Recent reports indicate several instances of data leaks and security breaches within the Government of India, resulting in the exposure of sensitive personal information, including signatures, biometric data, and confidential documents.
Key incidents regarding leaked signatures and data include:
- Police and Biometric Data Exposure (2024): A major breach was identified where thousands of fingerprints, facial images, and signatures of law enforcement officials and applicants were exposed online. This data, spanning 2021–2024, included about 143,173 signatures and was linked to third-party firms managing recruitment.
- Defense Data Leak (2025): The ransomware group Babuk Locker 2.0 claimed to have exfiltrated 20 terabytes of data from the Defence Research and Development Organisation (DRDO), including classified documents and credential logs.
- Jharkhand Government Portal Leak (2018-2019): A misconfigured Jharkhand government portal exposed personal, legal, and financial documents of thousands of citizens, including Aadhaar numbers.
- Gujarat RERA Website Breach (2019): An unprotected download URL on the Gujarat Real Estate Regulatory Authority (RERA) website exposed sensitive citizen data, including PAN cards, Aadhaar cards, and signatures.
- Forgery and Tampering: Instances of forgery have occurred, such as a file containing the Maharashtra Chief Minister’s signature being tampered with, and a fake letter with a forged signature of an Under Secretary circulating in Delhi.
Key Concerns:
- Biometric Vulnerability: Researchers have highlighted that while passwords can be changed, leaked biometric data (fingerprints, face scans) cannot, making such leaks particularly dangerous.
- Systemic Security Failures: Many leaks have resulted from misconfigured, publicly accessible cloud storage (AWS buckets) or unsecured government websites rather than direct hacks.
- Negligence and Non-compliance: Reports indicate that even after being alerted, some departments failed to secure the exposed data promptly.
- (Courtesy: Google AI)