Data Breach Apparently Affects EPFO Registered Employees
Although reports came in that approximately 2.7 crore employees whose names were listed in EPFO (Employees Provident Fund Organisation) had their professional as well as personal data revealed in a data theft incident, EPFO the retirement fund agency assured that no data exposure had occurred.
EPFO stated that services of seeding Aadhaar with provident fund A/Cs that CSC (Common Service Centre) provides stood temporarily stalled because vulnerability checks were undone.
EPFO's statement followed during reports about one correspondence supposedly from V P Joy, Central Provident Fund Commissioner of EPFO addressed to Dinesh Tyagi CEO of CSC, dated 23rd March, raising the problem of data leakage.
As the EPFO announced the CSC services' stalling, it stated that warnings about security flaws within software or data was one of the regular administrative processes against which CSC-rendered activities had been put to halt since March 22, 2018.
A website for seeding Aadhaar to various services is by CSC e-Governance Services India Ltd., which is one special purpose organisation of the Ministry of Electronics and Information Technology. This organisation supervises the CSC programme's implementation through service centres counting 1.70 lakh-and-more which at times serve as the sole digital services provider, notably linking Aadhaar with a variety of instruments within a large number of villages. Indianexpress.com posted this, May 3, 2018.
The above mentioned security breach happens to be the most recent exemplification about flaws pertaining to the ambitious e-governance stride of the Union government of India, while according to security analysts, it underscores the government's risks associated with its efforts towards seeding Aadhaar numbers of the country's citizens within a number of databases the states maintain.
News about the data-breach as well as alleged security flaw in data arrives when the Supreme Court through one Constitutional bench is hearing certain petitions blowing questions about the Aadhaar Act's veracity as also the biometric identifier's utility within different government as well as non-government departments.
Hitherto, there hasn't been establishment of any confirmed data exposure. To provide data protection and security, the EPFO was in advance shutting down the server as well as host service for vulnerability checks pending with CSC, EPFO stated.
» SPAMfighter News - 09-05-2018
We are happy to see you are reading our IT Security News.
We do believe, that the foundation for a good work environment starts with fast, secure and high performing computers. If you agree, then you should take a look at our Business Solutions to Spam Filter & Antivirus for even the latest version of Exchange Servers - your colleagues will appreciate it!