Personal data of 47.5 million Indians including their phone number, service provider, name, gender, city, email, and Facebook ID, among other things, was available on the dark web for $1,000 (₹75,000).
It was claimed to be sourced from the caller ID app Truecaller.
Truecaller denied any breach of its database.
Source: https://www.medianama.com/2020/05/223-truecaller-denies-database-breach/
TPRM report: https://scoringcyber.rankiteo.com/company/truecaller
"id": "tru2157291222",
"linkid": "truecaller",
"type": "Data Leak",
"date": "05/2020",
"severity": "85",
"impact": "4",
"explanation": "Attack with significant impact with customers data leaks"{'affected_entities': [{'customers_affected': 47500000,
'industry': 'Technology',
'name': 'Truecaller',
'type': 'Company'}],
'data_breach': {'data_exfiltration': True,
'number_of_records_exposed': 47500000,
'personally_identifiable_information': True,
'sensitivity_of_data': 'High',
'type_of_data_compromised': ['phone number',
'service provider',
'name',
'gender',
'city',
'email',
'Facebook ID']},
'description': 'Personal data of 47.5 million Indians including their phone '
'number, service provider, name, gender, city, email, and '
'Facebook ID, among other things, was available on the dark '
'web for $1,000 (₹75,000). It was claimed to be sourced from '
'the caller ID app Truecaller. Truecaller denied any breach of '
'its database.',
'impact': {'data_compromised': ['phone number',
'service provider',
'name',
'gender',
'city',
'email',
'Facebook ID']},
'initial_access_broker': {'data_sold_on_dark_web': True},
'investigation_status': 'Denied by Truecaller',
'title': 'Truecaller Data Breach',
'type': 'Data Breach'}