new Delhi. A new report claimed that personal files and health records of at least 2.46 lakh Central Industrial Security Force (CISF) personnel have been exposed online allegedly due to a data security lapse.
A TechCrunch report, citing an unidentified security researcher in India, said that the researcher found a database full of network logs generated by security equipment connected to the CISF’s network.
“But the database was not password protected, allowing anyone on the Internet to access the logs from their web browser,” the report alleged.
The log allegedly contained records of over 246,000 complete web addresses of PDF documents on the CISF’s network.
Many of those logs contained personnel files, health records and personally identifiable information of CISF officers.
According to the report, some of the files are as recently as 2022.
The researcher said the safety device is made by India-based security company Haltdos.
However, the company did not comment on the report.
-AnyTV News spoke to cyber-security researchers who said the CISF database leaked in the PDF files is likely to be related to a recent government server (which is also indexed in Google search) hacks.
In January, reports emerged that the COVID-19 data of more than 20,000 Indians, including health workers, was available in PDF files on the Red Forum website on the dark web, and hackers claim they came directly from a government CDN (content delivery network). Were were
The same documents were freely available on Google search as a list of nominated beneficiaries for the COVID vaccine with keywords like RT-results.
The Ministry of Health and Family Welfare later rubbished the reports, saying, “No data has been leaked from the Kovin portal and the entire data of residents is secure on this digital platform.”
The ministry had emphasized that the vaccination platform “neither collects the person’s address nor RT-PCR test results for COVID-19 vaccination.”
Last year, the health ministry and security researchers denied breaching the Covid-19 vaccination data of 150 million Indians, after news of the hack spread online.
The data leak reportedly took place on the Kovin portal, which is used for vaccination.
—AnyTV News
read this also – Click to read the news of your state / city before the newspaper