The department of agriculture of the Jharkhand government is leaking personal and legal documents of individuals in the state. About 9,000 documents from the government portal have been leaked. The documents are assorted types of legal, personal and business documents many of them containing personally identifiable information of proprietors, licenses, lease agreements between the individuals and the state government, licenses to sell agricultural products and so on. The vulnerability was first discovered by French security researcher Robert Baptiste, who goes by Elliot Alderson on Twitter. To be clear, the data has not been hacked or stolen, but is openly available on a dashboard run by the Jharkhand state government. [caption id="attachment_187933" align="alignnone" width="897"] The portal leaking personal and legal data; this image shows a small sample of the thousands of documents available for download.[/caption] Personal documents Scanned copies of PAN card and Aadhaar cards of several individuals are available on the website. Various legal documents and affidavits containing licenses to sell and stock insecticides, fertilizers, seeds. Remember that a legal document contains granular detail of the concerned parties or entities. Documents accessed by MediaNama contain residential and/or office address of the proprietor along with full names, fathers' names, signatures and in some cases even their photographs. The documents also have registration documents which also reveal personally identifiable information. [caption id="attachment_187921" align="alignright" width="435"] Scan of Aadhar Card of the same individual[/caption] [caption id="attachment_187917" align="alignnone" width="576"] Scan of PAN Card of an individual, available for download on a state government portal.[/caption] Appointment…
