Jignesh Mevani's rally cancelled, triggers massive protests in Delhi

New Delhi, May 6: The government on Wednesday said no data or security breach has been identified in Aarogya Setu after an ethical hacker raised concerns about a potential security issue in the app.

The app is the government's mobile application for contact tracing and disseminating medical advisories to users in order to contain the spread of coronavirus.

On Tuesday, a French hacker and cyber security expert Elliot Alderson had claimed that "a security issue has been found" in the app and that "privacy of 90 million Indians is at stake".

Dismissing the claims, the government said "no personal information of any user has been proven to be at risk by this ethical hacker".

"We are continuously testing and upgrading our systems. Team Aarogya Setu assures everyone that no data or security breach has been identified," the government said through the app’s Twitter handle.

The tweet gave point-by-point clarification on the red flags raised by the hacker.

"We discussed with the hacker and were made aware of the following... the app fetches user location on a few occasions," it said, but added that this was by design and is clearly detailed in the privacy policy.

The app fetches users’ location and stores on the server in a secure, encrypted, anonymised manner - at the time of registration, at the time of self assessment, when users submit their contact tracing data voluntary through the app or when it fetches the contact tracing data of users after they have turned COVID-19 positive, it said.

On another issue that users can get COVID-19 stats displayed on the home screen by changing the radius and latitude-longitude using a script, Aarogya Setu said that all this information is already public for all locations and hence does not compromise on any personal or sensitive data.

"We thank the ethical hacker on engaging with us. We encourage any users who identify a vulnerability to inform us immediately...," it said.

Responding to Aarogya Setu's clarification, Alderson tweeted, "I will come back to you tomorrow".

New Delhi, Mar 15: The new rules for debit and credit cards to increase security and reduce frauds kick in from Monday. In January, the Reserve Bank of India (RBI) had issued new rules to improve user convenience and increase the security of card transactions. These rules will help in curbing the misuse of debit and credit cards.

RBI has directed banks to allow only domestic card transactions at ATMs and PoS terminals in India at the time of issuance/reissuance of card. For international transactions, online transactions, card-not-present transactions and contactless transactions, customers will have to separately set up services on their card.

These rules will be applicable for new cards from March 16. Those with old cards can decide whether to disable any of these features.

As per the existing rules, these services used to come automatically with the card, but now it will start at the request of the customer.

Debit or credit card customers who have not yet done any online transaction, contactless transaction or international transaction with the card, then these services on the card will automatically stop from March 16.

The Reserve Bank has asked all banks to provide mobile banking, net banking option to enable limit and enable and disable service 24 hours a day, seven days a week.

If the customer makes any change in the status of the card, the bank will alert the customer through SMS/email and send the information.

Issuers shall provide to all cardholders facility to switch on/off and set/modify transaction limits (within the overall card limit, if any, set by the issuer) for all types of transactions -- domestic and international, at PoS/ATMs/online transactions/contactless transactions, etc.,

The provisions, however, are not mandatory for prepaid gift cards and those used at mass transit systems.

The latest instructions come in the wake of rising instances of cyber frauds and the huge increase in the use of cards.

New Delhi, Jan 3: US aviation regulator Federal Aviation Administration on Thursday warned America's airlines and their pilots that there is risk involved in operating flights in Pakistan airspace due to "extremist or militant activity", according to an official document.

"Exercise caution during flight operations. There is a risk to US civil aviation operating in the territory and airspace of Pakistan due to extremist/militant activity," said the US Federal Aviation Administration (FAA) in a notice to airmen (NOTAM) dated December 30, 2019.

The NOTAM is applicable to all US-based airlines and US-based pilots.

The US regulator said in its NOTAM that there continues to be a risk to US civil aviation sector from attacks against airports and aircraft in Pakistan, particularly for aircraft on the ground and aircraft operating at low altitudes, including during the arrival and departure phases of flights.

"The ongoing presence of extremist/militant elements operating in Pakistan poses a continued risk to US civil aviation from small-arms fire, complex attacks against airports, indirect weapons fire, and anti-aircraft fire, any of which could occur with little or no warning," it said.

The FAA said that while, to date, there have been no reports of man-portable air defense systems or Manpads being used against the civil aviation sector in Pakistan, some extremist or terrorist groups operating there are suspected of having access to these Manpads.

"As a result, there is potential risk for extremists/militants to target civil aviation in Pakistan with Manpads," it said.

The regulator added that pilots or airlines must report safety or security incidents - which may happen in Pakistan - to the FAA.

Pakistan on July 16 last year opened its airspace for India after about five months of restrictions imposed in the wake of a standoff with New Delhi.

Following the Balakot airstrikes by the Indian Air Force, Pakistan had closed its airspace on February 26 last year.

Pakistan in October last year had denied India's request to allow Prime Minister Narendra Modi's VVIP flight to use its airspace for his visit to Saudi Arabia over the Jammu and Kashmir issue.