Aadhar card details are promised to be kept secured by the govt

Aadhar Data leaked, software engineer accused

Our Aadhar details are promised to be kept secured with the government of India. After numerous breeches and data leaks, yet again a software development engineer working in Ola’s head office at Koramangala was arrested on account of misusing Aadhar data obtained without authentication.

A complaint was filed by the Unique Identification Authority of India (UIDAI) against Abhinav Srivastav (31), an IIT Kharagpur graduate who is accused of hacking into the data repository of UIDAI, gaining access through the e-hospital server, an initiative by the Government of India.

The complaint to the police was made on 26th July, which stated that Srivastav had accessed the data without authorization between January 1  and July 26 via an app called ‘eKYC Verification’.

The app is developed by an entity linked to a start-up Quarth Technologies, which is acquired by taxi service giant Ola. The app provided demographic details to users, it had 50,000 downloads. Srivastav had already earned Rs. 40,000 through advertisements.

After hacking into the server, he used it to send verification requests to the UIDAI database for his own app. The UIDAI system allowed access under the impression that the authentication requests were from the e-hospital system hence not unauthorized,’’ a police source said. Investigations proceed to confirm if the app he developed was used in any form by Ola.

The e-hospital app, hosted on the cloud services of NIC, facilitates online appointments at hospitals using eKYC data of Aadhaar number, if patient’s mobile number is registered with UIDAI, if not it uses the patient’s name. Srivastava’s eKYC Verification app mimicked the e-hospital app in accessing the identity authentication services of UIDAI.

SOURCES: TIMES OF INDIA, INDIAN EXPRESS

IMAGE SOURCE:

Feedback welcome!