Bengaluru: Techie Arrested For Stealing Aadhaar Info Of 40,000 People Using Self-Made App

The Logical Indian Crew Karnataka

August 4th, 2017 / 3:45 PM

Bengaluru: Techie Arrested For Stealing Aadhaar Info Of 40,000 People Using Self-Made App

Courtesy: The Hindu, The Times of India | Image Credit: The Times of India, Jagran

A 31-year-old techie, Abhinav Srivastava, had been detained by the Bengaluru city police on 1 August on the charge of accessing sensitive Aadhaar data, reports The Hindu.

A complaint was filed against him by the Unique Identification Authority of India (UIDAI) last week.

Srivastav is currently employed as a software engineer. He was accused of accessing sensitive Aadhaar information in January this year through an app called ‘Aadhaar e-KYC’, which was available on the Google Play store until recently. The app was created by Srivastava himself.

He had made use of the services of another app, ‘e-hospital’, which is listed as an authenticated user agency (AUA) authorised to access UIDAI data.

Demographic data including details like address, mobile phone number, email address, age and sex of at least 40,000 Aadhaar cardholders have been allegedly stolen by Srivastava. Although he has not accessed any biometric data like fingerprints and iris scans, the police said.

There are around 400 entities which have been authorised to make use of the data for authentication; Srivastava’s app was not one of them.

The case was transferred to the City Cyber Crime Police Station on 29 June. The police have found that five more apps were made by Srivastava, who has earned around Rs 40,000 from the advertisements. The ‘Aadhar e-KYC’ app has been downloaded 50,000 times from the Google Play Store since its inception in the month of January.

“Six teams of police comprising 26 personnel arrested Mishra from Koramangala after a week the complaint has been lodged,” S Ravi, Additional Commissioner of Police (Crime) told The Logical Indian.

The police have seized a CPU, four laptops, a tablet, four mobile phones, six pen drives from Srivastava.

Srivastava’s background

Hailing from Kanpur, Srivastava is an IIT-Kharagpur graduate in Industrial Chemistry and now stays in Yeshwantpur, Bengaluru. He launched Qarth Technologies in 2012, which got shut down in 2016 because of financial reasons, before being acquired by Ola.

Srivastava, to give his ‘Aadhaar e-KYC’ app an air of authenticity, hacked into the server of the NIC, which houses the e-hospital system that is a solution for government hospitals to handle patient care and other services (including medical records management).

As part of its regulations, UIDAI grants certain agencies the title of an Authentication User Agency (AUA) which can then provide Aadhaar-enabled services to the card holder. For authentication, these agencies have to connect to the Central Identities Data Repository (CIDR) through the services of an Authentication Service Agency (ASA). ASAs are bound by regulations that stipulate encryption of data and logging of access.

Srivastava made use of this server to route his app requests for data access and managed to get his hands on the data.

The Logical Indian take

The fact that a software engineer can access classified Aadhar data raises serious questions about the measures in place to protect the data.

With this incident about the IIT techie accessing Aadhaar data coming to fore, The Logical Indian community wishes to reiterate its stance that Aadhaar being a goldmine of information, its getting into the wrong hands will have catastrophic consequences.

There should be strict action taken against those responsible for these breaches. And the government should ensure that such violations of privacy and of the Aadhaar Act do not take place in the future.

Contributors

Written by :

Edited by :

Share your thoughts..

Knowledge Is Power: Empowering Women To Assert Their Rights At Home & Outside Of It

We are living in the 21st century and as a society, we have made tremendous progress in every field. One of the drastic progress we have seen in the present time is in the status of women in the society. From being considered a second-class citizen to now walking shoulder-to-shoulder with men, women enjoy a much better situation.

While one cannot undermine the advancement made in this direction, one can also not deny that a lot is yet to be done. Women still face harassment, which may be physical, mental, emotional, sexual or economical, both inside and outside of their homes.

While there are specific laws to protect one from any such incidents of harassment, but do we really understand them?

The importance of awareness and knowledge can never be emphasised enough. If you have the awareness, you will always be able to stand up against any injustice, not just for yourself, but for others too.

ITC Vivel, recognising this problem of lack of awareness among women about their rights, has launched an initiative “Know Your Rights” under its flagship campaign #AbSamjhautaNahin. ITC Vivel believes that for a more equal society, awareness of legal rights is the first step towards empowering and protecting women. Hence they have also designed a website www.absamjhautanahin.com, available in both English and Hindi, for a simplified understanding of laws around women’s rights.

Eminent Supreme Court advocate Ms Karuna Nundy, who played an active role in the framing of anti-rape laws and has been arguing cases to change the legal stance on marital rape, has joined this amazing initiative. Vivel, with its Know Your Rights initiative and Karuna Nundy, believe that legal knowledge of the civil and criminal law will help transform women’s personal power in relationships and with institutions, police and courts.

The first video in this series elaborates on equality at work and at home. Their endeavour is to simplify the nuances of basic rights that women should be aware of with Ms. Nundy’s expertise in an innovative easy-to-comprehend approach.

The Logical Indian appreciates Vivel and Ms Karuna Nundy for taking up this initiative to make everyone aware of their rights and laws protecting them in such a beautiful way.

Bengaluru: Techie Arrested For Stealing Aadhaar Info Of 40,000 People Using Self-Made App

The Logical Indian Crew Karnataka

Srivastava’s background

The Logical Indian take

Share your thoughts..

Related Stories

Twitter Knows Everything About UIDAI CEO, Why? Because He Gave His Authentication Log To SC

UIDAI Introduces Blue Coloured ‘Baal Aadhaar’ For Kids Below 5 Years, Know About It

“Aadhaar Doesn’t Certify Identity, Biometric Data Stored Not Unique”: UIDAI In RTI Reply

Gujarat: Three Men Use Rubber Thumb Impression For Aadhaar Details Tampering; 2 Arrested

Bengaluru Police Finds Aadhaar-Based Discrepancy In The Issuing Of SIM Cards

After Virtual ID, Aadhaar To Use Face Authentication Tool To Add Another Security Layer

Partner Story

Knowledge Is Power: Empowering Women To Assert Their Rights At Home & Outside Of It

Vivel - #AbSamjhautaNahin

Share your thoughts..

Latest on The Logical Indian

BJP MLA Comes Out In Support Of Bidar Lynching Accused, Says It Was Accident Not Lynching

Tiger Skin, 33 Lion Nails Recovered By Police In Shirdi, Used For Rings, Lockets & Consumption

The Wire Says “No Question Of Apology”, Stands By Their Article On Jay Amit Shah

SBI Asks 70,000 Bank Employees Who Worked Tirelessly During Demonetisation To Return Money Paid For Overtime

Single Mothers Are Not Obliged To Disclose Father’s Name In Birth Certificates: Madras HC

Hapur Lynching Survivor Waits For Police To Record Statement, Says Can Identify Accused

Stories that deserve attention, delivered to your inbox!

Handpicked, newsworthy stories which deserve the attention of a rational generation.

Feedback Form

Keep up with the world