<div style="margin:20px 0 0 200px"> To view the site, enable JavaScript by changing your browser options, then <a href="">Try Again</a>.</div>

The mystery of UIDAI : Who & Why!! Is it a threat? A detailed discussion

06 Aug, 2018
The mystery of UIDAI : Who & Why!! Is it a threat? A detailed discussion

1. Who did it?

Hours after the Unique Identification Authority of India (UIDAI) denied that it forced any smartphone manufacturer or telecom service provider to add a helpline number into people's contact lists, Google accepted that it had in 2014 inadvertently coded the 112 distress number and the UIDAI number into its setup wizard for Android. This in a way put to end the controversy surrounding the mysterious entry of the UIDAI number in the contact lists of many smartphone users around the country.

"Our internal review has revealed that in 2014, the then UIDAI helpline number and the 112 distress helpline number were inadvertently coded into the SetUp wizard of the Android release given to OEMs for use in India and has remained there since. Since the numbers get listed on a user's contact list these get transferred accordingly to the contacts on any new device," a statement from Google said.

Apologising for "any concern that this might have caused", the statement from a Google spokesperson said it "would like to assure everyone that this is not a situation of an unauthorized access of their Android devices".

Some iPhones also have the number saved on them, but that is the user at some point in time having migrated their contact list from an Android device to iPhone.

2. Why Google did it?

Google did not 'inadvertently', as it claimed, store UIDAI helpline number into your phone devices but, it seems, it had acted on the directive of the Manmohan Singh government. According to a letter issued on August 8, 2013, the Department of Telecommunications had instructed all the telecom companies to map short code '1947' to UIDAI's toll-free number - a move that put the nation in a great confusion five years later.

"All telecom providers are directed to take necessary action to map short code 1947 to new toll-free number 1800-300-1947 with immediate effect and send the compliance report to UIDAI directly," the Ministry, which was headed by Kapil Sibbal, had said in its letter.

3. Is it a threat?

Apparently, there are several SOS helpline numbers added to our contact list by default. It is not a threat. However, adding a number to the list or deleting the number with a software upgrade or patch update can be a threat and breach to my privacy.

When we update a software, do the vendor export some of my data to its server? Microsoft or Google or OEMs say - YES. To make my user experience better. Well, I say "NO, not needed".

If you do, I wish to know -
  1. exactly what data you are collecting.
  2. Will you share with someone else?
  3. How long will you keep this data with you?
  4. Will you destroy this data once your purpose is solved?
  5. Will you inform me, if you use this data for any other purpose?
  6. Will you destroy this data, if anytime I ask you to you to do?

These are the privacy principles in practice all around the world. You need to take consent for each of the above. And that is missing.

4. Other culprits?

Chinese phones!!

And the hundreds of Apps we install on our handsets which takes our consent that they will access our contact list, photos, SMS, chats, browsing history, camera, microphone… and what not!!

5. What is the future?

The government-appointed BN Srikrishna committee for suggesting a framework and a new law for protecting institutional and private data in India has submitted the framework, which will lead to Privacy law in the country. The draft also provides for penalties for data processor as well as compensation to data principal to be imposed for violations of the data protection law. It has suggested a penalty of ₹15 crore or 4% of the total worldwide turnover of any data collection/processing entity, for violating provisions. Failure to take prompt action on a data security breach can attract up to ₹5 crore or 2% of turnover as a penalty. A jail term has been proposed for up to three years for individuals found violating data protection rules under the bills in works.

Read Other Articles

Read All Articles »
Quick look at the 10 facts you need to know about the latest Facebook hack
Quick look at the 10 facts you need to know about the latest Facebook hack
Read Details »
Top certifications in cyber security industry
Top certifications in cyber security industry
Read Details »
Android Pie is here! Let's enjoy a slice
Android Pie is here! Let's enjoy a slice>
Read Details »
Building a career in IoT: A thorough guide
Building a career in IoT: A thorough guide
Read Details »
Top 5 cyber security jobs in the age of Cyber Disruption
Top 5 cyber security jobs in the age of Cyber Disruption
Read Details »
Top Cyber Security trends of 2018
Top Cyber Security trends of 2018
Read Details »
A severe vulnerability in Signal desktop app allowing hackers to steal chats in plaintext without any user interaction
A severe vulnerability in Signal desktop app allowing hackers to steal chats in plaintext without any user interaction
Read Details »
Cambridge Analytica and Facebook Controversy: What happened so far?
Cambridge Analytica and Facebook Controversy: What happened so far?
Read Details »
Equifax identifies an additional 2.4 million U.S. consumers affected by the massive data breach of 2017
Equifax identifies an additional 2.4 million U.S. consumers affected by the massive data breach of 2017
Read Details »
Severe flaw in µTorrent can let hackers to control your PC remotely
Severe flaw in µTorrent can let hackers to control your PC remotely
Read Details »
Cyber Criminals are turning into Cryptominers, Dominating Cyber Threat Landscape
Cyber Criminals are turning into Cryptominers, Dominating Cyber Threat Landscape
Read Details »
Android Banking Trojan targets over 232 banking apps, including Indian banks
Android Banking Trojan targets over 232 banking apps, including Indian banks
Read Details »
Private end-to-end encrypted Whatsapp group chats are not secured anymore!
Private end-to-end encrypted Whatsapp group chats are not secured anymore!
Read Details »
Top Cyber Attacks In 2017
Top Cyber Attacks In 2017
Read Details »
>
<

Hacking Tools

Explore All Hacking Tools »
UFTP - UDP based FTP with encryption
UDP based FTP with encryption

UFTP is an encrypted multicast file transfer program for secure, reliable & efficient transfer of files. It also helps in data distribution over a satellite link.

Read Details

Breaking News

Breaking News Of Each Month »
ATMs turn into Jackpot machines!
ATMs turn into Jackpot machines!

At least six attacks have taken place within the last week. They ranged in location from the Pacific Northwest to the Gulf region to New England. Thieves have stolen over $1 million in attacks so far.

Read Details