• Home
  • Internet
  • Internet News
  • COVID 19 Vaccine Recipients' Personal Data Leaked in Alleged Data Breach via Telegram, Centre Probing: Reports

COVID-19 Vaccine Recipients' Personal Data Leaked in Alleged Data Breach via Telegram, Centre Probing: Reports

Users could input a mobile number and a Telegram bot would respond with personal information connected with the phone number, according to a report.

COVID-19 Vaccine Recipients' Personal Data Leaked in Alleged Data Breach via Telegram, Centre Probing: Reports

Photo Credit: Pexels/ Sora Shimazaki

The Telegram bot allegedly serving the personal information appears to have been taken offline

Highlights
  • Personal data of COVID-19 vaccine recipients has reportedly leaked online
  • The data was accessible via an automated bot on Telegram
  • Users can currently access their data on CoWIN after providing an OTP
Advertisement

The personal data of COVID-19 vaccine recipients in India was reportedly leaked online via a bot on a popular chat platform, allowing free access to users without the OTP required for the details stored on the CoWIN platform. According to details that surfaced on Twitter on Monday, the leaked data also includes the personal information on several politicians and journalists. The bot that served the information appears to have been blocked, and government officials are reportedly looking into reports of the leaked information.

A report by Malayala Manorama on Monday states that the personal details uploaded by users to the CoWIN portal for access to COVID-19 vaccination shots were available on Telegram via an automated bot. Screenshots of the bot in action surfaced online on Twitter earlier on Monday, and the newspaper states it was able in independently verify the claims made on Twitter. The bot appears to have been taken down after the initial reports of the data breach and Gadgets 360 was unable to test that bot on the messaging platform.

Users could input a mobile number and the bot would respond with personal information connected with the phone number such as their name, gender, date of birth, the vaccination centre, as well as details of the official ID provided by the vaccine recipient, such as their Aadhaar or passport number, according to the report, which states that entering the recipient's Aadhaar number would allow the bot to display the same details.

It is worth noting that until now, users would be able to access these details on the government's CoWIN portal after entering an OTP. However, the bot reportedly allowed access to this information with just the recipient's phone number. Trinamool Congress National Spokesperson Saket Gokhale tweeted several screenshots of the personal details of various politicians and journalists found using the Telegram bot.

In January 2021, National Health Authority CEO RS Sharma tweeted "#CoWIN has state-of-the-art security infrastructure and has never faced a security breach. Data of our citizens on CoWIN is absolutely #safe and #secure. Any news about data leaks from CoWIN holds no merit."

Meanwhile, NDTV reported that government officials are probing the source of the alleged leak of personal information via the Telegram bot. "The government is investigating whether the data was sourced through CoWIN or some other application," official sources told NDTV.  


Apple unveiled its first mixed reality headset, the Apple Vision Pro, at its annual developer conference, along with new Mac models and upcoming software updates. We discuss all the most important announcements made by the company at WWDC 2023 on Orbital, the Gadgets 360 podcast. Orbital is available on Spotify, Gaana, JioSaavn, Google Podcasts, Apple Podcasts, Amazon Music and wherever you get your podcasts.
Affiliate links may be automatically generated - see our ethics statement for details.
Comments

For the latest tech news and reviews, follow Gadgets 360 on X, Facebook, WhatsApp, Threads and Google News. For the latest videos on gadgets and tech, subscribe to our YouTube channel. If you want to know everything about top influencers, follow our in-house Who'sThat360 on Instagram and YouTube.

Further reading: Data Breach, CoWIN, India
David Delima
As a writer on technology with Gadgets 360, David Delima is interested in open-source technology, cybersecurity, consumer privacy, and loves to read and write about how the Internet works. David can be contacted via email at DavidD@ndtv.com, on Twitter at @DxDavey, and Mastodon at mstdn.social/@delima. More
Samsung One UI 5 Watch Beta Update Lets Users Switch Galaxy Watch Between Phones Without a Reset: Report
Former Samsung Executive Indicted Over Alleged Company Data Theft to Build Chip Factory in China
Facebook Gadgets360 Twitter Share Tweet Snapchat LinkedIn Reddit Comment google-newsGoogle News

Advertisement

Follow Us
© Copyright Red Pixels Ventures Limited 2024. All rights reserved.
Trending Products »
Latest Tech News »