Airtel has been quick to dismiss the ongoing report alleging that Airtel customer data has been compromised. According to an Airtel spokesperson, this is an attempt to tarnish Airtel’s reputation by vested interests. A thorough investigation has confirmed that there has been no breach whatsoever from Airtel systems, the spokesperson told India Today Tech.
The buzz started when a Twitter account named FalconFeeds.ai shared a screenshot of a forum post in which a hacker — identified as xenZen — was selling data of 375 million Airtel users. The post was made on BeachForums, where users often buy and sell stolen data.
According to the BeachForum post, the data contains following:
– Mobile Numbers
– Names
– Dates of Birth
– Father’s Names
– Addresses
– Email IDs
– Gender and Nationality
– Aadhar Numbers
– Photo ID Proof Details
– Address Proof Details
Despite the uncertainty surrounding the alleged data breach affecting 375 million customers and the involvement of hackers, security researchers are inclined to believe that the situation is not fabricated. Nicolas Krassas, associated with Henkel AG in combating cyber security threats, shared details about the purported Airtel data breach. Srinivas Kodali, known for his insights on cyber security issues in India, was more direct in his assessment. He took to Twitter to state, “Airtel has fallen victim to a threat actor based in China.
The details of 37.5 crore Airtel customers, including their Aadhaar numbers, have been put up for sale. The individual responsible for this data listing has been suspended from the breach forums. India’s Data Protection Act is yet to be enforced.” While Airtel refutes any breach in its systems, it is crucial to acknowledge that data from Indian companies has been compromised in the past. Regardless of whether you are an Airtel subscriber or not, it is imperative to adhere to established cyber-security protocols.
In essence, it is advisable to:
- It is advisable to frequently update passwords for all online accounts associated with the compromised email addresses.
- It is recommended to monitor bank and credit card statements regularly for any unauthorized transactions.
- Enhance the security of online accounts by enabling two-factor authentication (2FA).
- Exercise caution against phishing attempts by refraining from clicking on suspicious links or sharing personal information with unverified sources.