Following the news that India’s national Aadhaar database has been revealed to contain a flaw, exposing Aadhaar card numbers and partial phone numbers of thousands of Jharkhand government employees, Max Vetter, chief cyber officer at Immersive Labs commented below.
Max Vetter, Chief Cyber Officer at Immersive Labs:
“There is a basic lapse in security here; the database should have been password protected, and naming files with confidential information was also a mistake. Though these security precautions should be obvious, these issues may go back to the way that the system was designed. It’s a lesson that those with adequate security training need to be involved in the design and implementation of online services and tools from the beginning and throughout. Access to this data was very easy and only time will tell what else has been left open for criminals to get their hands on.”