Indian Telecom App Exposed Data Of 320 Million Users, Thanks To A Bug


A security bug in the Airtel Mobile app, the official app of India’s telecom giant Bharti Airtel, exposed the personal information of millions of users, according to reports.

A Bengaluru based researcher, Ehraz Ahmed, first noticed the security flaw in the Airtel’s Application Program Interface (API). The bug enabled crooks to draw user’s sensitive information such as email ID, subscription information, IEMI number, etc.

Airtel fixed the security flaw once the issue was highlighted in news reports.

“There was a technical issue in one of our testing APIs, which was addressed as soon as it was brought to our notice,” an Airtel spokesperson told BBC.

Information leaked of millions

In a blog post, Ehraz mentions the list of information leaked in the Airtel’s app data breach

  • First & Last Name, Gender, Email, Date of Birth,
  • Address
  • Subscription Information
  • Device Capability information for 4G, 3G; GPRS
  • Network Information
  • Activation Date
  • User Type [Prepaid/Postpaid]
  • Current IMEI number.

While the security flaw was located in the Airtel Mobile app, Ehraz writes that the flaw may have jeopardized data of telecom’s 325 million active users (September 2019).

Data breaches have become frighteningly common in recent times. Last month, OnePlus confirmed a security breach that enabled crooks to take out sensitive information from the OnePlus official website.

Also Read: Apple Might ‘Kill’ Lightning Port For 100% ‘Wireless iPhone’ In 2021
Charanjeet Singh

Charanjeet Singh

Charanjeet owns an iPhone but his love for Android customization lives on. If you ever ask him to choose between an iPhone, Pixel or Xiaomi; better if you don't.
More From Fossbytes

Latest On Fossbytes

Find your dream job