EPFO has compromised our data - terrible
The personal and professional details of about 2.7 crore members registered with the retirement fund body Employees Provident Fund Organisation (EPFO) have been exposed to data theft.
In a letter to the Ministry of Electronics and Information Technology, the Central Provident Fund Commissioner has written that hackers have stolen data from the Aadhaar seeding portal of EPFO. He has also asked the ministry's technical team to plug vulnerabilities on the portal aadhaar.epfoservices.com that has now been temporarily shut. The portal links the Aadhaar number of employees with their provident fund accounts.
In the letter marked "secret", the commissioner wrote that the Intelligence Bureau (IB) had informed them of "hackers exploiting the vulnerabilities prevailing in the website (aadhaar.epfoservices.com) of EPFO."
In a letter to the Ministry of Electronics and Information Technology, the Central Provident Fund Commissioner has written that hackers have stolen data from the Aadhaar seeding portal of EPFO. He has also asked the ministry's technical team to plug vulnerabilities on the portal aadhaar.epfoservices.com that has now been temporarily shut. The portal links the Aadhaar number of employees with their provident fund accounts.
In the letter marked "secret", the commissioner wrote that the Intelligence Bureau (IB) had informed them of "hackers exploiting the vulnerabilities prevailing in the website (aadhaar.epfoservices.com) of EPFO."
Viewed by 1210
How is possible to keep the personal record data without indivisual Aadhar under the Digital India.
May 03
The EPFO sites have for long been running over HTTP and not HTTPS. This a very foolish security hole. Anyone may very well imagine what would happen when a person "in good trust" enters her PAN and password to a non-secure web form and web page. No hacking skills needed to copy these data.
May 03
This news of Data Leak seems to be wrong...refer to the following post from EPFO : EPFO slams Aadhaar data theft reports on social media http://www.ecoti.in/H_203b
May 03
Aadhar, & all govt departments always deny facts. If the news is not true why the site is shut & why the contractor operating the portal has been suspended. Any way EPFO does not care for the subscribers, EPFO thinks denying the subscribers their dues is their prime job. A supreme court order basedon EPFO themselves issued a circular dated 23/03/2017 on the subject of allowing the benefit of actual salary (not ceiling of 5000 & 6500 , has been kept in abeyance, inspite of court saying in the order that denying benefits of a beneficiary scheme by EPFO was very wrong.
May 03
