7 million BHIM users data exposed in CSC website breach: Report
By MYBRANDBOOK
According to a report by a virtual private network (VPN) review website, millions of users of the government’s digital payment app BHIM may be vulnerable to cyber-attacks and e-frauds due to an alleged data breach. The breach has exposed 7.26 million personal information records such as names, date of birth, age, gender, addresses and Aadhaar card details among others to the public domain, vpnMentor wrote in a blog post.
“The scale of the exposed data is extraordinary, affecting millions of people all over India and exposing them to potentially devastating fraud, theft, and attack from hackers and cyber criminals,” it wrote on Sunday.
The website also claimed that the data was leaked due to a security oversight by the company CSC e-Governance Services, which provides government’s digital services in rural areas.
According to the research led by vpn Mentor’s Noam Rotem and Ran Locar, CSC connected the new website to a misconfigured S3 bucket to promote BHIM usage across India and sign up new merchant businesses. This was not protected with security protocols.
However, the National Payments Corporation of India (NPCI), which manages the app, dismissed the report and claimed that all data is secured.
“We have come across some news reports which suggest data breach at BHIM App. We would like to clarify that there has been no data compromise at BHIM App and request everyone to not fall prey to such speculations. NPCI follows high level of security and an integrated approach to protect its infrastructure and continue to provide a robust payments ecosystem,” NPCI said in its statement.
BHIM to join e-commerce, competing with PhonePe and Google Pay
The government-supported payment software BHIM is getting ready to join t...
The latest version of X helps prevent deepfakes on social medi
To combat deepfakes and shallowfakes, Elon Musk revealed a new update t...
India and Namibia collaborate on a payment system similar to U
Once operational, the platform will enable digital transactions in Namibia,...
Sebi issues show-cause notices to six Adani group firms
Sebi issued show-cause notices to six Adani Group firms, including Adani ...
CP PLUS INDIA PVT. LTD.
SAFE SECURITY SERVICES PVT. LTD.
VVDN TECHNOLOGIES
MATRIX COMSEC PVT. LTD.
Technology Icons Of India 2023: Debjani Ghosh
Debjani Ghosh is the first woman president of NASSCOM (the umbrella bo...
Technology Icons Of India 2023: Sunil Bharti Mittal
Sunil Bharti Mittal is the Founder and Chairman of Bharti Enterprises,...
Technology Icons Of India 2023: Girish Mathrubootham
Girsh Mathrubootham envisioned and co-founded Freshworks. Freshworks, ...
Aadhaar: Architecting the World's Largest Biometric Identity System
The Unique Identification Authority of India (UIDAI) is a statutory au...
CERT-IN protecting the cyber security space of India
CERT-In serves in the area of cyber security threats like hacking and ...
DRDO is India's largest and most diverse research organisation
DRDO is the R&D wing of Ministry of Defence, Govt of India, with a vis...
B D SOFTWARE
BD Software is the distributor of IT security solutions in India. The ...
Crayon Software Experts India Pvt Ltd
Crayon helps its customers build the commercial and technical foundati...
RAH INFOTECH
RAH Infotech is India’s fastest growing technology value added dist...