

The company, part of conglomerate Reliance Industries Ltd, said on Monday that its subscriber data was safe and protected by the highest levels of security.

However, Jio filed a complaint the same day alleging unlawful access to its systems, police have told Reuters.

Jio did not respond to requests for comment.

In contrast to companies in the European Union, which has stringent data protection standards, companies in India do not have to disclose data breaches to clients, information security professionals said.

"It raises questions of security and accountability," said Pranesh Prakash, policy director at the Centre for Internet and Society (CIS), a research organization.

People complained on Twitter about personal information of Jio users being available on the Magicapk site. Several local news outlets said their checks had led them to believe a leak had occurred.

"A rule to report breaches exists, but it is unenforceable," says Prakash. "It says you're not liable if you're following reasonable security practices. What 'reasonable' means is not defined."

Advocates of stronger laws in India say a data breach in countries with more stringent cyber laws, such as Britain or the United States, would prompt an inquiry by regulators.

After reports of a data leak at Verizon earlier this week, for example, the U.S. telecoms firm quickly responded with an explanation of what had occurred, how it had happened and the extent of the problem.

"India is at a nascent stage. For good norms in Asia, look to Singapore. It's been praised for not having cyber security issues by the UN," Srinivas Kodali, an independent security researcher, said.

Calls for law change after Indians left in dark over data leaks