Aadhaar breaches fuelled by rogue admin accounts

9 January 2018

Not long ago trumpeted as the world’s largest biometric database, India’s Aadhaar system covers 1.2bn citizens. Lately, though, it’s acquired a less impressive reputation – that it’s one of the easiest to breach.

In a matter of days, two sets of journalists claimed they’ve bypassed its security with worrying ease, apparently by gaining access to a layer of privileged and admin accounts that have ended up in the wrong hands.

In the most widely-reported incident, a researcher paid Rs 500 ($8) to an anonymous WhatsApp seller for credentials giving access to the name, address, phone number, postal PIN, email address and photograph of anyone in Aadhaar after entering their 12-digit UIDAI (Unique Identification Authority of India) number.

Read full news article on Naked Security

Date:

9 January 2018

Categorie(s):

NEWS

Tag(s):

Aadhaar, Biometric Security, Data Breach, India, Privacy

Hackers backdoored Cisco ASA devices via two zero-days (CVE-2024-20353, CVE-2024-20359)24 April 2024
UnitedHealth Group Pays Ransom After Cyberattack: What You Need to Know24 April 2024
Google patches critical type-confusion flaw in Chrome browser24 April 2024
Exclusive Interview With Yoav Keren, Co-Founder & CEO Of BrandShield24 April 2024
Authorize API Gateway APIs using Amazon Verified Permissions and Amazon Cognito24 April 2024