scorecardresearch
Sunday, November 3, 2024
Support Our Journalism
HomeTechNo data breach in BHIM, says national payments body after web sleuths...

No data breach in BHIM, says national payments body after web sleuths claim lakhs ‘exposed’

vpnMentor, a site that reviews virtual private network services, said Sunday that data of ‘millions of BHIM users’, including Aadhaar details, had been left exposed to the public.

Follow Us :
Text Size:

New Delhi: The National Payments Corporation of India (NPCI) has denied any data breach or compromise related to the Bharat Interface for Money (BHIM), the government-backed digital payments app.

The NPCI made the clarification after vpnMentor, a site that reviews virtual private network (VPN) services, said in a report Sunday that data of “millions of users”, including Aadhaar and PAN details, had been left exposed to the public. 

However, according to the report, the data breach only affected records stored over the month of February last year, and was addressed after vpnMentor researchers approached the Indian Computer Emergency Response Team (CERT-In), the nodal agency for responding to computer security-related incidents.

“We have come across some news reports which suggest data breach at BHIM App. We would like to clarify that there has been no data compromise at BHIM App and request everyone to not fall prey to such speculations,” the NPCI said in a statement Monday. 

“The NPCI follows high level of security and an integrated approach to protect its infrastructure and continue to provide a robust payments ecosystem”.

The NPCI was incorporated as a not-for-profit organisation to help create robust payment infrastructure in India. It is an initiative of the Reserve Bank of India (RBI) and Indian Banks’ Association (IBA).


Also Read: Govt ‘thanks’ French ethical hacker who flagged Aarogya Setu, but dismisses security concern


‘Breach fixed’

The vpnMentor report claims the breach appears to be closed now. It states that researchers from vpnMentor had first contacted CERT-In on 28 April, and action on the breach was taken on 22 May.

Developed by the NPCI, the BHIM app was launched in 2016 by PM Modi. The NPCI also manages the UPI, the unified payments interface, or a system that allows instant money transfer between bank accounts through mobile apps.

According to NPCI data, BHIM app had been downloaded an estimated 13.6 crore times as of 8 April 2020. In April alone, the data states, over Rs 4,000 crore worth of transactions were made via BHIM.


Also Read: ‘Pay safe, stay safe’: Modi govt encourages digital payment amid coronavirus scare


This is an updated version of the report

Subscribe to our channels on YouTube, Telegram & WhatsApp

Support Our Journalism

India needs fair, non-hyphenated and questioning journalism, packed with on-ground reporting. ThePrint – with exceptional reporters, columnists and editors – is doing just that.

Sustaining this needs support from wonderful readers like you.

Whether you live in India or overseas, you can take a paid subscription by clicking here.

Support Our Journalism

LEAVE A REPLY

Please enter your comment!
Please enter your name here

Most Popular