Search This Blog

Aadhaar data breach: For Rs 500 access to billion details, UIDAI denies report

The Unique Identification Authority of India (UIDAI) has denied an investigative report from the Tribune that you can access to Aadhaar database of over one billion for just Rs 500 in 10 minutes.

According to the report of The Tribune, the reporter joined a WhatsApp group, which allegedly sold all Aadhaar data available with UIDAI, he paid Rs 500 via Paytm. Later on, one of its agents gave him an ID and password, which helped him to access any Aadhaar details. With paying an additional fee of Rs 300, agents printed Aadhar card for them.

In the report, reporter Rachna Khaira says, "It took just Rs500, paid through Paytm, and 10 minutes in which an 'agent' of the group running the racket created a 'gateway' for this correspondent and gave a login ID and password. Lo and behold, you could enter any Aadhaar number in the portal, and instantly get all particulars that an individual may have submitted to the Unique Identification Authority of India (UIDAI), including name, address, postal code (PIN), photo, phone number and email."

"What is more, The Tribune team paid another Rs300, for which the agent provided “software” that could facilitate the printing of the Aadhaar card after entering the Aadhaar number of any individual," the report says.

The UIDAI has assured that there is not any possibility of a data breach. The Aadhaar data including biometric information is fully safe and secure.

Sanjay Jindal, Additional Director-General, UIDAI Regional Centre, Chandigarh, accepted that this was a major lapse in the cybersecurity, told The Tribune: “Except the Director-General and I, no third person in Punjab should have a login access to our official portal. Anyone else having access is illegal, and is a major national security breach.”

In the meantime of controversies,  UIDAI tweeted: "There has not been any data breach of a biometric database which remains fully safe & secure with the highest encryption at UIDAI and a mere display of demographic info cannot be misused without biometrics."

Share it: