Fugitive Vijay Mallya has blood on his hands: Kingfisher workers write to PM Modi

New Delhi, May 6: The government on Wednesday said no data or security breach has been identified in Aarogya Setu after an ethical hacker raised concerns about a potential security issue in the app.

The app is the government's mobile application for contact tracing and disseminating medical advisories to users in order to contain the spread of coronavirus.

On Tuesday, a French hacker and cyber security expert Elliot Alderson had claimed that "a security issue has been found" in the app and that "privacy of 90 million Indians is at stake".

Dismissing the claims, the government said "no personal information of any user has been proven to be at risk by this ethical hacker".

"We are continuously testing and upgrading our systems. Team Aarogya Setu assures everyone that no data or security breach has been identified," the government said through the app’s Twitter handle.

The tweet gave point-by-point clarification on the red flags raised by the hacker.

"We discussed with the hacker and were made aware of the following... the app fetches user location on a few occasions," it said, but added that this was by design and is clearly detailed in the privacy policy.

The app fetches users’ location and stores on the server in a secure, encrypted, anonymised manner - at the time of registration, at the time of self assessment, when users submit their contact tracing data voluntary through the app or when it fetches the contact tracing data of users after they have turned COVID-19 positive, it said.

On another issue that users can get COVID-19 stats displayed on the home screen by changing the radius and latitude-longitude using a script, Aarogya Setu said that all this information is already public for all locations and hence does not compromise on any personal or sensitive data.

"We thank the ethical hacker on engaging with us. We encourage any users who identify a vulnerability to inform us immediately...," it said.

Responding to Aarogya Setu's clarification, Alderson tweeted, "I will come back to you tomorrow".

New Delhi, Jan 13: The Jawaharlal Nehru University Students' Union (JNUSU) has alleged that the varsity administration has blocked the registration of 300 students on the basis of 'fake Proctor inquiries'.

The union had on Saturday asked students of the university to pay their academic tuition fee but not the hiked hostel fee.

"Today the Vice Chancellor first blocked the fee payment portal and then blocked the payment of tuition fees. It is clear that the VC was lying through the teeth when he said students want to register but are not being allowed to by protesters," JNUSU president Aishe Ghosh said.

She said the VC has also blocked the registration of 300 students based on fake proctor enquiries which are not even completed.

"The truth is that it is the administration which does not want students to register and is blocking their registration," she said.

JNUSU vice president Saket Moon said that in the meetings held in HRD ministry, it was decided that the administration would take a lenient view on the students' protest and not take action against them.

He said many students, who opened the portal for registration found they had been academically suspended and could not register.

He said the JNUSU had softened its stand by saying that they would register by paying the old fees but that has been kept on hold.

On Sunday, the administration extended the date for the winter semester registration till January 15.

Sopore, Jul 1: Police rescued a three-year-old boy from getting hit by bullets during a terrorist attack in Jammu and Kashmir's Sopore on Wednesday.

Earlier in the day, a Central Reserve Police Force (CRPF) jawan and a civilian lost their lives after terrorists fired upon a CRPF patrolling party in Sopore.

Two of the injured CRPF jawans are known to be in critical condition. Three CRPF personnel were also injured in the attack, as per CRPF.