Brinztech Alert: The Alleged Database of Indian Telecom Companies is on Sale

Dark Web News Analysis

The dark web news reports the continued and aggressive sale of a massive database allegedly containing the personal information of 750 million Indian telecom subscribers. Originally leaked by threat actors identified as CyboDevil and UNIT8200 (affiliates of CyboCrew), this dataset has resurfaced on multiple forums in early 2026, often repackaged or sold at a lower price point.

The sheer volume of the data purports to cover nearly 85% of India’s mobile user base. The exposed fields are critically sensitive, including Full Names, Mobile Numbers, Physical Residential Addresses, Aadhaar Numbers, and potentially IMSI (International Mobile Subscriber Identity) details. While major telecom providers have historically denied direct breaches of their core systems, the accuracy of the sample data suggests a compromise of a centralized third-party repository or a “scraping” of a government-linked database (like the DoT).

Key Cybersecurity Insights

This leak is considered one of the largest in history due to the specific combination of identifiers it exposes, creating systemic risks for the Indian digital economy:

• AePS Financial Fraud: The most severe risk involves the Aadhaar-enabled Payment System (AePS). Criminals can use the leaked Aadhaar Numbers combined with cloned biometrics (often lifted from other sources) to drain bank accounts without an OTP. The leaked Phone Number allows them to target the specific bank accounts linked to that mobile.
• SIM Swapping & Port-Out Scams: With access to a victim’s Address, Aadhaar, and Mobile Number, attackers have all the “KYC” (Know Your Customer) data needed to impersonate the victim. They can convince carrier support to issue a new SIM card, hijacking the victim’s phone number to intercept OTPs for banking, Gmail, or crypto exchanges.
• Physical Stalking & Harassment: The leak connects a digital identifier (Mobile Number) to a physical location (Residential Address). This effectively destroys the anonymity of millions of citizens, allowing harassers, debt collectors, or stalkers to find the home address of any target simply by knowing their phone number.
• Regulatory Fallout (ITSAR): The scale of this leak has reportedly accelerated the Indian government’s push for the Indian Telecom Security Assurance Requirements (ITSAR), leading to controversial demands for smartphone manufacturers to share source code to prove device security—a direct reaction to the “untrustworthy” state of telecom data privacy.

Mitigation Strategies

To protect your identity and finances in the wake of this massive exposure, the following strategies are recommended:

• Lock Aadhaar Biometrics: Every Indian citizen should immediately download the mAadhaar app or visit the UIDAI website to “Lock Biometrics”. This prevents unauthorized use of your Aadhaar for AePS withdrawals or new SIM registrations. Unlock it only when you strictly need to authenticate.
• Monitor SIM Activity: Be vigilant for any “No Service” signal on your phone. If your signal drops unexpectedly for a long period, contact your carrier immediately to ensure no “SIM Swap” request has been processed.
• Two-Factor Evolution: Move away from SMS-based OTPs. Use app-based authenticators (Google Authenticator, Microsoft Authenticator) for all financial and social accounts, as these are immune to SIM swapping.
• DND Activation: Activate “Do Not Disturb” (DND) fully on your number (usually by sending START 0 to 1909) to reduce the influx of spam calls that will inevitably result from this list being sold to telemarketers.

Secure Your Business with Brinztech — Global Cybersecurity Solutions

Brinztech protects organizations worldwide from evolving cyber threats. Whether you’re a startup or a global enterprise, our expert solutions keep your digital assets safe and your operations running smoothly.

Questions or Feedback?

For expert advice, use our ‘Ask an Analyst’ feature. Brinztech does not warrant the validity of external claims. For general inquiries or to report this post, please email us: contact@brinztech.com