Rajasthan Government Fixes Security Issues of Jan Aadhaar Website That Exposed Millions of Resident’s Personal Information and Sensitive Documents

Jan Aadhaar is a state programme that provides a single identifier to families and individuals in Rajasthan so that they can access the welfare schemes. According to the researcher, a bug allowed anyone to access personal documents and information if they knew the phone number of the registrant.

Rajasthan Government Fixes Security Issues of Jan Aadhaar Website That Exposed Millions of Resident’s Personal Information and Sensitive Documents
Rajasthan Government (Photo Credits: Facebook)

New Delhi, January 29: Rajasthan government has fixed security issues impacting its website related to Jan Aadhaar that exposed millions of residents' personal information and sensitive documents. Jan Aadhaar is a state programme that provides a single identifier to families and individuals in Rajasthan so that they can access the welfare schemes.

Aadhaar cards, birth and marriage certificates, electricity bills, income statements, and personal information, such as date of birth, gender and father's name, were exposed by the bugs, TechCrunch reported. The bugs were found by the cybersecurity company CloudDefense.ai security researcher Viktor Markopoulos in the Jan Aadhaar portal in December. OpenAI Announces To Partner With Common Sense Media To Collaborate on AI Guidelines and Minimise AI Risks for Young Adults.

The bugs were resolved last week through an intervention by the Indian Computer Emergency Response Team, or CERT-In, the report mentioned. "This is to inform you that we have received a response from the concerned authority that the reported vulnerability has been fixed,” the agency was quoted as saying.

According to the researcher, a bug allowed anyone to access personal documents and information if they knew the phone number of the registrant. The other flaw was causing the server to improperly validate one-time passwords, which allowed sensitive data to be returned.

The state's Jan Aadhaar portal, launched in 2019, clams that it has over 78 million individual registrants and 20 million families. The portal aims to provide "One Number, One Card, One Identity" to the residents of Rajasthan which can be used to access various state government welfare schemes.

Meanwhile, researchers have uncovered a highly-sophisticated cyber-espionage campaign, 'Operation RusticWeb', which the threat actors are using to target various personnel within the Indian government to steal confidential documents. Neuralink Brain Implant: Elon Musk's' His Brain-Computer Interface Company Achieves ‘First Human Implant’, Test Subject Recovering Well.

The campaign, first detected in October 2023, uses Rust-based malware and encrypted PowerShell commands, to exfiltrate confidential documents, according to Seqrite, the enterprise arm of global cybersecurity solutions provider, Quick Heal.

(The above story first appeared on LatestLY on Jan 30, 2024 11:51 AM IST. For more news and updates on politics, world, sports, entertainment and lifestyle, log on to our website latestly.com).


You Might Also Like

IPL 2025 Schedule: KKR vs RCB to Kickstart Indian Premier League 18 at Eden Gardens on March 22; Play-Offs to Be Held in Hyderabad and Kolkata, Says Report

Jaipur: Frustrated Over Lack of Sex Due to Wife’s Religious Devotion, Drunk Man Vandalises Ancient Idol in Rajasthan; Arrested

IPL 2025 Captains: List of Skippers Of All Teams for Indian Premier League Season 18

RSMSSB Rajasthan CET Graduation Level Result 2025 Declared at rssb.rajasthan.gov.in, Know Steps To Download Scorecard

Share Us