Vi Allegedly Exposed Data of 301 Million Customers, Telco Denies Claim

Vi (formerly Vodafone Idea) has exposed the data of its users—which includes records of more than 20 million postpaid customers — to hacking, claims cyber security company CyberX9. Phone numbers, addresses, call logs, SMS records, and mobile Internet usage details of around 301 million customers including all postpaid users were found to have leaked online. Vodafone Idea later refuted the data breach, calling the report false and malicious. It reportedly claimed that the potential vulnerability in its billing communication was immediately fixed after the Telecom company learned about it.

As per a report by cybersecurity firm CyberX9, multiple vulnerabilities with Vi have exposed call records, SMS details, Internet usage details, location details, full name, Vi phone number, residential address, alternate contact number, bill details and more of nearly 301 million customers. They claimed that the exposed data includes records of the 20 million customers subscribed to the telecom giant's postpaid services. The call data records exposed allegedly include personal details comprising Vi customer's phone number and alternate contact number, residential address, and details about their family members.

“This would permanently damage millions of Vodafone Idea customers privacy and security”, said CyberX9. The company further alleged Vodafone Idea of exposing sensitive data of customers for the last two years saying that the leaked data might have already been stolen by malicious hackers.

Vodafone Idea, meanwhile, denied the claim. Gadgets360 reached out to the company for a comment on the issue, and received the following statement from a Vi spokesperson:

“There is no data breach as alleged in the report. The report is false and malicious. We learnt about a potential vulnerability in billing communication. This was immediately fixed and a thorough forensic analysis was conducted to ascertain no data breach. We have notified appropriate agencies and made due disclosures.”

“Vi customer data remains fully safe and secure,” Vi added.