Today: June 5, 2025
Subscribe
March 20, 2022
1 min read

Data of 2.46 lakh CISF personnel exposed online

Several of those logs contained personnel files, health records and personally identifiable information on CISF officers…reports Asian Lite News

A new report on Saturday claimed that personal files and health records of at least 2.46 lakh personnel from the Central Industrial Security Force (CISF) have allegedly been exposed online owing to a data security lapse.

A TechCrunch report cited an unnamed security researcher in India as saying that the researcher found a database packed with network logs generated by a security appliance connected to CISF’s network.

“But the database was not secured with a password, allowing anyone on the internet to access the logs from their web browser,” the report alleged.

The logs allegedly contained records for more than 246,000 full web addresses of PDF documents on CISF’s network.

Several of those logs contained personnel files, health records and personally identifiable information on CISF officers.

Some of the files are dated as recently as 2022, according to the report.

The researcher said the security appliance is built by India-based security company Haltdos.

The company, however, did not comment on the report.

In January, reports surfaced that Covid-19 data of over 20,000 Indians, including health workers, in PDF files were available on the Raid Forums website on the Dark Web, and the hacker claims that they were directly coming from a government CDN (content delivery network) server.

The same documents were available freely on Google Search as “List of Beneficiaries Enrolled for Covid Vaccine” with keywords like RT-PCR results.

COWIN APP

The Ministry of Health and Family Welfare later brushed off the reports, saying “no data has leaked from the CoWIN portal and the entire data of residents is safe and secure on this digital platform”.

The Ministry had emphasised that the vaccination platform “collects neither the address of the person nor the RT-PCR test results for Covid-19 vaccination”.

Last year, the Health Ministry and security researchers had denied the breach of Covid-19 vaccination data of 150 million Indians, after news of the hack spread online.

The data leak allegedly happened on the CoWin portal, which is used for vaccination.

ALSO READ-Strategic Zojila pass on Srinagar-Kargil-Leh road opened

Previous Story

Sharad Yadav all set to merge LJD with RJD

Next Story

‘India may soon top hate and anger charts’

Latest from Defence

UN renews Libya arms ship checks

Thirteen Council members voted in favour of the resolution, while Russia and China abstained. The United Nations Security Council has voted to extend the authorisation allowing member states to inspect vessels suspected

Colombia backs India on terror

The change in tone from Colombia is seen as diplomatically significant, especially given its forthcoming role as a non-permanent member of the United Nations Security Council (UNSC). In a diplomatic correction welcomed

Modi’s New Warfare Playbook

Modi has upended the old playbook and India and Pakistan are entering dangerous new territory where nuclear deterrence is no longer a guarantee against conventional conflict…writes Collins Chong Yew Keat The India-Pakistan

India clears stealth fighter project

New execution model paves way for private sector involvement in India’s ambitious stealth aircraft programme; Army showcases next-gen drone warfare systems. In a landmark decision bolstering India’s defence self-reliance, Defence Minister Rajnath

Tharoor sparks another Cong-BJP slugfest

Congress MP Shashi Tharoor sparks internal backlash over comments praising India’s security posture abroad, exposing fresh factional fault lines within the party’s top leadership. Senior Congress leader Shashi Tharoor has again found
Go toTop