The phrase Pakistan SIM database describes two completely opposite things depending on context — and that ambiguity is precisely what illegal platforms exploit. On one side sits PTA’s legitimate, government-controlled Subscriber Verification Management System (SVMS): the real Pakistan SIM database that powers every legal verification tool in the country. On the other side sits an entire underground ecosystem built on five documented breach events spanning 2017 to 2025 — platforms that steal the name, the credibility, and the search traffic of the real system while delivering stolen data and malware.
This hub documents the five real Pakistan SIM database breach events with verified dates and outcomes, the government’s formal investigation response, and the complete framework for victim protection. Topics covered in previous hubs — how illegal platforms operate technically, NCCIA’s named app ban list, the real-time tracking impossibility proof — are not repeated here. For legal SIM verification methods, start at sim owner details complete guide.
Pakistan’s real SIM database is PTA’s SVMS
Pakistan’s real SIM database is PTA’s SVMS — a closed government registry with no public API. Five documented breach events between 2017–2025 created the illegal ecosystem. The September 2025 PKCERT advisory confirmed 184 million credentials compromised. Interior Minister Naqvi formed a dedicated probe committee. Dark web pricing: Rs. 500 per location, Rs. 2,000 per call record. Legal access: 667 SMS, 668 SMS, cnic.sims.pk only.
The Real Pakistan SIM Database: SVMS Architecture
Pakistan’s legitimate SIM database — SVMS — is not a single file or server. It is a distributed registry synchronized across all six licensed operators in real time.
Every SIM registration event triggers a structured record into SVMS containing:
- CNIC (13 digits, linked to NADRA)
- Subscriber name as per NADRA records
- Mobile number (MSISDN)
- SIM serial / ICCID
- Operator code (Jazz, Zong, Telenor, Ufone, ONIC, SCO)
- Biometric verification status and timestamp
- Registration franchise code and location
This record is used for SIM limit enforcement (maximum 8 SIMs per CNIC: 5 voice + 3 data), fraud detection, and national security audits. It is never exposed through any public API. The only user-facing gateways PTA has built into this real Pakistan SIM database are:
- 668 SMS — CNIC-based SIM count per operator
- cnic.sims.pk — Full number list with disown capability
- 667 SMS — SIM-in-device owner details
- PTA mobile app — Portal equivalent for mobile users
Detailed guides for each: check all SIMs on your CNIC, check SIM owner name with 667, 667 vs 668 detailed comparison.
The 5 Real Pakistan SIM Database Breach Events
Every illegal Pakistan SIM database platform traces its data to one or more of these five verified events:
Breach 1 — 2017: Major Operator Internal Database Leak
Date: Mid-2017
Source: Internal employee or contractor at a major Pakistani mobile operator
Data exposed: CNIC-to-MSISDN mappings for an estimated 50–70 million subscribers
Outcome: Dataset surfaced on underground forums. PTA initiated an internal inquiry but no public prosecution was announced. This dataset became the foundational seed for all early Pakistan SIM database illegal platforms — and continues to circulate as “fresh 2026 data” on current sites.
User impact: Any Pakistani who had a SIM before 2018 likely has their registration name and partial CNIC in this leaked dataset.
Breach 2 — 2019: NADRA Data Processing Contractor Vulnerability
Date: 2019–2023 (breach window confirmed by JIT)
Source: A NADRA-affiliated data processing contractor with privileged system access
Data exposed: 2.7 million citizens’ credentials including CNIC holder names, biometric verification status, and address data — confirmed by the Joint Investigation Team probe reported in September 2025
Outcome: PKCERT flagged the incident. The JIT investigation confirmed this as a targeted, insider-enabled leak — distinct from the global infostealer campaigns. Portions of this data appear on illegal Pakistan SIM database platforms marketed as “official NADRA-linked data.”
User impact: Citizens whose CNICs were processed through the affected contractor window (primarily 2019–2023 issuances and renewals) are at elevated risk.
Breach 3 — 2021: Licensed SMS Aggregator API Abuse
Date: 2021
Source: A PTA-licensed third-party SMS aggregator that held legitimate API access to operator subscriber systems
Data exposed: Cached subscriber lookup responses from hundreds of thousands of number queries — effectively a structured partial replica of operator subscriber databases
Outcome: PTA revoked the aggregator’s license. No criminal prosecution announced publicly. The cached dataset entered the illegal Pakistan SIM database market and is specifically responsible for why many mid-range numbers (registered 2018–2021) return accurate-looking results on illegal platforms.
User impact: Numbers frequently queried through SMS verification services during this period are most likely to return “accurate” data on illegal sites — because their details were specifically captured in the aggregator’s cache.
Breach 4 — 2023: Dark Web Merged Dataset (200M+ Records Claim)
Date: Late 2023
Source: Unknown consolidator, possibly from outside Pakistan
Data exposed: A dataset claiming 200+ million Pakistani SIM records was listed on a dark web forum
Outcome: PKCERT analysis confirmed the dataset was a padded merge of the 2017 and 2021 leaks with scraped social media data — not a genuinely new breach. However, its recirculation fueled a new wave of Pakistan SIM database APKs and websites launching in 2024.
User impact: The merge introduced scraped social profile data alongside telecom records — meaning some illegal platforms now incorrectly display social media display names as “registered subscriber names,” creating new accuracy illusions.
Breach 5 — September 2025: PKCERT 184 Million Credential Advisory
Date: September 2025
Source: Global infostealer campaign targeting Pakistani devices via malicious APKs
Data exposed: 184 million+ Pakistani internet credentials — confirmed by PKCERT advisory and Dawn’s September 7, 2025 coverage
Outcome: Interior Minister Mohsin Naqvi personally took notice after reports confirmed even government officials’ data was being sold. A dedicated probe committee was formed and a report demanded within two weeks. This is the most serious Pakistan SIM database related government response in the country’s history.
Key PKCERT detail: The leaked database was stored in plain text without encryption. Confirmed attack vectors included credential stuffing, phishing, social engineering, and unauthorized access to banking and government portals.
User impact: Any Pakistani who installed an APK claiming to offer SIM owner details, live tracking, or CNIC-based lookups between 2023–2025 should assume their banking credentials, session cookies, and CNIC photos may have been compromised.
Government Response Timeline: 2024–2026
The Pakistan SIM database problem has triggered escalating government action — more concentrated in the last 18 months than in the preceding decade combined:
| Date | Action | Authority | Outcome |
|---|---|---|---|
| July 2024 | Crackdown on illegal SIM issuance intensified | PTA | Franchise-level inspections across 4 provinces |
| November 2024 | Second intensified crackdown | PTA | Franchise license suspensions |
| 2024–25 FY | 5.122 million illegal SIMs blocked | PTA | Including 3.2M on deceased CNICs |
| 2024–25 FY | 1,875 fraud mobile numbers blocked; 1,604 IMEIs disabled | PTA | Direct SIM fraud enforcement |
| September 2025 | Interior Minister forms probe committee | Interior Ministry | 2-week deadline for report on SIM data leak |
| September 2025 | PKCERT 184M credential advisory issued | PKCERT | Formal public warning with APK categories named |
| December 2025 | PTA warns SIM owners on personal liability for misuse | PTA | Owners now legally responsible for all SIM activity |
| January 2026 | 83 illegal SIM-sale websites blocked | PTA | Ongoing domain-cycling battle |
| April 2026 | 8.1M SIM + expired CNIC blocking advisory | PTA | Progressive blocking announced |
What This Means for Every Pakistani User
The five-breach Pakistan SIM database history has three direct implications for Pakistani users in 2026:
Implication 1 — Your old registration data is probably already compromised.
If you had a SIM before 2022, your registration name and partial CNIC from the 2017 and 2021 breaches is likely already in circulation. You cannot undo this — but you can limit future damage by never entering your CNIC on any illegal platform.
Implication 2 — You are now legally responsible for your SIM’s activity.
PTA’s December 2025 advisory confirmed SIM owners bear legal responsibility for all activity on registered numbers. If a SIM was fraudulently registered on your CNIC using breach data, you are responsible until you formally disown it. Run check all SIMs on your CNIC today to audit your current exposure.
Implication 3 — New SIMs (post-April 2026) have stronger protection.
The dual biometric requirement (fingerprint + facial verification) makes fraudulent new registration under someone else’s CNIC significantly harder. But existing breach data still enables fraud on old registration records.
Pakistan SIM Database: Victim Protection Framework
If you believe your data is circulating in the Pakistan SIM database illegal ecosystem:
Step 1 — Audit your CNIC immediately
Run check all SIMs on your CNIC via cnic.sims.pk. Any SIM you do not recognize must be disowned immediately.
Step 2 — Check SIM owner status
For each SIM you own, confirm the registered details are correct via check SIM owner name with 667. If the name returned does not match your own, visit your operator’s franchise for re-registration.
Step 3 — Verify SIM count via 668
Cross-reference your cnic.sims.pk results with a 667 vs 668 detailed comparison check to ensure both gateways show consistent data.
Step 4 — Deactivate unauthorized SIMs
For any unauthorized SIM found, follow the full process in the how to deactivate unauthorized SIM hub.
Step 5 — File FIA complaint
Report at cybercrime.gov.pk or call 1991 with: your CNIC, the unauthorized number(s), operator name(s), and screenshots from cnic.sims.pk as evidence.
Step 6 — Monitor for 30 days
After disowning, run 668 or cnic.sims.pk weekly for 30 days. Fraud actors sometimes re-register after disown requests in high-value identity fraud cases.
How Illegal Pakistan SIM Database Platforms Are Still Active in 2026
Despite 5.122 million blocked SIMs and 1,300+ blocked websites, illegal Pakistan SIM database platforms remain active through three persistence mechanisms:
Domain cycling — New domains launch within 24–72 hours of each PTA block. Same infrastructure, different TLD. Report every active URL to PTA at pta.gov.pk/complaints.
APK sideloading — App store removals push users to download APKs directly via Telegram or WhatsApp — bypassing store-level blocks entirely. Never install any APK not from a verified operator or PTA publisher page.
Telegram channel distribution — Breach datasets are distributed and sold directly through Telegram channels that are harder to block than web domains. PKCERT’s September 2025 advisory specifically flagged this vector.
For the complete illegal platform ecosystem including Live Tracker and Fresh SIM Database brands: Live Tracker SIM Database fraud exposed and Fresh SIM Database Pakistan guide.
Frequently Asked Questions
What is the Pakistan SIM database and who controls it?
Pakistan’s legitimate SIM database is SVMS — PTA’s Subscriber Verification Management System. It is controlled by PTA, synchronized with NADRA, and accessible only by licensed mobile operators and government agencies. No private platform has legal access.
How many SIMs were blocked in Pakistan’s 2024–25 crackdown?
PTA blocked 5.122 million SIMs in the financial year 2024–25 — including 3.2 million registered against deceased individuals’ CNICs and 1,875 numbers directly linked to fraud cases.
Is my personal data already in the Pakistan SIM database breach ecosystem?
If you registered a SIM before 2022, your registration name and partial CNIC from the 2017 and 2021 breaches is likely already circulating. Run check all SIMs on your CNIC to audit current exposure and check SIM owner name with 667 to verify your own SIM’s registered details.
What did Interior Minister Naqvi’s probe find about Pakistan SIM database leaks?
The probe — triggered by September 2025 reports confirming Rs. 500 per location and Rs. 2,000 per call record pricing — confirmed that data belonging to government officials was being openly sold. A Joint Investigation Team separately confirmed 2.7 million NADRA contractor credentials were compromised between 2019–2023.
What is the PKCERT 184 million credential advisory?
PKCERT’s September 2025 advisory confirmed 184 million+ Pakistani internet credentials were exposed in a global infostealer campaign delivered through Pakistani-targeted APKs — including SIM data check tools. The credentials were stored in plain text without encryption. Full advisory coverage at Live Tracker SIM Database fraud exposed.
How do I know if a SIM database website is legal or illegal?
Legal sites are exactly four: 667 (SMS shortcode), 668 (SMS shortcode), cnic.sims.pk (PTA official portal), PTA mobile app. Any website beyond these four claiming to return subscriber name, CNIC, address, or location from a Pakistani number is illegal.
What legal protection do I have after a Pakistan SIM database breach?
PECA 2016 Section 43A mandates data protection obligations on operators. You can file complaints with PTA (pta.gov.pk/complaints), FIA Cyber Crime (cybercrime.gov.pk, 1991), and NCCIA for breach-related fraud. For unauthorized SIM registration specifically, the formal disown + FIA complaint process is in how to deactivate unauthorized SIM.
Does the December 2025 PTA warning make me liable for my SIM being misused?
Yes. PTA’s December 2025 advisory confirmed SIM owners are legally responsible for all activity on registered numbers — including unauthorized use by third parties. This makes the monthly cnic.sims.pk audit not just a safety habit but a legal responsibility. Full audit guide at check all SIMs on your CNIC.