In a shocking revelation, a massive data leak has exposed sensitive personal information of over 1.6 million individuals, including Indian military personnel, police officers, teachers, and railway workers. This breach, discovered by cybersecurity researcher Jeremiah Fowler, included biometric data, birth certificates, and employment records and was linked to the Hyderabad-based companies ThoughtGreen Technologies and Timing Technologies.
While this occurrence is painful, it is far from shocking.
The database, containing 496.4 GB of unprotected data, was reportedly found to be available on a dark web-related Telegram group. The exposed information included facial scans, fingerprints, identifying marks such as tattoos or scars, and personal identification documents, underscoring a growing concern about the security protocols of private contractors who manage sensitive government data.
The impact of such breaches goes far beyond what was capable years ago. In the past, stolen identity would have led to the opening of fake credit cards or other relatively containable incidents. Today, a stolen identity that includes biometric data or an image with personal information is enough for threat actors to create a deep fake and sow confusion amongst personal and professional colleagues. This allows unauthorised personnel to gain access to classified information from private businesses and government agencies, posing a significant risk to national security.
Deepfakes even spread fear throughout southeast Asia, specifically during India’s recent Lok Sabha, during which 75% of potential voters reported being exposed to the deceitful tool.
The Risks of Outsourcing Cybersecurity
Governments increasingly rely on private contractors to manage and store vast amounts of sensitive data. However, this reliance comes with significant risks. Private firms often lack the robust cybersecurity measures that government systems can implement.
However, with India continuing to grow as a digital and cybersecurity powerhouse, the hope was that outsourcing the work would save taxpayers money while providing the most advanced technology possible.
However, a breach risks infecting popular software or other malicious actions such as those seen in other supply chain attacks, which are a stark reminder of the need for stringent security measures and regular audits of third-party vendors.
To Know More, Read Full Article @ https://ai-techpark.com/ai-secures-global-data/
Related Articles –
AI-Powered Wearables in Healthcare sector
Top Five Best Data Visualization Tools
Trending Category – AI Identity and access management
