DT
PT
Subscribe To Print Edition About The Tribune Code Of Ethics Download App Advertise with us Classifieds
search-icon-img
search-icon-img
Advertisement
PREMIUM India Pakistan News Explainers Defence Photo Gallery IPL 2025
Home / Nation / No security breach in Aarogya Setu app, govt assures after ethical hacker raises privacy concerns

No security breach in Aarogya Setu app, govt assures after ethical hacker raises privacy concerns

The app is the government's mobile application for contact tracing and disseminating medical advisories to users in order to contain the spread of COVID-19
article_Author
Tribune Web Desk
Updated At : 04:05 PM May 06, 2020 IST
  • fb
  • twitter
  • whatsapp
  • whatsapp
featured-img featured-img
Advertisement

New Delhi, May 6

Advertisement

The government on Wednesday said no data or security breach had been identified in Aarogya Setu after an ethical hacker raised concerns about a potential security issue in the app.

The app is the government’s mobile application for contact tracing and disseminating medical advisories to users in order to contain the spread of COVID-19.

Advertisement

On Tuesday, a French hacker and cyber security expert Elliot Alderson had claimed that “a security issue has been found” in the app and that “privacy of 90 million Indians is at stake”.

Dismissing the claims, the government said “no personal information of any user had been proven to be at risk by this ethical hacker”.

Advertisement

“We are continuously testing and upgrading our systems. Team Aarogya Setu assures everyone that no data or security breach has been identified,” the government said through the app’s Twitter handle.

The tweet gave point-by-point clarification on the red flags raised by the hacker.

“We discussed with the hacker and were made aware of the following…the app fetches user location on a few occasions,” it said, but added that this was by design and is clearly detailed in the privacy policy.

The app fetches users’ location and stores on the server in a secure, encrypted, anonymised manner – at the time of registration, at the time of self-assessment, when users submit their contact tracing data voluntarily through the app or when it fetches the contact tracing data of users after they have turned COVID-19 positive, it said.

On another issue that users can get COVID-19 stats displayed on the home screen by changing the radius and latitude-longitude using a script, Aarogya Setu said all this information is already public for all locations and hence does not compromise on any personal or sensitive data.

“We thank the ethical hacker on engaging with us. We encourage any users who identify a vulnerability to inform us immediately…,” it said.

Responding to Aarogya Setu’s clarification, Alderson tweeted, “I will come back to you tomorrow”. PTI

Advertisement
Advertisement
Advertisement
Advertisement
Advertisement

The Tribune, now published from Chandigarh, started publication on February 2, 1881, in Lahore (now in Pakistan). It was started by Sardar Dyal Singh Majithia, a public-spirited philanthropist, and is run by a trust comprising five eminent persons as trustees.

The Tribune, the largest selling English daily in North India, publishes news and views without any bias or prejudice of any kind. Restraint and moderation, rather than agitational language and partisanship, are the hallmarks of the newspaper. It is an independent newspaper in the real sense of the term.

The Tribune has two sister publications, Punjabi Tribune (in Punjabi) and Dainik Tribune (in Hindi).

Remembering Sardar Dyal Singh Majithia

Copyright © The Tribune Trust, 2024
Designed and developed by : sortd
tlbr_img1 Home tlbr_img2 Classifieds tlbr_img3 Premium tlbr_img4 Videos tlbr_img5 E-Paper