 "Government blocks websites exposing Aadhaar, PAN details of users")
The Union government on Thursday issued blocking orders for some websites found exposing sensitive personal identifiable information of users online, including Aadhaar and PAN card details.
The Ministry of Electronics and IT in a statement over the issue said that the issue was taken up seriously as the “Government accords highest priority to safe cyber security practices and protection of personal data.”
In line with this, prompt action has been taken to block these websites, said the Ministry.
The action came after some internet users took to social media and said that a simple internet search about Aadhaar details, was exposing personally identifiable information (PII) of several Indians from certain websites.
According to reports, websites such as starkidz.com, indianaerospaceandengineering.com, and asianbariatrics.com were some domains that were leaking the data, which could be accessed through a simple google search.
“The analysis of these websites by the Indian Computer Emergency Response Team (CERT-In) has shown some security flaws in these websites. The concerned website owners have been provided guidance about the actions to be taken at their end for hardening the ICT infrastructures and fixing the vulnerabilities,” said an official statement from the IT Ministry.
Recently, the breach at Star Health and Allied Insurance led to leakage of sensitive information of about 31 million customers, reportedly amounting to 7.24 terabytes, which was being offered on sale through messaging platform Telegram.
“The Digital Personal Data Protection Act, 2023 has already been enacted and the Rules under this Act are in the advanced stage of drafting. With the aim of sensitising the government, the industry and the citizens about its impact, an awareness programme has also been initiated,” the statement further read.
Cert-In, the nodal agency for cybersecurity under MeitY has in the past issued “Guidelines for Secure Application Design, Development, Implementation & Operations” for all entities using IT applications.
The body has also given directions under the Information Technology Act, 2000, (IT Act) relating to information security practices, procedure, prevention, response and reporting of cyber incidents, said the Ministry.
You’ve reached your limit of {{free_limit}} free articles this month.
Subscribe now for unlimited access.
Already subscribed? Log in
Subscribe to read the full story →*Subscribe to Business Standard digital and get complimentary access to The New York Times
Smart Quarterly
₹900
3 Months
₹300/Month
SAVE 25%
Smart Essential
₹2,700
1 Year
₹225/Month
SAVE 46%
*Complimentary New York Times access for the 2nd year will be given after 12 months
Super Saver
₹3,900
2 Years
₹162/Month
Subscribe
Renews automatically, cancel anytime
Here’s what’s included in our digital subscription plans
Exclusive premium stories online
Over 30 premium stories daily, handpicked by our editors
Complimentary Access to The New York Times
News, Games, Cooking, Audio, Wirecutter & The Athletic
Business Standard Epaper
Digital replica of our daily newspaper — with options to read, save, and share
Curated Newsletters
Insights on markets, finance, politics, tech, and more delivered to your inbox
Market Analysis & Investment Insights
In-depth market analysis & insights with access to The Smart Investor
Archives
Repository of articles and publications dating back to 1997
Ad-free Reading
Uninterrupted reading experience with no advertisements
Seamless Access Across All Devices
Access Business Standard across devices — mobile, tablet, or PC, via web or app
SAVE 25%