By 
According to reports, the details of a whopping 44 million Pakistani mobile users have leaked online after a cybercriminal tried to sell a package containing 115 million Pakistani mobile user records in April for a staggering $2.1 million in bitcoin.
Copies of both data sets have reportedly been received, while a sample of 55 million user records that were part of the 115 million data dump have also been obtained. Based on the data sets, it can be concluded that the two are the same.
According to an examination of the leaked files, the data includes customers’ full names; home addresses; national identification numbers, mobile phone numbers, landline numbers, and dates of subscription.
Details for companies were in step with public records and public phone numbers registered on companies’ websites. Moreover, it was also verified the validity of the leaked data with several Pakistani users.
Most of the entries in the leaked files had mobile phone numbers from Jazz (formerly Mobilink), a Pakistani mobile operator. Nevertheless, phone numbers that seemed to belong to other mobile operators were also identified.
Consequently, it cannot be concluded, based on real and concrete evidence, that the data was taken from Jazz servers. Presently, it is uncertain if the data came from Jazz itself, a government organization, a Jazz partner, or a telemarketing company.
A Jazz spokesperson did not comment on the matter, but the company earlier disputed that the data came from its servers.
The incident is being probed in Pakistan, with the Pakistan Telecommunication Authority (PTA) and the Federal Investigation Agency (FIA) overseeing the matter since last month.
