The site was under 'maintenance' on Jun 27. Tweet report by DMK IT Wing person.
5M records put on #RaidForums for sale, later taken down.… ரேஷன் கார்டு இணையதளம் பராமரிப்புக்காக நிறுத்தம் - @dinamalarweb noting the site was down for maintenance and upgrade. #Okay… News18 Impact: ரேஷன் கார்டு தரவுகள் திருட்டு... தனிப்படை அமைத்து அரசு விசாரணை

Report says TN government constituted special team to carry out a cyber investigation on the incident.
The timing of this incident is extremely worrisome. This happened 2 days before #SFDB bid opened (yesterday, 29 June) Read more on #SFDB, designed to be built on top of ration db, junking #Aadhaar. 👇🏾… Tamil Nadu PDS System Breached, 50 Lakh People’s Aadhaar Details Leaked: Report via @medianama
The TN PDS infra was already suspectible to what looks like bunch of fake / illicit apps for accessing the site - having embedded trojan / virus in them. Image
The now deleted thread on #raidforums posted by…

Was there a buyer? Image… The breach is reported to @IndianCERT . But have they ever carried out incidents to conclusion ?
After what is possibly largest international cyber attack on #PDS infrastructure, TN government *restarts* biometric authentication at PDS shops. 🤦🏾‍♂️🤦🏾‍♂️🤦🏾‍♂️ cc @rozi_roti @roadscholarz

#ONORC forced biometric authentication in Universal #PDS state TN. 🤦🏾‍♂️🤦🏾‍♂️

The data is now being put to sale. Details here @chennaipolice_ @copmahesh1994 #Makkal #Aadhaar #SRDH #TNPDS 25M data leak for sale. HT @nanduhari Image
Post is now updated with 31M records. Looks like actor has active access to the server. This is heights on part of @OasysIndia to have denied the breach incident in their communication to state. cc @nanduhari Image
Cyber startup says Tamil Nadu’s PDS data breached… - The denial from Food and Consumer Affairs Department. @CMOTamilnadu - Please don't let officially lie and get away. Image
ரேசன்கார்டு தகவல்கள் கசிவு - தமிழ்நாட்டுக்கு கேரளா கொடுத்த எச்சரிக்கை - முழு விவரம் - A slightly detailed piece on how to take denials and why its risky.…
Post updated again, 51M records now. Even if there is overlap, at least 20M 'unique' individuals were compromised if one were to trust the leak post. Image
The leak also demostrates that #AadhaarVault is not all that secure. Because - by any definition, #TNPDS ought to have got certified for #AadhaarVault, as per current @UIDAI guidelines, how then did actor get access to raw #Aadhaar numbers ? cc @iam_anandv @anivar @baudless
#TNPDS again taken down for maintenance. Hopefully they do a thorough forensic audit before coming back online Image
This comes as the state government attempts to create a State Family Database for e-governance, and has sought for it to be the “single source of truth on all details with respect to the state’s residents”,… #SFDB #Aadhaar #DataP #SaveOurPrivacy
So @CMOTamilnadu had a meeting with secretaries including Chief Secretary. Hopefully they did discuss the breach and the press note is just public statement.
Talking about #TNPDS Ration card, #Aadhaar, #MakkalNumber leak and the site defacement at 7 PM today in @TamilSpaces hosted by @SuryaCEG Tune in to know what has happened and how it impacts you.
Notes about vendor. We will come back soon with some incriminating details about the leak. Keep denying till then @OasysIndia , It will help if you post your denials publicly. Image
The actor, meanwhile has updated pricing. $900 for 4 files, exposing 2 Crore #Aadhaar and 5.1 Crore records in all.

900$ - translates to 0.3 paisa per individuals' #Aadhaar. Take that. cc @internetfreedom @SFLCin @nixxin #TNPDS ImageImage
OASYS is catering to nearly 24 crore citizens of rural and urban India. A breach in OASYS managed infra is not limited to Tamilnadu. cc @internetfreedom @SFLCin @nixxin

This is also evidenced in the 640K #Aadhaar shared as proof by User JohnCrypt on raidforums. Image
$500 now. This strangely looks like.

"Tempo laam vechu kadathirukkom saar, pathu pottu kodunga."

Hacker : Paid for bandwidth etc, man, please give me something. ImageImage
Sample files of 15k #Makkal Number and 10k #Aadhaar is available now publicly.

Did you know #MakkalNumber is a 8 character alphabetic code is not a 'number' ? #Makkal also tracks death, unlike #Aadhaar.

• • •

Missing some Tweet in this thread? You can try to force a refresh

Keep Current with Srikanth ஸ்‌ரீகாந்த்

Srikanth ஸ்‌ரீகாந்த் Profile picture

Stay in touch and get notified when new unrolls are available from this author!

Read all threads

This Thread may be Removed Anytime!


Twitter may remove this content at anytime! Save it as PDF for later use!

Try unrolling a thread yourself!

how to unroll video
  1. Follow @ThreadReaderApp to mention us!

  2. From a Twitter thread mention us with a keyword "unroll"
@threadreaderapp unroll

Practice here first or read more on our help page!

More from @logic

5 Jul
Nandan Nilekani To Join Government Panel To Curb Digital Monopolies… via @ndtv

Irony just got its jab and #CoWIN certificate
How many digital monopolies were built by Nandan
The @DIPPGOI announced a committee previously on e-commerce.…
Read 4 tweets
5 Jul
Are these countries also importing vaccines from India? Is #CoWIN being bundled here for vaccine access in the name of demand management tech? cc @anivar @asdofindia
Read 7 tweets
30 May
Draft Aadhaar (Authentication and Offline Verification) Regulations, 2021 -…

Draft put for consultation 'silently' by @UIDAI on May 20, 2021 and closing by June 2, 2021.

Some highlights on thread.

@SFLCin @internetfreedom @nixxin
The proposed regulations will supersede the Aadhaar (Authentication) Regulations, 2016…

Context : This is the regulation relating to Authentication coming after #Aadhaar Amendments and the Aadhaar Good Governance Rules 2020
TLDR - This regulations is around authentication framework, including offline verification appointment of requesting entities and AUA/ASA, Obligations of Offline Verification Seeking Entities (OVSE), eKYC guidelines, regulations around logs, audit, transaction data
Read 23 tweets
11 May
From one-stop shop to no-stop shop: An e-government stage model…
Proactive service delivery means that the government delivers a service to a citizen when a life event occurs, without the citizen having to request the service.
Predictive service delivery - where the government predicts that a life event will occur and triggers a service before it occurs, with the pre-emption in some cases preventing a potentially undesirable life event from taking place
Read 4 tweets
11 May
Conceptual diagram of "State Family Database" Platform in proposed @TNeGA_Official RFP released by previous #ADMK government. Such privacy violating centralized databases destroy self respect of people and deny fundamental right to privacy. 1/ Conceptual diagram of SFDB ...
Request @ManoMLA @mkstalin initiate public consultation before proceeding with anti-people database projects initiated by previous regime. #SaveOurPrivacy #ScrapSFDB cc @WriterRavikumar @sindhan @SundarrajanG
Not only IDs reduces people as identifiers in ETL pipelines - They burn $ when snake oil is used for service delivery building a surveillance database. @ptrmadurai - Please don't get fooled by sub-contractors of consultants write databases / algos to tell how state must spend ImageImage
Read 4 tweets
11 May
A responsible opposition will highlight how government got taken for ride by agenda driven think tanks which when failed - point fingers about 'responsible opposition'.

Own up your failures - Billionaire funded think tanks
Own your mess up on tech-fetishness - You wanted Aadhaar based vaccination - while reality is - a much 'liberal' CoWIN that accomodates all IDs is spectacularly failing. ?
So who planned data will be with @AyushmanNHA and justified more surveillance. The only goof up was they thought one app is sufficient to do this.
Read 4 tweets

Did Thread Reader help you today?

Support us! We are indie developers!

This site is made by just two indie developers on a laptop doing marketing, support and development! Read more about the story.

Become a Premium Member ($3/month or $30/year) and get exclusive features!

Become Premium

Too expensive? Make a small donation by buying us coffee ($5) or help with server cost ($10)

Donate via Paypal Become our Patreon

Thank you for your support!

Follow Us on Twitter!