Jazz (Mobilink) is one of the largest telecommunication networks in Pakistan. The cybercriminals were able to gain access to the details of the 44,000,000 Pakistani mobile users. The attackers leaked the online data by selling a package that contains 115 million Pakistani mobile user records last month for a price of $2.1 million in bitcoin.
Also read: 30 Absolute Top Trending Cyber Attacks
The details of 44 million Mobilink users record has been leaked online and verified as a sample dump of 115 million users database. The leaked data contains personal identity and telephony-related information.
The data breach contains the following records:
- Customer full names
- Home addresses (city, region, street name)
- National identification (CNIC) numbers
- Mobile phone numbers
- Landline numbers
- Dates of subscription
The dump also includes information for Pakistani home users and local companies. The data breach took place in 2017, however, the hackers also accessed the older backup entries files from 2013. Most of the data breach contains the database of Pakistan’s leading telecom company Jazz (Mobilink). However, the experts also identified phone numbers that appeared to belong to other mobile operators.
According to our analysis, there is a doubt that the data was accessed from Jazz servers or from a government organization, a Jazz partner, or a telemarketing company. The Pakistan Telecommunication Authority (PTA) and the Federal Investigation Agency (FIA) already investigating the data breach since the hackers first tried to sell the entire 115 million user’s records.
A well-known cybersecurity company “Rewterz” also confirmed that the data breach was real after analyzing the data records of April and also avoided directly blaming Jazz, lacking any evidence.