Update on February 20: Indane denied the leak of any Aadhaar data, stating that its website did not host any Aadhaar numbers. The state-owned company pointed out that its software “captures only the Aadhaar number which is required for LPG subsidy transfer. No other details are captured by IndianOil. Therefore leakage of Aadhaar is not possible through us.” There is no leak of #Aadhaar data through #Indane website pic.twitter.com/sHje42Ba5e — Indian Oil Corp Ltd (@IndianOilcl) February 19, 2019 Security researcher Baptiste tweeted that the Indane shut down the affected dealer portal within 3 hours of TechCrunch reporting the story. After denying the leak, the Indane website was down “for maintenance,” he tweeted. ? Update: Less than 3 hours later, @IndianOilcl shutdown the affected dealer portal https://t.co/vsUFcRZOd7 — Elliot Alderson (@fs0c131y) February 19, 2019 ? Update: https://t.co/fo5HYObR8a is down. They denied the leak but apparently a maintenance was needed ?♂️ — Elliot Alderson (@fs0c131y) February 19, 2019 So @IndianOilcl said "There is no Aadhaar number hosted on this website". Guys, did you really think we didn't take screenshots... Are you able to read what we have after the parameter called "aadhaar_no"? pic.twitter.com/lGrTFhmWjE — Elliot Alderson (@fs0c131y) February 19, 2019 Earlier on February 19: Indane Gas leaks Aadhaar nos, names and addresses of 5.8M customers online Government owned gas company Indane – which has 90 million customers - leaked the Aadhaar data of 5.8 million customers' on its dealer and distributor website. Security researcher Robert Baptiste, who goes by Elliot Alderson (fs0c131y) on…
