Skip to main content

135 million aadhaar details, 100 million bank accounts "leaked" from government websites: Researchers

Screenshot from a NREGA site: Researchers hide details 
Counterview Desk
A top study by the Centre for Internet and Society (CIS) has said that “estimated number of aadhaar numbers leaked” through top portals which handle aadhaar “could be around 130-135 million”. Worse, it says, the number of bank accounts numbers leaked would be “around 100 million”.
The study, carried out by researchers Amber Sinha and Srinivas Kodali, adds, “While these numbers are only from two major government programmes of pensions and rural employment schemes, other major schemes, who have also used aadhaar for direct bank transfer (DBT) could have leaked personally identifiable information (PII) similarly due to lack of information security practices.”
Pointing out that “over 23 crore beneficiaries have been brought under aadhaar programme for DBT”, the study, titled “Information Security Practices of Aadhaar (Or Lack Thereof)”, says, “Government schemes dashboard and portals demonstrate … dangers of ill-conceived data driven policies and transparency measures without proper consideration to data security measures.”
Claiming to have a closer look at the databases publicly available portals, the researchers identify four of them a pool of other government websites for examination:
A welfare programme by the Ministry of Rural Development, the National Social Assistance Programme (NSAP) portal, even as seeking to provide public assistance to its citizens in case of unemployment, old age, sickness and disablement, offers information about “job card number, bank account number, name, aadhaar number, account frozen status”, the researchers say.
Pointing out that “one of the url query parameters of website showing the masked personal details was modified from nologin to login”, they say, the “control access to login based pages were allowed providing unmasked details without the need for a password.”
Another NREGA site screenshot by researchers
In fact, they say, the Data Download Option feature “allows download of beneficiary details mentioned above such as Beneficiary No, Name, Father’s/Husband’s Name, Age, Gender, Bank or Post Office Account No for beneficiaries receiving disbursement via bank transfer and Aadhaar Numbers for each area, district and state.”
They add, “The NSAP portal lists 94,32,605 banks accounts linked with aadhaar numbers, and 14,98,919 post office accounts linked with aadhaar numbers. While the portal has 1,59,42,083 aadhaar numbers in total, not all of whom are linked to bank accounts.”
Also giving the example of the national rural job guarantee scheme, popularly called NREGA, the researchers say, its portal provides DBT reports containing “various sub-sections including one called ‘Dynamic Report on Worker Account Detail’,” with details like “Job card number, aadhaar number, bank/postal account number, number of days worked”, and so on.
“As per the NREGA portal, there were 78,74,315 post office accounts of individual workers seeded with aadhaar numbers, and 8,24,22,161 bank accounts of individual workers with aadhaar numbers. The total number of Aadhaar numbers stored by portal are at 10,96,41,502”, they add.
Providig similar instances form two other sources, the researchers insist, “The availability of large datasets of aadhaar numbers along with bank account numbers, phone numbers on the internet increases the risk of financial fraud.”
Underlining that “aadhaar data makes this process much easier for fraud and increases the risk around transactions”, they say, “In the US, the ease of getting Social Security Numbers from public databases has resulted in numerous cases of identity theft. These risks increase multifold in India due the proliferation of aadhaar numbers and other related data available.”

Comments

TRENDING

ISKCON UK 'clarifies' after virus infects devotees, 5 die due to big temple meet

By Rajiv Shah
The International Society for Krishna Consciousness (ISKCON), United Kingdom (UK), has admitted that at least 21 of its devotees were infected because of the spread of the coronavirus amongst the UK devotee community following the March 12 funeral and March 15 memorial of the Bhaktivedanta Manor temple president, in which about 1,000 people participated. Regretting that five of the devotees have passed away, the top Hindu religious in Britain body does not deny more may have been infected.

Mallika Sarabhai releases speech she was 'not allowed' to give at NID Convocation on Feb 7

Counterview Desk
The National Institute of Design (NID) in Ahmedabad, a Ministry of Commerce and Industry body, landed itself in controversy following its decision to put off its 40th convocation ceremony, where noted danseuse Mallika Sarabhai was invited as chief guest. The ceremony was scheduled to be held on February 7.

As corona virus 'travels' to rural areas, NGO begins training tribals, marginalised women

By Souparno Chatterjee*
The World Health Organization (WHO) has declared corona virus a pandemic. Originating from Wuhan in China, it has traversed the entire globe, almost, and claimed more than 16,000 lives already. That’s largely the urban population. In India, despite all the preparedness and war-like promptness to safeguard against the pandemic, several lives have been lost , and hundreds of individuals have tested positive.

Rani Laxmi Bai, Tatya Tope 'martyred' by East India Company, Scindia's forefathers

By Our Representative
In an email alert to Counterview, well-known political scientist Shamsul Islam has said that was “shameful for any political party in democratic India to keep children of Sindhias in their flock” given their role during the First War of Indian Independence (1857). In a direct commentary on Madhya Pradesh Congress leader Jyotiraditya Scindia moving over to BJP, Prof Islam has quote from a British gazetteer to prove his point.

COVID-19: Dalit rights bodies regret, no relief plan yet for SCs, STs, marginalized

By Our Representative
In a letter to Prime Minister Narendra Modi, the National Dalit Watch-National Campaign on Dalit Human Rights, endorsed* by several other Dalit rights organizations, have insisted, the Government of India should particular care of the scheduled castes and tribes, trans folks, persons with disabilities and the women and children from these communities, while fighting against COVID-19 pandemic.

Coronavirus scare ‘pushing’ people from Northeast India into more hardship

By Rishiraj Sinha, Biswanath Sinha*
“No one is born hating another person because of the colour of his skin, or his background or his religion. People learn to hate, and if they can learn to hate, they can be taught to love, for love comes more naturally to the human heart than its opposite.” – Nelson Mandela
***

Modi, Shah 'forget': Gandhi’s first Satyagraha was against citizenship law of South Africa

By Nachiketa Desai*
Hindu fanatic Nathuram Godse assassinated Mahatma Gandhi once on January 30, 1948 but his followers raising the war cry of ‘Jai Sriram’ are killing the Mahatma every day. In his home state of Gujarat, Gandhiji was killed a thousand times in 2002 when over 2,000 Muslims were butchered, their women raped, homes and shops plundered and set on fire and even unborn babies ripped out of the wombs of their mothers.

Gujarat govt plan to 'banish' Gandhian activist anti-democratic, unconstitutional

By Rohit Prajapati*
The current Central and Gujarat governments, and their bureaucracy, have been and are still unable to answer and address the concerns raised, with facts, figures, and constitutional provisions, regarding the terror of tourism in the name of the Statue of Unity and tourism projects surrounding it.

Gujarat construction workers walk home as Rs 2,900 crore welfare fund lies unused

By Our Representative
Situated behind the Gujarat University, some of the families of the migrant construction workers from Dahod and Panchmahals districts of Gujarat, and a few from Rajasthan and Madhya Pradesh, who had stayed put in make-shift shanties in Ahmedabad’s sprawling GMDC Ground, have begun a long journey, by foot, back to their home villages in the eastern tribal belt of Gujarat.