Skip to main content

135 million aadhaar details, 100 million bank accounts "leaked" from government websites: Researchers

Screenshot from a NREGA site: Researchers hide details 
Counterview Desk
A top study by the Centre for Internet and Society (CIS) has said that “estimated number of aadhaar numbers leaked” through top portals which handle aadhaar “could be around 130-135 million”. Worse, it says, the number of bank accounts numbers leaked would be “around 100 million”.
The study, carried out by researchers Amber Sinha and Srinivas Kodali, adds, “While these numbers are only from two major government programmes of pensions and rural employment schemes, other major schemes, who have also used aadhaar for direct bank transfer (DBT) could have leaked personally identifiable information (PII) similarly due to lack of information security practices.”
Pointing out that “over 23 crore beneficiaries have been brought under aadhaar programme for DBT”, the study, titled “Information Security Practices of Aadhaar (Or Lack Thereof)”, says, “Government schemes dashboard and portals demonstrate … dangers of ill-conceived data driven policies and transparency measures without proper consideration to data security measures.”
Claiming to have a closer look at the databases publicly available portals, the researchers identify four of them a pool of other government websites for examination:
A welfare programme by the Ministry of Rural Development, the National Social Assistance Programme (NSAP) portal, even as seeking to provide public assistance to its citizens in case of unemployment, old age, sickness and disablement, offers information about “job card number, bank account number, name, aadhaar number, account frozen status”, the researchers say.
Pointing out that “one of the url query parameters of website showing the masked personal details was modified from nologin to login”, they say, the “control access to login based pages were allowed providing unmasked details without the need for a password.”
Another NREGA site screenshot by researchers
In fact, they say, the Data Download Option feature “allows download of beneficiary details mentioned above such as Beneficiary No, Name, Father’s/Husband’s Name, Age, Gender, Bank or Post Office Account No for beneficiaries receiving disbursement via bank transfer and Aadhaar Numbers for each area, district and state.”
They add, “The NSAP portal lists 94,32,605 banks accounts linked with aadhaar numbers, and 14,98,919 post office accounts linked with aadhaar numbers. While the portal has 1,59,42,083 aadhaar numbers in total, not all of whom are linked to bank accounts.”
Also giving the example of the national rural job guarantee scheme, popularly called NREGA, the researchers say, its portal provides DBT reports containing “various sub-sections including one called ‘Dynamic Report on Worker Account Detail’,” with details like “Job card number, aadhaar number, bank/postal account number, number of days worked”, and so on.
“As per the NREGA portal, there were 78,74,315 post office accounts of individual workers seeded with aadhaar numbers, and 8,24,22,161 bank accounts of individual workers with aadhaar numbers. The total number of Aadhaar numbers stored by portal are at 10,96,41,502”, they add.
Providig similar instances form two other sources, the researchers insist, “The availability of large datasets of aadhaar numbers along with bank account numbers, phone numbers on the internet increases the risk of financial fraud.”
Underlining that “aadhaar data makes this process much easier for fraud and increases the risk around transactions”, they say, “In the US, the ease of getting Social Security Numbers from public databases has resulted in numerous cases of identity theft. These risks increase multifold in India due the proliferation of aadhaar numbers and other related data available.”

Comments

TRENDING

Missed call drive for VVPAT verification follows online plea to "pressure" poll panel

By Our Representative
Several political activists have begun a new campaign, asking concerned citizens to give a missed call on 9667655855 to “support the demand that 2019 Loksabha elections must be declared only after verification of 50% electronic voting machines (EVMs) with Voter Verifiable Paper Audit Trail (VVPAT) receipts.” The effort, supported by civil society networks across India, is meant to "further pressure" India's election machinery to ensure that the poll outcome becomes more transparent.

Did Modi own, buy digital camera costing Rs 7 lakh in 1987-88, also used email?

Counterview Desk
In an interview to the news channel News Nation, aired on Saturday last, Prime Minister Narendra Modi declaring that he had approved the air strike despite bad weather because he felt the clouds would hide Indian planes from Pakistani radar is known to have become a laughing stock across India.

World Bank clarifies: Its 26th rank to India not for universal access to power but for ease of doing business

By Our Representative
In a major embarrassment to the Government of India, the World Bank has reportedly clarified that it has not ranked India 26th out of 130 countries for providing power to its population. The top international banker’s clarification comes following Union Power Minister Piyush Goyal’s claim that India has “improved to 26 position from 99” in access to electricity in just one year.

When a neo-nationalist "invaded" hijab clad ladies, Bengali looking scholar in Delhi metro

By Aditi Kundu*
Travelling in Delhi metro on a daily basis to commute from Mayur Vihar to Dwarka, I see diverse people everyday. One can hear them talk about different aspects of life, from kitchen pilitics to national politics. On the morning of May 13, I witnessed a strange incident; disturbing and amusing at the same time.

Terror attacks: Difference in public reactions in India, those in Colombo, Christchurch

By Battini Rao*
Recently, on April 20 during Easter Sunday, more than 250 people were killed in a series of coordinated terrorist attacks in churches and hotels in Colombo, Sri Lanka. Local Islamic organisations Thawheed Jamath (NJT) and Jamathei Milathu Ibrahim (JMI) are held responsible for the attack. Islamic State has also claimed responsibility.

Women lost 88 lakh jobs in 2018: Why Modi "failed" to address their disempowerment?

Counterview Desk
Five human rights leaders Anjali Bhardwaj, Shabnam Hashmi, Purnima Gupta, Dipta Bhog, and Amrita Johri of the Women March for Change have posed 56 questions (alluding to Modi’s claim of 56 inches chest) to Prime Minister Narendra Modi and BJP against the backdrop of his interview with a Bollywood star, which was allegedly masqueraded as a “non-political” conversation.

PepsiCo warned: Withdraw cases against Gujarat farmers or face dire consequences

By Our Representative
About 200 farmers’ leaders and activists, in a letter to Dr KV Prabhu, chairperson, Protection of Plant Varieties and Farmers’ Rights Authority (PPVFRA), and Dr R C Agrawal, registrar general, PPVFRA, Ministry of Agriculture & Farmers Welfare, Government of India, have demanded that PepsiCo immediately withdraw all the legal suits it has slapped on many potato farmers in different districts of Gujarat.

During Emergency, the ruler was extolled but Opposition wasn't punched around: Scribe

By Rajiv Shah
A just-released book, “India: The Wrong Transition”, by a top Delhi-based scribe Anand K Sahay, has quoted “journalistic circles” to say that the Indian mainstream media – with certain “honourable exceptions” – has virtually abandoned the “practice of journalism”, and  this happened following a “sting operation” that showed that “the crème de la crème of Indian journalism were only too willing, for a suitable price, to let poisonous Hindutva propaganda prevail in their news columns.”

Ex-IAS, IPS, IFS officers tell Modi: Pragya Thakur doesn't represent India's rich heritage

Counterview Desk
In an open statement, a group of former civil servants have said that normally they would have dismissed the candidature of Pragya Thakur, who is BJP’s choice for the Bhopal Lok Sabha constituency, as an act of political expediency. However, they were forced to react to her candidature after none other than Prime Minister Narendra Modi termed has as a “symbol of our civilisational heritage.”

Disproportionately high death sentences against Dalits, Adivasis, Muslims: UN told

Counterview Desk
In their joint submission to the United Nations Human Rights Committee to meet for the listing of adoption of list of issues at its 126th session, July 1-26, 2019, top Dalit rights organizations have taken strong exception to, among other things, "disproportional application of death sentencing by the judiciary of minorities, such as Muslims, Dalits and Adivasis".