Godse, Modi believe in same ideology; only difference is Modi lacks guts to admit it: Rahu Gandhi

New Delhi, May 6: The government on Wednesday said no data or security breach has been identified in Aarogya Setu after an ethical hacker raised concerns about a potential security issue in the app.

The app is the government's mobile application for contact tracing and disseminating medical advisories to users in order to contain the spread of coronavirus.

On Tuesday, a French hacker and cyber security expert Elliot Alderson had claimed that "a security issue has been found" in the app and that "privacy of 90 million Indians is at stake".

Dismissing the claims, the government said "no personal information of any user has been proven to be at risk by this ethical hacker".

"We are continuously testing and upgrading our systems. Team Aarogya Setu assures everyone that no data or security breach has been identified," the government said through the app’s Twitter handle.

The tweet gave point-by-point clarification on the red flags raised by the hacker.

"We discussed with the hacker and were made aware of the following... the app fetches user location on a few occasions," it said, but added that this was by design and is clearly detailed in the privacy policy.

The app fetches users’ location and stores on the server in a secure, encrypted, anonymised manner - at the time of registration, at the time of self assessment, when users submit their contact tracing data voluntary through the app or when it fetches the contact tracing data of users after they have turned COVID-19 positive, it said.

On another issue that users can get COVID-19 stats displayed on the home screen by changing the radius and latitude-longitude using a script, Aarogya Setu said that all this information is already public for all locations and hence does not compromise on any personal or sensitive data.

"We thank the ethical hacker on engaging with us. We encourage any users who identify a vulnerability to inform us immediately...," it said.

Responding to Aarogya Setu's clarification, Alderson tweeted, "I will come back to you tomorrow".

New Delhi, Jan 31: The Supreme Court Friday dismissed the plea filed by one of the four death row convicts in the Nirbhaya gang-rape and murder case, Pawan Gupta, seeking review of its order rejecting his juvenility claim.

The review plea filed earlier in the day was taken up for consideration in-chamber by a bench comprising Justices R Banumathi, Ashok Bhushan and A S Bopanna. 

On January 20, the apex court had rejected the plea by Pawan who had challenged the Delhi High Court's order dismissing his juvenility claim.

Advocate A P Singh, who is representing Pawan in the case, said he filed a petition on his behalf seeking review of the top court's January 20 order on Friday.

While dismissing the plea, the top court had said there was no ground to interfere with the high court order that rejected Pawan's plea and his claim was rightly rejected by the trial court as also the high court.

It had said the matter was raised earlier in the review petition before the apex court which rejected plea of juvenility taken by Pawan and another co-accused Vinay Kumar Sharma and that order has attained finality.

Singh had argued that as per his school leaving certificate, he was a minor at the time of the offence and none of the courts, including trial court and high court, ever considered his documents.

Solicitor General Tushar Mehta, appearing for the Delhi Police, had said Pawan's claim of juvenility was considered at each and every judicial forum and it will be a travesty of justice if the convict is allowed to raise the claim of juvenility repeatedly and at this point of time.

The trial court on January 17 issued black warrants for the second time for the execution of all the four convicts in the case -- Mukesh Kumar Singh (32), Pawan (25), Vinay (26) and Akshay (31) -- in Tihar jail at 6 am on February 1. Earlier, on January 7, the court had fixed January 22 as the hanging date.

As of now, only Mukesh has exhausted all his legal remedies including the clemency plea which was dismissed by President Ram Nath Kovind on January 17 and the appeal against the rejection was thrown out by the Supreme Court on January 29.

Convict Akshay's curative petition was dismissed by the top court on January 30. Another death row convict Vinay moved mercy plea before President on January 29, which is pending.

Singh has also approached the trial court seeking stay on the execution scheduled on February 1, saying the legal remedies of some of the convicts are yet to be availed.

A 23-year-old paramedic student, referred to as Nirbhaya, was gang-raped and brutally assaulted on the intervening night of December 16-17, 2012, in a moving bus in south Delhi by six people before she was thrown out on the road.

Bengaluru, May 21: The COVID-19-induced lockdown saw a spurt in crybercrimes in India with Kerala recording the highest number during the period, according to an analysis of IT security solutions provider K7 Computing.

The report analyses various cyberattacks within India during the pandemic and reveals that threat actors targeted the States with COVID-19-themed attacks aimed at exploiting user trust.

The sudden surge in the frequency of attacks witnessed from February 2020 to mid-April 2020 indicates that scamsters across the world were exploiting the widespread panic around coronavirus at both the individual and corporate level, the company said in a statement.

These attacks aimed to compromise computers and mobile devices to gain access to users confidential data, banking details and cryptocurrency accounts.

The key threats seen during this period ranged from phishing attacks to rogue apps disguised as COVID-19 information apps that targeted users sensitive data.

Phishing attacks were noticed more in Tier-II and Tier-III cities while the metros fared better.

Smaller cities saw over 250 attacks being blocked per 10,000 users.

Users from Ghaziabad and Lucknow seem to have faced almost six and four times the number of attacks, respectively, as Bengaluru users.

In Kerala, regions like Kottayam, Kannur, Kollam, and Kochi saw the highest hits with 462, 374, 236, and 147 attacks respectively, while the state as a whole saw around 2,000 attacks during the period, the highest thus far in the country.

This was followed by Punjab with 207 attacks and Tamil Nadu at 184 attacks, the statement said.

A majority of the recorded attacks were phishing attacks with sophisticated campaigns that could easily snare even the most educated users, it said.

These attacks were aimed at heightening users fears and creating a sense of urgency to take action.

The report noted phishing attacks where scamsters posed as representatives of the United States Department of the Treasury, the World Health Organisation, and the Centres for Disease Control and Prevention.

Users were encouraged to visit links that would automatically download malware on the host computer such as the Agent Tesla keylogger or Lokibot information-stealing malware, infamous banking Trojans such as Trickbot or Zeus Sphinx, and even disastrous ransomware.

Other attacks included infected COVID-19 Android apps like CoronaSafetyMask that scam users with promises of masks for an upfront payment; the spyware app Project Spy; and seemingly genuine apps that are infected with dangerous malware like banking Trojans such as Ginp, Anubis and Cerberus, it was stated.