Audit revealed lack of encryption of personal data at the NPCI
An internal audit by the Central government found more than 40 "critical" and "high risk" security vulnerabilities at the National Payments Corporation of India (NPCI), the umbrella organisation that operates retail payments and settlement systems in the country.
According to a Reuters report, the audit, which took place over four months to February 2019, highlighted a lack of encryption of personal data at India's flagship payments processor. NPCI forms the backbone of India's digital payments system and operates the RuPay card network championed by Prime Minister Narendra Modi.
The government audit report, dated March 2019, comes in the backdrop of a report by an online portal vpnMentor last month that revealed that data of more than 7 million users of mobile payments app BHIM or Bharat Interface Money, were exposed in a website breach revealing sensitive personal information dating back to February 2019. The exposed data included information required for signing up for the app such as financial details, photos, Aadhaar and PAN card details of more than seven million users.
Check for more detail:- https://www.theweek.inAudit found high risk cyber security lapses in India's card payment system
A government audit of India’s flagship payments processor last year found more than 40 security vulnerabilities including several it called “critical” and “high” risk.
HIGHLIGHTS
A government audit of India’s flagship payments processor found more than 40 security vulnerabilities.
The audit highlighted a lack of encryption of personal data at NPCI which forms the backbone of the country’s digital payments system.
The March 2019 government document cited the storing of 16-digit card numbers and other personal information in “plain text”, leaving the data unprotected.
A government audit of India’s flagship payments processor last year found more than 40 security vulnerabilities including several it called “critical” and “high” risk, according to an internal government document seen by Reuters.
The audit, which took place over four months to February 2019, highlighted a lack of encryption of personal data at the National Payments Corporation of India (NPCI) which forms the backbone of the country’s digital payments system and operates the RuPay card network championed by Prime Minister Narendra Modi.
The March 2019 government document cited the storing of 16-digit card numbers and other personal information such as customer names, account numbers and national identity numbers in “plain text” in some databases, leaving the data unprotected if the system was breached. The audit has not previously been reported.
Check for more detail:- https://www.indiatoday.in#audit #found #highrisk #cyber #cybersecurity #lapses #india #card #paymentsystem #system #government #aadhaar #pancard #updatedtechforall #news #todaynews #topnews #latestnews #technologynews #technews
Comentários