As per a report published by the website, “vpnMentor” a website that provided for on-boarding services for BHIM (a UPI payment app like Google Pay) contained a security vulnerability. This reportedly impacted millions of Indians for more than two years and exposed several, incredibly sensitive pieces of information including Aadhaar Cards and Caste certificates. While this immediately met with blanket denials from Government officials, we are urging for recommendations that will help improve our digital public infrastructure by encouraging cyber security researchers in India.
This is a companion discussion topic for the original entry at https://internetfreedom.in/its-time-to-stop-data-breaches-and-security-vulnerabilities-we-write-to-the-it-ministry/