A data leak from India’s BHIM payment app exposed personal data of 7 million Indians including addresses, scans of Aadhar IDs, and caste certificates. A report from cybersecurity company VPN Mentor suggests that this 409GB database was stored in a misconfigured AWS S3 bucket, making all data publicly accessible. The report noted that the database belonged to BHIM’s website, which is mainly used for onboarding users. For the uninitiated, BHIM is an app based on the Unified Payments Interface (UPI) platform by the National Payments Corporation of India. Paytm, Google Pay, PhonePe, and WhatsApp payments are some other notable services that…
This story continues at The Next Web
from The Next Web https://ift.tt/3dlo22U
