The Risks of Using Dalil, a Caller ID App That Revealed 5 Million Users' Data

Unsichere Dali-App legt 5 Millionen Nutzerdaten offen: What You Need to Know

Dalil is a popular phonebook app in Saudi Arabia and some other Arab countries. It has more than 5 million downloads and helps users identify unknown numbers. However, a recent security breach has exposed the personal data of millions of users to hackers and third parties. Here are some important facts you need to know about this incident.

Unsichere Dali-App legt 5 Millionen Nutzerdaten offen

Download File: https://www.google.com/url?q=https%3A%2F%2Ftlniurl.com%2F2tM4cy&sa=D&sntz=1&usg=AOvVaw0u1ExwOAdR4l7WLKFSivDv

How did the breach happen?

The breach was discovered by VPNMentor, a team of security researchers led by Noam R., a white hat hacker and activist. They found that Dalil's database was unsecured and accessible without authentication. This means that anyone with an internet connection could access the data of millions of users without a password.

The database contained both device data and user data. The device data included phone number, IP address, IMEI, device model, token, serial number, operating system, SIM card and network operator information, GPS and network location information. The user data included personal email account, first and last name, gender and occupation.

What are the risks for the users?

The exposed data could be used by hackers and third parties for various malicious purposes. For example:

Identity theft: Hackers could use the personal information to impersonate users and access their online accounts or services.

Spam and phishing: Hackers could use the email addresses and phone numbers to send spam messages or phishing emails to trick users into revealing more sensitive information or downloading malware.

Stalking and harassment: Hackers could use the location information to track users' movements or target them with unwanted calls or messages.

Blackmail and extortion: Hackers could use the personal information to blackmail or extort users for money or favors.

What can the users do to protect themselves?

If you are a user of Dalil app, you should take some steps to protect yourself from the potential consequences of the breach. For example:

Delete the app: The best way to prevent further exposure of your data is to delete the app from your device and stop using it.

Change your passwords: You should change your passwords for your email account and any other online accounts or services that you use with the same email address or phone number.

Monitor your accounts: You should monitor your accounts for any suspicious activity or transactions. If you notice anything unusual, you should report it to the relevant authorities or service providers.

Beware of scams: You should be careful of any emails or messages that claim to be from Dalil or other trusted sources. Do not click on any links or attachments or provide any personal information without verifying their authenticity.

How did Dalil respond to the breach?

VPNMentor tried to contact Dalil several times to inform them of the breach and advise them on how to secure their database. However, they received no response from the app developers. Instead, they noticed that a ransomware encrypted some data on the server, but new data kept being logged unencrypted. This shows that at least one actor was accessing their data, and possibly more.

Dalil has not issued any public statement or notification to its users about the breach. It is unclear whether they are aware of the situation or not. It is also unclear whether they have taken any measures to prevent further exposure of their data or to mitigate the potential harm to their users.

What are the legal implications of the breach?

The breach could have serious legal implications for Dalil and its users. Depending on the jurisdiction and the nature of the data, Dalil could face fines, lawsuits, or criminal charges for violating data protection laws and regulations. For example:

In Saudi Arabia, the Anti-Cyber Crime Law imposes penalties for unauthorized access, disclosure, or use of personal data. The penalties include imprisonment for up to four years and/or a fine of up to 3 million riyals (about $800,000).

In Egypt, the Personal Data Protection Law imposes obligations for data controllers and processors to protect personal data and notify users and authorities in case of a breach. The penalties include imprisonment for up to one year and/or a fine of up to 100,000 Egyptian pounds (about $6,300).

In the European Union, the General Data Protection Regulation (GDPR) applies to any organization that offers goods or services to EU residents or monitors their behavior. The GDPR requires organizations to implement appropriate security measures and report breaches within 72 hours. The penalties include fines of up to 20 million euros (about $23 million) or 4% of annual global turnover, whichever is higher.

What are some alternatives to Dalil app?

If you are looking for a different app that can help you identify unknown numbers and protect you from unwanted calls, you may want to consider some alternatives to Dalil app. Here are some examples:

Truecaller: Truecaller is a global phone directory and caller ID app that has over 250 million users. It allows you to block spam calls and messages, identify unknown numbers, and search for contacts. It also has a premium version that offers more features and privacy. Truecaller claims to respect user data and comply with GDPR.

Whoscall: Whoscall is a caller ID and spam blocker app that has over 70 million users. It allows you to identify and block unwanted calls and messages, search for phone numbers, and report spam. It also has an offline database that works without internet connection. Whoscall claims to protect user data and comply with GDPR.

Hiya: Hiya is a caller ID and spam protection app that has over 50 million users. It allows you to identify and block scam calls and messages, search for phone numbers, and manage your contacts. It also has a premium version that offers more features and security. Hiya claims to safeguard user data and comply with GDPR.

Conclusion

The data breach of Dalil app is a serious incident that exposes the personal data of millions of users to hackers and third parties. The breach could have severe consequences for the users' privacy, security, and reputation. The breach could also have legal implications for Dalil and its users, depending on the jurisdiction and the nature of the data.

The users of Dalil app should take immediate steps to protect themselves from the potential harm of the breach. They should delete the app, change their passwords, monitor their accounts, and beware of scams. They should also consider using alternative apps that offer similar services but with better security and privacy.

The breach also serves as a reminder of the importance of data protection and security for both app developers and users. App developers should implement appropriate security measures and monitor their databases regularly. They should also inform their users and authorities in case of a breach and take responsibility for their actions. Users should be careful of what permissions they grant to apps and what data they share with them. They should also review their app settings and preferences regularly and delete any apps they no longer use.

Conclusion

https://www.letsswagg.org/group/pssm-s-w-a-g-g-usa/discussion/bb7f0c02-7ffd-4fd3-8e17-d1370fb864a0

https://www.corposs.org/group/mysite-200-group/discussion/156f4b65-8ded-491f-aef5-f7dec0ec457f

https://www.escrevepramim.com/group/mysite-200-group/discussion/f5233561-cba4-4196-90e7-377f23907664

https://www.wlmdurham.com/group/mastering-manhood/discussion/d06d34a9-a348-446a-ac89-a6d01d3752f8

https://www.transformtowealth.com/group/mysite-200-group/discussion/f5d56191-6f06-43db-9e3f-1c2d88eb81ed