Jamia Millia Islamia varsity’s new night out rule for girls sparks row

New Delhi, Jun 3: Over 1 lakh scanned copies of Indians' national IDs, including Aadhaar, PAN card and passport, have been put on dark web for sale, cyber intelligence firm Cyble said on Wednesday.

The leaked data seems to have originated from a third party and not from the government system, according to a report by Cyble.

"We came across a non-reputed actor who is currently selling over 1 lakh Indian National IDs on the dark net. With such a low reputation, ideally, we would have skipped this; however, the samples shared by the actor intrigued our interest -- and also the volume. The actor is alleged to have access to over 1 lakh IDs from different places in India," Cyble said.

The personal data leaked by cyber criminals leads to various nefarious activities such as identity thefts, scams, and corporate espionage. Many criminals use the personal details in the IDs to win trust of the people over a phone call for fraudulent activities.

Cyber criminals leak personal data of 2.9 cr job-seeking Indians on dark web for free

The Cyble researchers acquired around 1,000 IDs from the seller and confirmed that the scanned IDs belong to Indians.

"Preliminary analysis suggests that the data originated from a third party, and no indication or artefact is indicating that it came from a government system. At this point, Cyble researchers are still investigating this further -- we are hoping to share an update soon," Cyble said.

The scanned ID documents indicate that the data may have been leaked from a company's data base in the segment where they have to comply with 'Know Your Customer' (KYC) norms.

"Cyble researchers have also learned about a surge in KYC and banking scams -- leaks such as this are often used by scammers to target individuals, especially elderlies," Cyble said.

The cyber intelligence firm has recommended people to refrain from sharing personal information especially financial information over phone, e-mail or SMS.

"Regularly monitor your financial transaction, if you notice any suspicious transaction, contact your bank immediately," the company said.

In May, Cyble showed two instances where personal data of 7.65 crore Indians have been put on sale in the dark web. In one instance, the seller claimed to have sourced data of 4.75 crore Indians from online directory Truecaller and in other, the seller claimed to have sourced from job websites.

Truecaller, however, had denied the claim of breach in its database.

Thiruvananthapuram, Apr 23: Amid opposition charges, the Kerala government on Tuesday constituted a two-member committee to examine whether the privacy of personal and sensitive data of COVID-19 patients has been protected under the agreement entered by it with US-based IT firm Sprinklr.

The committee, headed by former Special IT Sscretary M Madhavan Nambiar and former health secretary Rajeev Sadanandan, will also ascertain whether adequate procedures were followed while finalising the arrangements with the private company.

The Opposition Congress has been levelling charges that the collection of data by the US firm violated the fundamental rights of the patients.

In its order, state government said it had initiated steps to set up a Data Analytics platform to integrate data from various sources available in the government to meet the "exigency of a massive and unprecedented surge of epidemic".

The committee will also examine whether deviations, if any, are fair, justified and reasonable considering the extraordinary and critical situation faced by the state, it said.

Meanwhile, the Kerala High Court on Tuesday asked the state government to file its reply by April 24 on a plea seeking to quash its contract with the US-based firm.

Expressing concern over the confidentiality of the citizen's data processed by a third party, the court sought to know why the sanction of the law department was not taken before finalising the agreement.

The court hailed the state government's fight against COVID-19, but said it is concerned about data confidentiality.

The government informed the court that the agreement with Sprinklr has safeguards for data protection "as per standard practices of software as a service model."

The ward-level committees, set up by the government for the anti-coronavirus fight, collect information of those under home isolation, the elderly and those at the risk of the disease, using a questionnaire and later uploads it on the server of the private agency.

Jaipur, Jan 27: Senior Congress leader Shashi Tharoor said that if the Citizenship Amendment Act leads to the implementation of the NPR and the NRC, it would be a complete victory for Pakistan's founding father, Muhammad Ali Jinnah.

He said that Jinnah's idea of a country was already winning in India with the contentious Citizenship Amendment Act (CAA) coming into effect, but asserted that there was still a choice available.

"I would not say Jinnah has completely won, but I would say Jinnah is winning. There is still a choice available to the nation between Jinnah's idea of a country and Gandhiji's idea of a country," he said on the sidelines of the Jaipur Literature Festival on Sunday.

The CAA came into force in India in December amid protests across the country and around the world.

The MP from Thiruvananthapuram said that the amended Citizenship Act took Jinnah's logic by declaring that religion shall be the basis of nationhood, reaffirming that Gandhi's idea is that all religions are equal .

"The CAA is, if you are talking Tennis, you would say one set up or big first set lead for Jinnah. But the next step would be if the CAA would lead to the National Population Register (NPR) and the National Register of Citizens (NRC). If that happens, then you would consider that Jinnah's victory is complete," he said.

The CAA seeks to grant citizenship to migrants belonging to Hindu, Sikh, Buddhist, Christian, Jain and Parsi communities who came to India from Pakistan, Bangladesh and Afghanistan on or before December 31, 2014.

On the BJP's defence that the NPR was carried out during the UPA regime, Tharoor said that the Congress government had utilised a decision of the NDA government led by former prime minister Atal Bihari Vajpayee.

"It never asked where were your parents born. It never authorised the enumerators to note on the margin 'dubious citizenship', a term used in the NPR rules crafted by this government. That is purely BJP's invention," he said.

If we go around this country authorising people to interview all the citizens, or identify some who have 'dubious citizenship', you can be pretty sure which Indians are going to be found on the 'dubious citizenship', he said.

"That will principally be one community that is not mentioned in the CAA. And if that happens, then it is indeed Jinnah's victory.

"From wherever he is, he can point to this place and say, 'see I was right in the 1940. We are separate nations and Muslims deserved their own country because Hindus cannot be just'," Tharoor said.

Speaking about the Delhi election, the three-time MP said that the maximum development in the national capital happened under the Congress government.

"What Sheila Dikshit did in her 15 years as Chief Minister of Delhi, no other leader could do it before or after her," he said.