Diabytes
No data, security breach of Aarogya Setu has happened; it has no vulnerability, says app developers
The developers of the Aarogya Setu, the contact-tracing app developed by the Ministry of Electronics and Information Technology, on Tuesday (May 5) strsssed that “no data or security breach had been identified” in the app.
Trending Photos
9- 6
- 8
- 8
 "No data, security breach of Aarogya Setu has happened; it has no vulnerability, says app developers")
The developers of the Aarogya Setu, the contact-tracing app developed by the Ministry of Electronics and Information Technology, on Tuesday (May 5) strsssed that “no data or security breach had been identified” in the app.
The developers of the Aarogya Setu App, which is used to trace coronavirus COVID-19 patients, said that the app had no security vulnerability. The developers responded shortly after a French security researcher Robert Baptiste, better known as Elliott Alderson, pointed that it is capable of leaking data of the around 9 crore users who have downloaded the app.
“No personal information of any user has been proven to be at risk by this ethical hacker,” Aarogya Setu said in a statement on its twitter handle. “”We are continiously testing and upgrading our systems. Team Aarogya Setu assures everyone that no data or security breach has been identified”.
Statement from Team #AarogyaSetu on data security of the App. pic.twitter.com/JS9ow82Hom — Aarogya Setu (@SetuAarogya) May 5, 2020
Aaroga Setu app developers said that they were alerted “by an ethical hacker of a potential security issue in the app”, which they discussed with him, but “no personal information of any user has been proven to be at risk” by the hacker.
According to developers, the hacker had pointed out two issues – “the app fetches user location on a few occasions”, and a “user can get the Covid-19 stats displayed on home screen by changing the radius and latitude-longitude using a script.”
The AaSetu team, the fetching of a user’s location is “by design”, and it is “stored on the server in a secure, encrypted and anonymised manner.”
Regarding the second issue, the team said the radius parameters on the app “are fixed and can only take one of the five values: 500m, 1km, 2km, 5 km, and 10 km.” It added that the "information does not compromise on any personal or sensitive data”.
It is to be noted that the Centre has made it mandatory for all public sector and private employees who go to offices to download the app.
Stay informed on all the latest news, real-time breaking news updates, and follow all the important headlines in india news and world News on Zee News.
Live Tv
 "DNA: Is your cake poisoning you?")
 "DNA: What is the agenda behind opposition to Sai's Idol?")
 "DNA: Baba Bageshwar Questions")
 "DNA: Sai Baba Statues Removed from 14 Varanasi Temples")
 "DNA: Fake Sharma Family Exposed as Pakistanis in Bengaluru")
 "DNA: BJP Leader's Cow Urine Demand for Garba Entry Sparks Controversy")
 "DNA: Nasrallah Killed - Who Are People Mourning a Terrorist's Death in India?")
 "DNA: Tirupati Laddu Case - SC Questions Allegations of Contaminated Ghee")
 "DNA: Pakistan Mourns Terrorist's Death, Nasrallah's 'Funeral' Sparks Protests")
 "DNA: Special 26 Script Recreated-- Fake SBI Branch in Chhattisgarh")
