A French safety researcher claims that the UIDAI’s official app mAadhaar is vulnerable to potential information breach fifty-fifty afterwards UIDAI has updated it.
The researcher Robert Baptiste posted a 1 infinitesimal long video on Twitter inward which he demonstrated the safety flaw inward the lately updated mAadhaar app.
In the video posted he showed a means to remember secure information of the Aadhar carte holder by using a modified APK in addition to physical access to the phone. H5N1 rooted band is non necessary
“The principal final result alongside the Aadhaar Android app is that if an assailant has a physical access to the device, he tin easily bypass the password machinery of the app,” tweeted Baptiste.
The mAadhaar app is the digital re-create of Aadhaar carte apart from aadhar details it stores, user password information (hash), notification, Ki value, electronic-Know Your Customer (e-KYC) profile data, Biometrics, Bio Lock Timeout in addition to the App Configuration.
While, e-KYC contains information such as, “User Id, Aadhar Id Name, appointment of birth, gender, address in addition to photo. UIDAI stores these biometric information inward the user’s band in addition to if the band is compromised, in addition to hence is the information,” said a researcher.