DigitalCIO
  • Home
  • Tech News
  • Market Insights
  • CIO Interviews
  • Events and Conferences
  • Opinion and Analysis
  • Resources
No Result
View All Result
DigitalCIO
  • Home
  • Tech News
  • Market Insights
  • CIO Interviews
  • Events and Conferences
  • Opinion and Analysis
  • Resources
No Result
View All Result
Digitalcio
No Result
View All Result
Home Archive

How a Indian State Government Leaked Thousands of Aadhaar Numbers

DigitalCIO Bureau by DigitalCIO Bureau
February 1, 2019
in Archive
0
74
SHARES
1.2k
VIEWS
Share on FacebookShare on Twitter

Recently, Jharkhand government accidentally leaked Aadhaar information of about 1,66,000 workers. Read on to know more about this latest data leak…

Since the launch of Aadhaar, the 12-digit unique identification number that is issued by the Unique Identification Authority of India (UIDAI), it has been center of a number of controversies in India. These controversies include leakage of user data privacy, security of the stored biometric data and other claims from the hackers.

According to a latest news report, another instance of Aadhaar data leak has been reported where a state government in India was careless enough to leave data of thousands of its workers exposed without any password. As part of the report, the government of Jharkhand left data of 1,66,000 workers exposed along with other important bits such as names, job titles, and partial phone numbers.

Reported Data Leak
This data leak was initially reported by TechCrunch which stated that the data was left exposed since 2014. The leaked data was located on a government system that was used to record attendance of government workers in Jharkhand state. What was even more surprising was that the IT system used the 12-digit unique number as the file name of photos on each page in the record. TechCrunch was reportedly able to verify the authenticity of the Aadhaar numbers found on the Jharkhand government website by the checking the same using UIDAI’s official tool.

The report adds that the attendance system was hosted on a sub-domain of the official website of the Jharkhand government and the same was even indexed in Google, making its accidental discovery quite possible for anyone. The cache pages of the individual government employee attendance records can be easily found in the search giant’s index. Further, anyone with even the basic knowledge of coding could scrape the entire website very easily, the report claimed citing a security researcher. Over a lakh Aadhaar numbers are said to have been left unprotected.

The Aadhaar numbers were  not directly listed on the webpage, but the website was fetching the image of the workers by sending their Aadhaar number, which are clearly visible in the URL of the image link. The report noted that even though Aadhaar numbers are not as confidential as a credit or debit card, they still pose a risk of identity theft if not kept closely guarded.

Researchers reached out the government and UIDAI after confirming their findings but they did not receive any response from both the government organizations. Though it looks like the website is currently not accessible. This comes hours after TechCrunch confirmed that the Aadhaar numbers available on the system were valid with the help of a verification tool by UIDAI.

Repercussions
The reason one should care about their Aadhaar number is that anyone can use it along with thumbprints to make use of benefit schemes from the state while enrolling in a number of services including voting, welfare, and financial assistance. Users can also use the number to open a new bank account, get a new SIM connection, and even use it to verify their identity.

Although the latest leak isn’t directly related to the Unique Identification Authority of India (UIDAI), the agency that manages Aadhaar infrastructure in the country, it shows how the Aadhaar data can become so easily vulnerable even when in hands of other governmental agencies. Also, the mere leak of Aadhaar numbers doesn’t seem very alarming, but such a database has the potential of being used by malicious parties for social engineering hacks.

This shows that contrary to the claims by the government and UIDAI that Aadhaar is secure, it is easy for hackers to get on the data without much work and lax security measures if the various government agencies does not implement the necessary security procedures to secure the Aadhaar details.

Share30Tweet19
DigitalCIO Bureau

DigitalCIO Bureau

Recommended For You

Data Recovery Experts Expand their Cloud and Security Skills at VeeamON Tour India

by DigitalCIO Bureau
September 1, 2023
0
Data Recovery Experts Expand their Cloud and Security Skills at VeeamON Tour India

Veeam Software flagged off its highly anticipated VeeamON Tour India 2023 in Mumbai today, delivering a rich experience to over 600 registrants. This month-long tour comes as an...

Read more

Dell Technologies Announces Intent to Acquire Moogsoft

by DigitalCIO Bureau
August 20, 2023
0
Dell Technologies Announces Intent to Acquire Moogsoft

Dell Technologies (NYSE: DELL) announced it has signed a definitive agreement to acquire Moogsoft, an AI-driven provider of intelligent monitoring solutions that support DevOps and ITOps.This transaction will further enhance...

Read more

Government Technology Agency of Singapore concludes third HackerOne bug bounty programme

by DigitalCIO Bureau
August 20, 2023
0

GovTech Singapore resolved 33 security weaknesses and awarded global hacker community over US$30,800 for contributing to a more secure and resilient smart nation HackerOne and Singapore's Government Technology...

Read more

XProtect(R) on Amazon Web Services Now Available in AWS Marketplace

by DigitalCIO Bureau
August 20, 2023
0

Customers with a cloud-first strategy and those looking for a hybrid VMS solution can now deploy a pre-configured XProtect as an elastic solution available globally with high flexibility...

Read more

OurCrowd Pandemic Innovation Conference to host global leaders, startups and investors online

by DigitalCIO Bureau
August 20, 2023
0

June 22 forum features tech solutions to global crisis, $100m OurCrowd Pandemic Innovation Fund OurCrowd will host the OurCrowd Pandemic Innovation Conference on June 22 to explore the...

Read more
Next Post

Cisco warns of malware droppers proliferating in a fake job posting

Leave a Reply Cancel reply

Your email address will not be published. Required fields are marked *

Related News

CtrlS Datacenters Appoints Mohit Pande as Chief Financial Officer

CtrlS Datacenters Appoints Mohit Pande as Chief Financial Officer

September 22, 2023

Adobe Patches Vulnerability

July 21, 2018
Software Engineering Leader Roles to Require Oversight of Generative AI by 2025

Microsoft’s GenAI Capabilities Continue To Impress

November 23, 2023

Browse by Category

  • Acquisition
  • Appointment
  • Archive
  • Artificial Intelligence
  • CIO Interviews
  • Cloud
  • Datacenter
  • Events and Conferences
  • Market Insights
  • News
  • Opinion and Analysis
  • Products
  • Resources
  • Security
  • Storage
  • Tech News
  • Telecom
Digitalcio

Welcome to DigitalCIO, your ultimate source for staying ahead in the ever-evolving world of technology and business.

CATEGORIES

  • Tech News
  • Market Insights
  • CIO Interviews
  • Events and Conferences
  • Opinion and Analysis
  • Resources
  • Archive

BROWSE BY TAG

Acquisition AI Appointment artificial intelligence Artificial Intelligence and Machine Learning AWS Big Data and Analytics Blockchain CISCO Cloud Cloud Computing Commvault CrowdStrike Customer Experience Cybersecurity Dell Technologies DigiCert Digital Transformation E-books Fortinet Gartner GenAI Generative AI IBM IDC Infographics Infosys Internet of Things (IoT) Microsoft Netskope New Relic Oracle Palo Alto Networks Panel Discussion ransomware Salesforce SAP SonicWall Sophos Tenable Trend Micro Veeam Software Vertiv Webinars Whitepaper

NAVIGATION

  • Home
  • About Us
  • Advertise with Us
  • Contact Us

© 2023 digitalcio.in - All rights reserved.

No Result
View All Result
  • Home
  • Tech News
  • Market Insights
  • CIO Interviews
  • Events and Conferences
  • Opinion and Analysis
  • Resources

© 2023 digitalcio.in - All rights reserved.

Are you sure want to unlock this post?
Unlock left : 0
Are you sure want to cancel subscription?