🛡️ How to Protect Your Data If You Are an Irancell User
: Attackers use personal details for credible phishing attacks, including "SIM registration" scams. Physical Safety
: The data contained inside these ZIP archives typically includes: Full names and national ID numbers (Melli codes). Mobile phone numbers. Home addresses and postal codes. Landline numbers and activation dates.
Exposed national ID numbers and personal details allow criminals to open fraudulent accounts or bypass basic security questions. irancell database zip top download
Never download database files from unverified or public file-sharing sites.
In December 2025, reports emerged of a threat actor offering a dataset described as containing for sale on a hacker forum. Unlike the 2016 leak, this alleged breach included even more dangerous technical identifiers:
The term "database" in this context refers to structured collections of customer personally identifiable information (PII)—names, phone numbers, national ID codes, addresses, and other sensitive details—that have been illegally extracted from Irancell's systems and subsequently shared or sold on underground forums, Telegram channels, and dark web marketplaces. 🛡️ How to Protect Your Data If You
Files of this nature, especially those listed on suspicious hosting sites, are frequently used to distribute malware or phishing content, rather than legitimate data. Significant Risks and Security Concerns
: Associated landline numbers, critical for identity verification. Context & Risks
Many websites targeting the "top download" keyword force users to register, fill out surveys, or enter their credentials to unlock the download link. These tactics are designed to steal your email address, passwords, or personal information. 3. Fraud and Scams Home addresses and postal codes
: Treat unexpected SMS messages, phone calls, or emails asking for verification codes or financial information as phishing attempts.
: Files labeled as "database zip" are frequently used as "honey pots" or delivery systems for malware and ransomware . Malicious actors often spoof filenames (e.g., irancell_data.zip
that use leaked personal information. Share public link
(irancell.ir) was identified on major hacker forums. This leak reportedly followed a nationwide internet blackout in Iran and exposed data for nearly 60% of the operator's active subscriber base (approximately 40 million records).