Vulnerabilities Expose Private Data in Indian Government Systems
ID: 9f2c912b-ff60-5c68-ace1-81d096186a22
STIX ID: report--9f2c912b-ff60-5c68-ace1-81d096186a22
Feed Name: Dark Reading
An independent researcher discovered 14 vulnerabilities across Indian government portals — including critical access-control and information-disclosure flaws — that exposed personal and financial data (students’ enrollment and exam records, scholarship recipients’ bank accounts, and applicants’ data on the UPSC portal). The issues ranged from missing authentication and predictable file paths to an exposed administrative authentication interface and weaknesses enabling automated credential attacks; the government patched the flaws within two to three weeks.
Your team is not currently subscribed to this feed. You must subscribe to it in order to see this post.
