What is the story about?
What's Happening?
A security vulnerability in India's income tax filing portal was discovered, allowing unauthorized access to sensitive taxpayer data. The flaw, identified by security researchers Akshay CS and 'Viral', enabled logged-in users to view personal and financial information of others by exploiting an insecure direct object reference (IDOR) vulnerability. The exposed data included names, addresses, and financial details. The Indian government has since fixed the issue, following a report to the country's computer emergency readiness team (CERT-In).
Why It's Important?
The exposure of sensitive taxpayer data highlights significant cybersecurity risks associated with government portals. Such vulnerabilities can lead to large-scale data breaches, affecting millions of users and undermining trust in digital government services. The incident underscores the need for robust security measures and regular audits to protect personal information. It also serves as a cautionary tale for other countries, including the U.S., to ensure their digital infrastructure is secure against similar threats.
AI Generated Content
Do you find this article useful?
