wordpress blog stats
Connect with us

Hi, what are you looking for?

New data leak allows targeting by religion, caste and locality and provides Aadhaar and bank details

Security researcher Srinivas Kodali has reported the leak of data of individuals on a website that includes the Aadhaar number, bank – branch, IFSC code and account number, father’s name, address, gram panchayat, mobile number, ration card number, occupation, religion and caste information. Due to the sensitive nature of the leak, the name of the Andhra Pradesh government website is being withheld till the data can be secured.

While the government and UIDAI have argued in the Supreme Court that Aadhaar cannot be used to profile individuals, Aadhaar numbers being linked to various sets of information allow aggregation of discrete sets of data into a pervasive whole. The information, as seen here clearly allows for targeting of individuals by religion, caste, locality and more. While the government claims that it does not have the capabilities to use Aadhaar in this manner, actual applications of such use refute their claims.

Kodali shared a heavily redacted screenshot of the kind of data publicly available on the site. The facility clearly allows for searching of individual information and returns lists that can be used by anyone to get targeted lists of people whose information is on the site. Kodali has stressed that this database is publicly available and that there is no unauthorized access or hacking involved to access it. It is published publicly.

The ability to generate lists of this sort is no minor data breach and has security implications for entire communities. Information of this sort can be used to frame people as well.

MediaNama spoke with Srinivas Kodali and he says that there continues to be no way to report these data leaks to the government and UIDAI. After he tweeted about the data leak, someone masked the Aadhaar numbers from the database. However the database with all the remaining information is still online and public.

The report of the Task Force on AI published last month makes specific mention of the potential of Aadhaaar in the creation of big data as well.

Earlier this month, we saw the Haryana government collecting detailed profiling information from all students from schools in Uttar Pradesh.

Advertisement. Scroll to continue reading.

MediaNama’s take

Privacy of Indians will continue to be compromised while the government does not take data security seriously and responds to reports of breaches and leaks with denials and persecution of the researchers reporting the leaks.

Needless to say, criminals who gain access to such information would not be reporting them, but exploiting the information.

The risk of data leaks is made worse due to the linking of Aadhaar with various sets of data. This allows data to be collated across multiple leaks into increasingly detailed profiles of people by matching Aadhaar numbers across unrelated data sets. Of course, such profiling is also possible without leaks, conducted intentionally, by the government or other private players with access to the data.

Storing of the Aadhaar number against individual data must be stopped immediately to prevent the risk of aggregation of such data. Additionally, the government needs to ensure that databases that collect information of individuals are secured appropriately.

Advertisement. Scroll to continue reading.
Written By

Vidyut is a commentator on socio-political issues with a keen interest in behavioral sciences, digital rights and security and manages to engage her various proficiencies to bring an unusual perspective to issues related with the intersection of tech and people.

MediaNama’s mission is to help build a digital ecosystem which is open, fair, global and competitive.



Releasing the policy is akin to putting the proverbial 'cart before the horse'.


The industry's growth is being weighed down by taxation and legal uncertainty.


Due to the scale of regulatory and technical challenges, transparency reporting under the IT Rules has gotten off to a rocky start.


Here are possible reasons why Indians are not generating significant IAP revenues despite our download share crossing 30%.


This article addresses the legal and practical ambiguities in understanding the complex crypto ecosystem in India.

You May Also Like


Google has released a Google Travel Trends Report which states that branded budget hotel search queries grew 179% year over year (YOY) in India, in...


135 job openings in over 60 companies are listed at our free Digital and Mobile Job Board: If you’re looking for a job, or...


Rajesh Kumar* doesn’t have many enemies in life. But, Uber, for which he drives a cab everyday, is starting to look like one, he...


By Aroon Deep and Aditya Chunduru You’re reading it here first: Twitter has complied with government requests to censor 52 tweets that mostly criticised...

MediaNama is the premier source of information and analysis on Technology Policy in India. More about MediaNama, and contact information, here.

© 2008-2021 Mixed Bag Media Pvt. Ltd. Developed By PixelVJ

Subscribe to our daily newsletter
Your email address:*
Please enter all required fields Click to hide
Correct invalid entries Click to hide

© 2008-2021 Mixed Bag Media Pvt. Ltd. Developed By PixelVJ