CoWin data leak details- tweet by Rajshekhar Rajaharia
Rajsekhar Rajaharia is known to be cyber expert, from sources
Known to be a cyber security expert Rajshekhar Rajaharia as per his tweeter profile is an Internet Security Researcher, Columnist, Guest Writer who has recently posted a tweet in which he claims that – there is no data leaks from the Cowin server, PDF files of RT-PCR results/Beneficiary including phase 2 were getting indexed by Google from a CDN Server. Hackers though have posted them on DarkWeb Forum earlier but seem deleted now.
Our data on the #Cowin portal is 100% safe. There is no #dataleak from Cowin Server. PDF files of RT-PCR results/Beneficiary including PII were getting indexed by Google from a CDN Server. Hackers had posted them on DarkWeb Forum. Seems deleted now. #infosec
— Rajshekhar Rajaharia (@rajaharia) January 22, 2022
Earlier the cyber expert has shared a tweet that seems that he has investigated that the public details were being public through Government CDN. The tweet stated that around 9 lakh public/private government documents were indexed by google in search engines. And now data of Patients’ details are public on the dark web. And then we urge to fasten deindexing. You may refer to the tweet below.
PII including Name, MOB, PAN, Address etc of #Covid19 #RTPCR results & #Cowin data getting public through a Govt CDN. #Google indexed almost 9 Lac public/private #GovtDocuments in search engines. Patient's data is now listed on #DarkWeb. Need fast deindex#Infosec @IndianCERT pic.twitter.com/LgQxZZi8T6
— Rajshekhar Rajaharia (@rajaharia) January 19, 2022
Rajshekhar Rajaharia further followed that – he is not reporting any vulnerability though but just making people aware of frauds during covid times. Also says in the same tweet that the data of patients’ details are now available on Dark Web for sale. He mentioned the ‘Official Twitter handle of Indian Computer Emergency Response Team, Ministry of Electronics & Information Technology, Government of India’.