The threat actor is leaking the database of Pakistan’s leading telecom service Mobilink’s (now @jazzpk).
The database contains personally-identifiable and subscription information for 44,000,000 Pakistanis, including customer full names, home addresses (city, region, street name), National identification (CNIC) numbers, mobile phone numbers, landline numbers, and dates of subscription.
It seems that the huge trove of data was the result of a data breach that took place in 2017, the oldest entries are dated back as 2013.
Last month, a hacker offered for sale a dump containing 115 Million Pakistani mobile user records for over $2 million worth of bitcoin.
Experts at ZDNet have obtained a copy of the dump containing 44 Million records determined that it is part of 115 Million data dump.
The dump also includes information for Pakistani companies.
At the time it is not possible to determine if the dump has been stolen from Jazz servers, it is possible that hackers breached the systems of one of its business partners or a government organization.
Please vote Security Affairs for European Cybersecurity Blogger Awards – VOTE FOR YOUR WINNERS
(SecurityAffairs – Pakistani mobile users, hacking)