Zack Whittaker reports:
Another security lapse has exposed millions of Aadhaar numbers.
This time, India’s state-owned gas company Indane left exposed a part of its website for dealers and distributors, even though it’s only supposed to be accessible with a valid username and password. But the part of the site was indexed in Google, allowing anyone to bypass the login page altogether and gain unfettered access to the dealer database.
The data was found by a security researcher who asked to remain anonymous for fear of retribution from the Indian authorities.
Read more on TechCrunch.