Following the expose on The Tribune on the availability of Aadhaar details, a new revelation raises questions about the security of private data.
Following the expose on The Tribune on the availability of Aadhaar details, a new revelation raises questions about the security of private data. It has been discovered that a Google search can easily lead you Aadhaar details of several persons. This includes the person’s name, address, Aadhaar number, date of birth and photograph. They do not include the biometric details though.
The Quint has narrowed down on a few websites that have uploaded details of citizens publically. This includes the official government website of the Indian National Centre for Ocean Information Services, the All India Football Federation website and a private company called Starcards India. It may be possible that other websites may have leaked Aadhaar details as well.
The process to retrieve the Aadhaar details is so simple that a kid with a PC could easily pull data. One simply has to head over to Google and type: mera aadhaar meri pehchan filetype:pdf
- A number of results show up. Clicking on them will lead you to the Aadhaar details of random people. Some links may be broken but the others are active.
- Click the download button and you’re golden.
This revelation comes as yet another embarrassment for the government which is encouraging more and more people to link their Aadhaars to various services. A few days back, a French security expert put up a video showing steps to bypass the Aadhaar app’s password protection in less than a minute. He claimed that he was using the latest version of the app and did not require a rooted phone. The researcher, who goes by the name Elliot Alderson advised people not to "use the Aadhaar Android App at all, be cautious when you give your Aadhaar card to anyone".