The hacker group Anonymous India has claimed that Reliance Jio is sharing call data with advertisers. After the commercial launch of Jio services on 5 September, this accusation will add to the woes of the newest network provider in the market.
Last year, Anonymous India wrote a blog post citing security flaws in the Reliance Jio chat app. The post claims that the company used no encryption to transfer messages, so it was vulnerable to attacks from hackers.
The latest revelation by Anonymous India suggests that call data from Jio apps are going to servers situated in USA and Singapore. Additionally, the data is being shared with an advertiser called Mad-me.
On its website, Anonymous also provided a step outline of how call data can be diverted to the advertiser.
1. Download and install Burp Suite (free edition) which is a security monitoring tool for applications.
2. Configure your Android device to send the traffic via Burp Suite.
3. Download My Jio app and the Jio dialer application from Google Play store.
4. Start capturing and keep intercept off.
5. Go to My Jio app and let it update.
6. Go to home and use native dialer to make calls.
7. Calling data is sent on random interval to app.cobal.mad-me.com from mobile, for fast result close all apps and open native dialer again.
8. You will get the packet being sent in proxy history.
After the launch, Jio is confronting a scarcity of SIMs because of high demand. Often, there are long lines outside Reliance digital stores. Reliance is also facing strong resistance from other telcos in giving it adequate interconnection points for calls.
Currently, Jio customers are experiencing heavy call-drops. On an average, the Jio network is seeing almost 12 crore call drops to other networks every day. It has been reported that 80-90 percent of the calls made to the other networks fail.