There have been numerous reports on data and security breaches of global and Indian users over the past few years. Now we have one more such report which reveals the name of a few Indian websites that reveal the private credentials of its users. @deedydas has today revealed on the X platform that many Indian websites have atrocious web security.
Many Indian websites have atrocious web security.
If you google "index of aadhar card" or pan card, you can find 1000s of exposed private credentials.
If "Options +Indexes" is set on an Apache server, users can browse files.
This is from Indian Aerospace and Engineering: pic.twitter.com/YIpC1b2nn2
— Deedy (@deedydas) September 24, 2024
Among these websites include Indian Aerospace and Engineering, Star Kidz, and Genefied AI. He has shared that if you Google Index Of Aadhaar Card or Pan Card you can find 1000s of exposed private credentials. If Options + Indexes is set on an Apache server, users can also browse the files.
One of the users questioned @deedydas on why he is sharing this on the X platform as people who are unaware would also know to which he replied that they should know to be aware.
The first screenshot shared is of The Indian Aerospace and Engineering while next is The Star Kidz website that reveals the details of children.
This an entire kindergarten called The Star Kidz pic.twitter.com/rUWJWEmOMc
— Deedy (@deedydas) September 24, 2024
There is also a startup company called Genefied AI which is revealed to claim AI-driven loyalty between brands and consumers but funnily reveals the Pan Card details of its users.
This is a startup called Genefied AI which claims to do "AI-Driven Loyalty Between Brands and Consumers" pic.twitter.com/4dY1xys43l
— Deedy (@deedydas) September 24, 2024
Well Aadhaar data and PAN card details that were supposed to be secure and not to be revealed to anybody are now revealed by these websites to almost all the users causing a risk to the privacy of users.
