Tech site posts more leaked Aadhaar data
Users' Aadhaar numbers, consumer numbers and linked banking data are visible in the exposed records.
Hyderabad: After the Unique Identification Authority of India (UIDAI) refuted reports published by ZDNet regarding an Aadhaar data leak, the technology news portal on Sunday posted some of the leaked records as provided by a security researcher. Users’ Aadhaar numbers, consumer numbers and linked banking data are visible in the exposed records.
The ZDNet report published on Friday claimed that “a data leak in a system run by a state-owned utility company can allow anyone to download the private information on all Aadhaar holders, exposing their names, their unique 12-digit identity numbers, and information about services they are connected to, such as bank details and other private information.”
They said that the leak had been exposed by New Delhi-based security researcher Karan Saini, who had found a vulnerable endpoint in the system. He was purportedly able to access to the Aadhaar database through an API that was not properly secured.
The UIDAI, the Aadhaar-issuing body, made a statement on Friday saying, “There is no truth in this story as there has been absolutely no breach of UIDAI’s Aadhaar database. Aadhaar remains safe and secure.”
Reports regarding Aadhaar data leaks have created quite the storm on social media. They have emerged at a time when the Supreme Court is hearing petitions challenging the Aadhaar Act.