A security lapse exposed India’s CISF personnel files and health records – TechCrunch

Internal documents, officer health records, and personnel files belonging to India’s Central Industrial Security Force were spilling online because of a data security lapse.

A security researcher in India, who asked not to be named for fear of retaliation from the Indian government, found a database packed with network logs generated by a security appliance connected to CISF’s network. But the database was not secured with a password, allowing anyone on the internet to access the logs from their web browser.

The network logs contain detailed records of which files on CISF’s network were accessed or blocked because of security rules. Because the logs contained full web addresses of documents stored on CISF’s network, it was possible for anyone on the internet to access the logs, and then open those files in their browser directly from CISF’s network, also without needing a password.

The logs contained records for more than 246,000 full web addresses of PDF documents on CISF’s…

Read Full Story: https://techcrunch.com/2022/03/18/india-cisf-security-data-exposed/

The post A security lapse exposed India’s CISF personnel files and health records – TechCrunch first appeared on SEO, Marketing and Social News | OneSEOCompany.com.

source: https://news.oneseocompany.com/2022/03/18/a-security-lapse-exposed-indias-cisf-personnel-files-and-health-records-techcrunch_2022031816277.html

Your content is great. However, if any of the content contained herein violates any rights of yours, including those of copyright, please contact us immediately by e-mail at media[@]kissrpr.com.