TampaChinnodu Posted April 26, 2018 Report Posted April 26, 2018 Days after the leakage of sensitive data concerning nearly 2 crore Aadhaar card holders from the Andhra Pradesh State Housing Corporation website, yet another AP government website, the Benefit Disbursement Portal of the state’s Wages & Social Security Pensions (Mahatma Gandhi National Rural Employment Guarantee Act or MGNREGA) system, has been found to have suffered a similar security breach. The leak was traced by independent security researcher Srinivas Kodali, who complained about it to the Indian Computer Emergency Response team, Unique Identification Authority of India (UIDAI) and the National Physical Information Protection Centre on Thursday, following which the website was masked, though not shut down. Speaking to DC, he said, “The latest leak involves 89 lakh MGNREGA workers, their IDs, names and Aadhar numbers, all from AP. The website is being handled by Tata Consultancy Services (TCS) and AP government as part of the joint venture AP Online. But the irony is, I had reported the same violation in May 2017, about two MGNREGA websites one of AP and another of the Central government. Both were leaking data, which is being repeated after a year. This means the complaints were not taken seriously and nothing has changed on the ground. This also proves that the UIDAI’s claim that minimum information is being collected through Aadhar, and there is a security system in place, is a half-truth.” AP has leaked data pertaining to nearly 2 crore Aadhar card holders of its 5 crore population. Experts say such leaks could be misused to perform religious profiling based on a person’s belief, which could turn into a security nightmare. Telangana government websites have not reported such leaks till date. The problem with the AP government websites seems to be that in a desire to lend transparency to the administration through the AP CM Dashboard, security has taken a backseat. "Though the motto is to enforce accountability through the CM Dashboard, the government is jumping the gun and exposing personal data," Kodali said. Quote
TampaChinnodu Posted April 26, 2018 Author Report Posted April 26, 2018 Quote The problem with the AP government websites seems to be that in a desire to lend transparency to the administration through the AP CM Dashboard, security has taken a backseat. state of art cyber security operations center , first of a kind in country ani PPT's Quote
TampaChinnodu Posted April 26, 2018 Author Report Posted April 26, 2018 Quote But the irony is, I had reported the same violation in May 2017, about two MGNREGA websites one of AP and another of the Central government. Both were leaking data, which is being repeated after a year. This means the complaints were not taken seriously and nothing has changed on the ground. Quote
TampaChinnodu Posted April 26, 2018 Author Report Posted April 26, 2018 6 minutes ago, TampaChinnodu said: state of art cyber security operations center , first of a kind in country ani PPT's Mr. CP Gurnani MD & CEO of Tech Mahindra poured praise on CBN andNara Lokesh for thinking ahead of the time and bringing the future to AP. The comments came in the backdrop of inauguration of India’s first "Cyber Security Operations Centre (APCSOC)” in Amaravati. It is a collaborative effort between AP Gov and Tech Mahindra to thwart cyber attacks and better risk management Quote
kittaya Posted April 26, 2018 Report Posted April 26, 2018 13 minutes ago, TampaChinnodu said: Days after the leakage of sensitive data concerning nearly 2 crore Aadhaar card holders from the Andhra Pradesh State Housing Corporation website, yet another AP government website, the Benefit Disbursement Portal of the state’s Wages & Social Security Pensions (Mahatma Gandhi National Rural Employment Guarantee Act or MGNREGA) system, has been found to have suffered a similar security breach. The leak was traced by independent security researcher Srinivas Kodali, who complained about it to the Indian Computer Emergency Response team, Unique Identification Authority of India (UIDAI) and the National Physical Information Protection Centre on Thursday, following which the website was masked, though not shut down. Speaking to DC, he said, “The latest leak involves 89 lakh MGNREGA workers, their IDs, names and Aadhar numbers, all from AP. The website is being handled by Tata Consultancy Services (TCS) and AP government as part of the joint venture AP Online. But the irony is, I had reported the same violation in May 2017, about two MGNREGA websites one of AP and another of the Central government. Both were leaking data, which is being repeated after a year. This means the complaints were not taken seriously and nothing has changed on the ground. This also proves that the UIDAI’s claim that minimum information is being collected through Aadhar, and there is a security system in place, is a half-truth.” AP has leaked data pertaining to nearly 2 crore Aadhar card holders of its 5 crore population. Experts say such leaks could be misused to perform religious profiling based on a person’s belief, which could turn into a security nightmare. Telangana government websites have not reported such leaks till date. The problem with the AP government websites seems to be that in a desire to lend transparency to the administration through the AP CM Dashboard, security has taken a backseat. "Though the motto is to enforce accountability through the CM Dashboard, the government is jumping the gun and exposing personal data," Kodali said. Quote
.thumb.jpg.ce42bb16ec102475a78c2087ce269c7d.jpg)
Recommended Posts
Join the conversation
You can post now and register later. If you have an account, sign in now to post with your account.