Go Ad-Free
    My Alerts
    Moneycontrol
    Moneycontrol PRO
    HomeNewsTechnologyAarogya Setu safety issue: Govt denies privacy breach of '90 million Indians' after hacker raises concerns

    Aarogya Setu safety issue: Govt denies privacy breach of '90 million Indians' after hacker raises concerns

    French hacker Robert Baptiste, who goes by the name Elliot Alderson on Twitter, had earlier tweeted about finding security concerns on the Aarogya Setu app.

    Moneycontrol News
    May 06, 2020 / 09:39 IST

    Centre has denied any kind of data breach or security issues raised by a French ethical hacker Elliot Alderson, who had claimed that the privacy of 90 million Indians is at stake in a tweet on May 5.

    French hacker Robert Baptiste, who goes by Elliot Alderson on Twitter had earlier tweeted about finding security concerns on the Aarogya Setu app after Congress leader Rahul Gandhi called it a sophisticated surveillance tool.

    Baptiste did not reveal the exact issues but requested the Indian Computer Emergency Response Team (CERT-In) and the National Informatics Centre (NIC) to get in touch with him for resolving the issue. 

    After being alerted, the team from Aarogya Setu contacted Baptiste who informed them about the possible issues.

    The official Twitter handle of India’s coronavirus contact tracing app released a statement saying: No personal information of any user has been proven to be at risk by this ethical hacker.

    COVID-19 Vaccine

    Frequently Asked Questions

    View more
    How does a vaccine work?

    A vaccine works by mimicking a natural infection. A vaccine not only induces immune response to protect people from any future COVID-19 infection, but also helps quickly build herd immunity to put an end to the pandemic. Herd immunity occurs when a sufficient percentage of a population becomes immune to a disease, making the spread of disease from person to person unlikely. The good news is that SARS-CoV-2 virus has been fairly stable, which increases the viability of a vaccine.

    How many types of vaccines are there?

    There are broadly four types of vaccine — one, a vaccine based on the whole virus (this could be either inactivated, or an attenuated [weakened] virus vaccine); two, a non-replicating viral vector vaccine that uses a benign virus as vector that carries the antigen of SARS-CoV; three, nucleic-acid vaccines that have genetic material like DNA and RNA of antigens like spike protein given to a person, helping human cells decode genetic material and produce the vaccine; and four, protein subunit vaccine wherein the recombinant proteins of SARS-COV-2 along with an adjuvant (booster) is given as a vaccine.

    What does it take to develop a vaccine of this kind?

    Vaccine development is a long, complex process. Unlike drugs that are given to people with a diseased, vaccines are given to healthy people and also vulnerable sections such as children, pregnant women and the elderly. So rigorous tests are compulsory. History says that the fastest time it took to develop a vaccine is five years, but it usually takes double or sometimes triple that time.

    View more
    Show

    It further added that the team is continuously testing and upgrading the systems.

    The statement suggests that Baptiste raised concerns over the app fetching location data on a few occasions and how users can display COVID-19 stats on the home screen by changing the radius and latitude-longitude using a script. The app developers responded saying that there is no issue in the app.

    “This is by design and is clearly detailed in the privacy policy,” the statement read.

    The developers also detailed how the user location is fetched and the process of it being stored in a secure, encrypted government server.

    According to the team, user location is accessed at the time of registration, self-assessment, and when a user submits their contact tracing data voluntarily through the app. The government also fetches the data once the user is found COVID-19 positive.

    Responding to the second concern of changing COVID-19 stats, the developers stated that the information is public for all locations and hence does not compromise on any personal or sensitive data. Users can change the latitude/ longitude to get data for multiple locations.

    Baptiste later tweeted that he will come back with more details.

    Invite your friends and family to sign up for MC Tech 3, our daily newsletter that breaks down the biggest tech and startup stories of the day

    Moneycontrol News
    first published: May 6, 2020 09:39 am

    Discover the latest Business News, Sensex, and Nifty updates. Obtain Personal Finance insights, tax queries, and expert opinions on Moneycontrol or download the Moneycontrol App to stay updated!

    Subscribe to Tech Newsletters

    • On Saturdays

      Find the best of Al News in one place, specially curated for you every weekend.

    • Daily-Weekdays

      Stay on top of the latest tech trends and biggest startup news.

    Advisory Alert: It has come to our attention that certain individuals are representing themselves as affiliates of Moneycontrol and soliciting funds on the false promise of assured returns on their investments. We wish to reiterate that Moneycontrol does not solicit funds from investors and neither does it promise any assured returns. In case you are approached by anyone making such claims, please write to us at grievanceofficer@nw18.com or call on 02268882347