Technology News

Provident Fund Data of 28 Crore Indians Leaked By Hackers, Claims Ukraine Based Researcher

The PF data was leaked earlier this month and includes UANs, names, Aadhaar, and bank account details.

By Siddharth Suvarna | Updated: 6 August 2022 19:12 IST
Provident Fund Data of 28 Crore Indians Leaked By Hackers, Claims Ukraine Based Researcher

Photo Credit: EPFO

Details such as UANs, names, Aadhaar details, gender, and bank account details were exposed

Highlights
  • Leaked data was hosted on Microsoft’s Azure service
  • The researcher informed CERT-In about the leak
  • The data contained Aadhaar and bank details
Advertisement

Provident Fund (PF) data of about 28 crore Indians was found to have been leaked by hackers earlier this month. A cybersecurity researcher from Ukraine, Bob Diachenko, made the discovery on August 1 and found that details such as Universal Account Number (UANs), names, marital status, Aadhaar details, gender, and bank account details were exposed online. According to Diachenko, he found two different internet protocol (IP) addresses hosting two clusters of leaked data. Both of these IPs were hosted on Microsoft's Azure cloud storage service.

Cybersecurity researcher Bob Diachenko detailed the leak in a post on LinkedIn. On August 2, Diachenko discovered two separate IP clusters of data that contained indices called UAN. Upon reviewing the clusters, he found that the first cluster contained 280,472,941 records, whereas the second IP contained 8,390,524 records.

“After quick review of the samples (using a simple browser), I was sure that I am looking at something big and important”, Diachenko said in his post. However, he was not able to find who owned the data. Both the IP addresses were hosted on Microsoft's Azure platform and were India-based. He wasn't able to obtain other information via a reverse DNS analysis.

The Shodan and Censys search engines from Diachenko's SecurityDiscovery firm found these clusters on August 1. However, it is not clear how long the information was available online. The data could've been misused by hackers to gain access to the PF account. Data such as name, gender, Aadhaar details, could also be used to create fake identities and documents.

The researcher tagged the Indian Computer Emergency Response Team (CERT-In) in a tweet informing them about the leak. The CERT-In replied to his tweet asking him to provide a report of the hack in an email. Both IP addresses were taken down within 12 hours after his tweet. Diachenko says that since August 3, no company or agency has come forward to take responsibility for the hack

Comments

For the latest tech news and reviews, follow Gadgets 360 on X, Facebook, WhatsApp, Threads and Google News. For the latest videos on gadgets and tech, subscribe to our YouTube channel. If you want to know everything about top influencers, follow our in-house Who'sThat360 on Instagram and YouTube.

Further reading: Provident Fund, CERT-In, PF, Hack, Cybersecurity, Azure, Microsoft, EPFO, UAN, Aadhaar
Siddharth Suvarna
Siddharth Suvarna
Siddharth Suvarna is the Deputy News Editor at Gadgets 360. He’s been an avid tech junkie for more than two decades now, and started his career as a tech writer almost 12 years ago. He has covered tech news, how-tos, guides, reviews, and almost everything related to gadgets or technology. At Gadgets 360, he can be found tracking news, editing articles, and sometimes sending random tech related memes to his colleagues. You can contact him at siddharths@ndtv.com or use Jason Bourne to hunt ...More
Raksha Bandhan 2022: Best Tech Gift Ideas That Your Sibling Will Love

Related Stories

Provident Fund Data of 28 Crore Indians Leaked By Hackers, Claims Ukraine Based Researcher
Comment
Share on Facebook Gadgets360 Twitter Share Tweet Snapchat Share Reddit Comment google-newsGoogle News
 
 

Advertisement

Featured
Follow Us
Latest Videos
More Videos
Tech News in Hindi
More Technology News in Hindi

Advertisement

Popular on Gadgets
Latest Gadgets
Popular Mobile Brands
#Trending Stories
  1. Google Maps to Show EV Charging Stations, Public Transport Options Soon
  2. Microsoft's New AI Video Model Can Generate Eerily Realistic Videos
  3. Nothing Ear, Nothing Ear A With Up to 45dB ANC Debut in India: See Price
  4. Nothing Phone 2 Gets NothingOS 2.5.5 Update With ChatGPT Integration
  5. OTT Releases This Week: Rebel Moon Part 2, Article 370 and More
  6. iPhone 17 Plus Tipped to Arrive With A Slightly Smaller Screen
  7. HMD Unveils The Boring Phone With No Access to Internet
  8. Vivo V30e Set to Launch in India Soon; Specifications, Colurways Teased
  9. Android 15 Could Bring This Security Feature From Windows to Your Phone
  10. OnePlus Could Launch a Flip Phone With This Flagship Camera Feature
#Latest Stories
  1. Apple Tipped to Equip Purported 12.9-inch iPad Air Model With Mini LED Screen
  2. New OTT Releases This Week: Rebel Moon Part 2, Article 370, All Indian Rank and More
  3. Google Maps Makes It Easier to Find EV Chargers, Search Now Shows Sustainable Travel Options
  4. Nothing Phone 2 Receives NothingOS 2.5.5 Update With ChatGPT Integration, UltraXDR and More
  5. Snapchat to Display Watermark on Images Created Using Snap's Generative AI Tools
  6. Wayve Lingo-2 AI Model With Autonomous Driving Capabilities, Ability to Take Passenger Instructions Showcased
  7. Redmi 13 5G Model Numbers Surface Online; Could Debut in India as Poco M7 Pro 5G
  8. Moto Buds, Moto Buds+ With Dynamic ANC, Hi-Res Audio Launched: Price, Specifications
  9. Android 15 Could Include App Quarantine Feature to Protect Users From Malicious Apps: Report
  10. Tencent InstantMesh, an AI Model Capable of 3D Rendering Static Images Unveiled
Gadgets 360 is available in
Follow Us
Download Our Apps
App Store App Store
Available in Hindi
App Store
© Copyright Red Pixels Ventures Limited 2024. All rights reserved.
Trending Products »
Latest Tech News »