Catergory

Data Breach

#What’sTheStatus: We inquire about the pending National Cyber Security Strategy

Rising instances of data breaches have highlighted the need for n updated National Cyber Security Strategy (NCSS). We wrote to the newly appointed National Cyber Security Coordinator urging them to release a public draft of the updated NCSS.
08 July, 2023
4 min read
Tejasi PanjiarTejasi Panjiar & Prateek WaghrePrateek Waghre
CERT-In
Featured

SnTHostings - a VPN, Seedbox and Root Server provider - urges MeitY to withdraw the unlawful CERT-In direction which will be effective from June 27, 2022

SnTHosting has addressed legal representation to MeitY seeking recall of the CERT-In Directions which mandate them to surveil their users and collect their personal data and make such data available to CERT-In on demand.
25 June, 2022
4 min read
Krishnesh BapatKrishnesh Bapat
Consultations

The Government Wants To Sell Your Data | #SaveOurPrivacy

We respond to the Ministry of Electronics and Information Technology's Draft Data Access Policy. The policy raises serious privacy concerns due to its perverse economic incentives on data sharing.
05 March, 2022
7 min read
Shivangani MisraShivangani Misra
Data Breach

Student data exposed on Andhra Pradesh Government Examination website!

> > > > tl;dr Sai Sravan Prabhala, a cyber-security researcher, informed us of a critical vulnerability exposing the sensitive personal information of minors. This existed on the website of the Directorate of Government Examinations, Government of Andhra Pradesh’s for the 2021 examinations. While this functionality itself has been removed, to prevent it from occurring again assisted by Sai, we have written to them and CERT-In. Background On 22nd December 2021, cyber-security researche
04 February, 2022
5 min read
Tejasi PanjiarTejasi Panjiar
vulnerability

IFF explains: An Election Commission vulnerability that could expose your phone number!

A vulnerability in the ECI’s National Voters Service Portal website was exposed by an independent security researcher in December last year. The vulnerability allowed access to un-redacted, registered phone numbers of voters. The vulnerability was eventually patched by the ECI IT team.
15 January, 2022
7 min read
Tejasi PanjiarTejasi Panjiar & Rohin GargRohin Garg
cybersec charcha

#6 Cybersec Charcha: What comes after Breach Pe Breach?

Data breaches are now becoming increasingly common. In a scenario like this, it becomes really important to learn not only how you can protect yourself, but also the measures you can take if your data is leaked in a data breach.
29 October, 2021
5 min read
Shivani SinghShivani Singh

Donate to IFF

Help IFF scale up by making a donation for digital rights. Really, when it comes to free speech online, digital privacy, net neutrality and innovation — we got your back!