Cyclone Amphan intensifies into ‘extremely severe storm’, likely to turn ‘super cyclonic’: IMD

New Delhi, May 6: The government on Wednesday said no data or security breach has been identified in Aarogya Setu after an ethical hacker raised concerns about a potential security issue in the app.

The app is the government's mobile application for contact tracing and disseminating medical advisories to users in order to contain the spread of coronavirus.

On Tuesday, a French hacker and cyber security expert Elliot Alderson had claimed that "a security issue has been found" in the app and that "privacy of 90 million Indians is at stake".

Dismissing the claims, the government said "no personal information of any user has been proven to be at risk by this ethical hacker".

"We are continuously testing and upgrading our systems. Team Aarogya Setu assures everyone that no data or security breach has been identified," the government said through the app’s Twitter handle.

The tweet gave point-by-point clarification on the red flags raised by the hacker.

"We discussed with the hacker and were made aware of the following... the app fetches user location on a few occasions," it said, but added that this was by design and is clearly detailed in the privacy policy.

The app fetches users’ location and stores on the server in a secure, encrypted, anonymised manner - at the time of registration, at the time of self assessment, when users submit their contact tracing data voluntary through the app or when it fetches the contact tracing data of users after they have turned COVID-19 positive, it said.

On another issue that users can get COVID-19 stats displayed on the home screen by changing the radius and latitude-longitude using a script, Aarogya Setu said that all this information is already public for all locations and hence does not compromise on any personal or sensitive data.

"We thank the ethical hacker on engaging with us. We encourage any users who identify a vulnerability to inform us immediately...," it said.

Responding to Aarogya Setu's clarification, Alderson tweeted, "I will come back to you tomorrow".

Washington, May 29: Reiterating his offer to mediate on the border dispute between India and China, US President Donald Trump has said that he spoke with Narendra Modi about the "big conflict" and asserted that the Indian Prime Minister is not in a "good mood" over the latest flare-ups between the two countries.

Speaking with the reporters in the Oval Office of the White House on Thursday, Trump said a "big conflict" was going on between India and China.

"I like your prime minister a lot. He is a great gentleman," the president said.

"Have a big conflict …India and China. Two countries with 1.4 billion people (each). Two countries with very powerful militaries. India is not happy and probably China is not happy," he said when asked if he was worried about the border situation between India and China.

"I can tell you; I did speak to Prime Minister Modi. He is not in a good mood about what is going on with China," Trump said.

A day earlier, the president offered to mediate between India and China.

Trump on Wednesday said in a tweet that he was "ready, willing and able to mediate" between the two countries.

Responding to a question on his tweet, Trump reiterated his offer, saying if called for help, "I would do that (mediate). If they thought it would help" about "mediate or arbitrate, I would do that," he said.

India on Wednesday said it was engaged with China to peacefully resolve the border row, in a carefully crafted reaction to Trump's offer to arbitrate between the two Asian giants to settle their decades-old dispute.

"We are engaged with the Chinese side to peacefully resolve it," External Affairs Ministry Spokesperson Anurag Srivastava said, replying to a volley of questions at an online media briefing.

While the Chinese Foreign Ministry is yet to react to Trump's tweet which appears to have caught Beijing by surprise, an op-ed in the state-run Global Times said both countries did not need such a help from the US President.

"The latest dispute can be solved bilaterally by China and India. The two countries should keep alert on the US, which exploits every chance to create waves that jeopardise regional peace and order," it said.

In Beijing, Chinese Foreign Ministry spokesman Zhao Lijian said on Wednesday that both China and India have proper mechanisms and communication channels to resolve the issues through dialogue and consultations.

Trump previously offered to mediate between India and Pakistan on the Kashmir issue, a proposal which was rejected by New Delhi.

The situation in eastern Ladakh deteriorated after around 250 Chinese and Indian soldiers were engaged in a violent face-off on the evening of May 5 which spilled over to the next day before the two sides agreed to "disengage" following a meeting at the level of local commanders.

Over 100 Indian and Chinese soldiers were injured in the violence.

The incident in Pangong Tso was followed by a similar incident in north Sikkim on May 9.

Bengaluru, May 21: The COVID-19-induced lockdown saw a spurt in crybercrimes in India with Kerala recording the highest number during the period, according to an analysis of IT security solutions provider K7 Computing.

The report analyses various cyberattacks within India during the pandemic and reveals that threat actors targeted the States with COVID-19-themed attacks aimed at exploiting user trust.

The sudden surge in the frequency of attacks witnessed from February 2020 to mid-April 2020 indicates that scamsters across the world were exploiting the widespread panic around coronavirus at both the individual and corporate level, the company said in a statement.

These attacks aimed to compromise computers and mobile devices to gain access to users confidential data, banking details and cryptocurrency accounts.

The key threats seen during this period ranged from phishing attacks to rogue apps disguised as COVID-19 information apps that targeted users sensitive data.

Phishing attacks were noticed more in Tier-II and Tier-III cities while the metros fared better.

Smaller cities saw over 250 attacks being blocked per 10,000 users.

Users from Ghaziabad and Lucknow seem to have faced almost six and four times the number of attacks, respectively, as Bengaluru users.

In Kerala, regions like Kottayam, Kannur, Kollam, and Kochi saw the highest hits with 462, 374, 236, and 147 attacks respectively, while the state as a whole saw around 2,000 attacks during the period, the highest thus far in the country.

This was followed by Punjab with 207 attacks and Tamil Nadu at 184 attacks, the statement said.

A majority of the recorded attacks were phishing attacks with sophisticated campaigns that could easily snare even the most educated users, it said.

These attacks were aimed at heightening users fears and creating a sense of urgency to take action.

The report noted phishing attacks where scamsters posed as representatives of the United States Department of the Treasury, the World Health Organisation, and the Centres for Disease Control and Prevention.

Users were encouraged to visit links that would automatically download malware on the host computer such as the Agent Tesla keylogger or Lokibot information-stealing malware, infamous banking Trojans such as Trickbot or Zeus Sphinx, and even disastrous ransomware.

Other attacks included infected COVID-19 Android apps like CoronaSafetyMask that scam users with promises of masks for an upfront payment; the spyware app Project Spy; and seemingly genuine apps that are infected with dangerous malware like banking Trojans such as Ginp, Anubis and Cerberus, it was stated.