World

India Debunks French Hacker's Claims of Security Issues in Coronavirus Contact-Tracing App

07:45 GMT, 6 May 2020
CC BY-SA 4.0 / Magnus916 / Hacker-1
New Delhi (Sputnik): On Tuesday night, a French hacker claimed that India’s contact tracing mobile application has security issues, and alleged that the privacy of millions of Indians was at stake.
Sputnik

Clarifying the hacker’s claim that the app had fetched user locations on a few occasions, the government stated that it fetches the user location and stores them on the server in a “secure, encrypted, anonymised manner".

“The app stores an encrypted signature when you come in proximity with other registered devices. This interaction information is not pushed to the server unless you turn COVID-19 positive.  While all unique interaction stored is only for 30 days while the data on the server is deleted in 45 days for non-risk users and 60 days from the data of cure for COVID-19 positive patients,” it stated.

The government has also stated that user data location is used, in case a person has tested positive, only to map places they visited in the last 14 days for sanitisation and the testing of people to prevent the further spread of the disease.

“We have been continuously testing and upgrading our system and team Aarogya Setu assures that no data or security breach has been identified,” the statement read.

Following the statement, the hacker responded saying that he will reveal more details later.

“A security issue has been found in your app. The privacy of 90 million Indians is at stake,” he previously tweeted.

The government of India had launched the contact-tracing app Aarogya Setu earlier in April. The app has been made compulsory for all government and private sector enterprises across the country while everyone in the containment zone will also have to download it. 

WorldNewsfeedNew Delhimobile appNarendra ModiPrime MinisterHackersecuritydata security
Discuss