A reported flaw in the mAadhaar Android app might allow someone with physical access to a user's phone the ability to acquire their personal Aadhaar details. In a series of tweets French security researcher Elliot Alderson highlighted the issues that afflict the mAadhaar Android app including storing Aadhaar details on the user's device and said details are encrypted in a flimsy manner. "I quickly check your #android app on the #playstore and you have some security issues...It's super easy to get the password of the local database for example.. The #Aadhaar #android app is saving your biometric settings in a local database which is protected with a password. To generate the password they used a random number with 123456789 as seed and a hardcoded string db_password_123," Alderson mentioned on Twitter. Anand Venkatanarayanan, the editor of Kārana, a blog that reports on the Aadhaar, was scathing in his assessment of the flaw. "Any decent tech person can *get* the encrypted Mobile Aadhaar PIN because the 'password' is known," he said in a series of tweets. "All the person needs is to get access to your phone. Your phone gone, your Aadhaar gone." Venkatnarayanan pointed out that the issue wasn't even new as he reportedly pointed out these issues to the CEO of UIDAI AB Pandey in an email. "A $3B taxpayer funded project *does not* have a bug reporting policy for months," he tweeted. "Their tech fixes are just empty boasts. Won't stand scrutiny even by a decent on looker. The…
Please subscribe to MediaNama. Don't share prints and PDFs.
You May Also Like
News
Google has released a Google Travel Trends Report which states that branded budget hotel search queries grew 179% year over year (YOY) in India, in...
Advert
135 job openings in over 60 companies are listed at our free Digital and Mobile Job Board: If you’re looking for a job, or...
News
By Aroon Deep and Aditya Chunduru You’re reading it here first: Twitter has complied with government requests to censor 52 tweets that mostly criticised...
News
Rajesh Kumar* doesn’t have many enemies in life. But, Uber, for which he drives a cab everyday, is starting to look like one, he...