Jio, India’s biggest mobile network provider, launched its coronavirus symptom checker in March with an aim to help people find relevant resources if needed. [Read: After Facebook’s mega-investment, Indian carrier Reliance Jio raises $748M from Silver Lake] Tushar Pania, a Jio spokesperson said the company has taken down the database: On May 1, security researcher Anurag Sen found a core database related to the service that was accessible without any password. It contained logs and records from April 17 to when Jio took the database off the grid after TechCrunch informed the company.
Stay Safe. Stay Connected. Stay Productive. #COVID19 #CoronaHaaregaIndiaJeetega #JioTogether #JioSymptomChecker pic.twitter.com/U9C6BMzNF9 — Reliance Jio (@reliancejio) March 25, 2020 The 369 GB database contained information such as age, gender, test result, browser version, operating system, and in some instances precise location data. If a user had registered with the service, the database exposed your personal info as well. It’s not clear at the moment if anyone else was able to access the database. While most of the data was anonymized, with location data and other info, cybercriminals might be able to identify an individual. Protecting databases with passwords is one of the basic steps of security, and a company like Jio handling millions of records should be more careful about its systems.
