Threat actors do not have access to entire CoWIN portal, claims cybersecurity start-up
The HinduCloudSEK, a cybersecurity start-up that leverages Artificial Intelligence and Machine Learning to combat cyber threats, has given credence to media reports about a malicious actor promoting a Telegram bot that reportedly provided access to the personal information of Indian citizens who had registered for COVID-19 vaccines through the Central government portal CoWIN. Significantly, the CloudSEK analysis team concluded that threat actors, however, do not have access to the entire CoWIN portal or the back-end database. It was observed that on March 13 this year, one such threat actor on a Russian cybercrime forum had advertised for compromised access on the CoWIN Portal and shared a screenshot for the CoWIN database portal affecting Tamil Nadu region as proof. The exposed PII, it is feared, could enable threat actors to orchestrate social engineering schemes, phishing attacks, and even identity theft to mitigate which CloudSEK recommended two-factor authentication, an advance identity and access management security protocol and constant monitoring of the cybercrime forums for the latest tactics employed by threat actors.
History of this topic
Police arrest man, detain minor in Bihar over CoWIN data ‘leak’
Hindustan Times
CoWIN portal data leak: Delhi police arrest Bihar man and minor
Deccan Chronicle
CoWIN data 'leak': Two, including a juvenile, apprehended
India TV News
CoWIN breach didn’t have access to entire portal nor the backend database, says report
The Hindu
Cowin app or database not appear to have been directly breached: Rajeev Chandrasekhar
Deccan Chronicle
Centre says CoWin portal completely safe, dubs reports of leak ‘mischievous’
Hindustan Times
CoWIN app or database not breached directly: Union minister after data leak claims
India Today
'CoWIN portal completely safe': Govt refutes claims of data breach
India TV News
CoWIN not hacked, 15 cr Indians' data safe: Researcher
India TV NewsDiscover Related