Skip links

In This Article:

Take control of your digital security

Aadhaar Data Leak : What’s at Stake and How to Protect Yourself

Shares This:
Reading Time: 3 minutes

Key Facts:

  • Breach Overview: 815 million Indians’ data, including Aadhaar and passport details, are for sale on the dark web as per Cybersecurity firm Resecurity
  • Potential Threats: Risks like identity theft, financial fraud, and personal information misuse loom large.
  • Individual Safeguards: Regular monitoring of accounts, strong passwords, and two-factor authentication are crucial steps for personal digital safety.
  • Preventive Measures: Staying informed, practicing cautious online behavior, and supporting community awareness initiatives are key to fostering a safer digital environment.

Also Read

What Is Aadhar

Aadhaar is a 12-digit unique identity number issued by the Indian government to residents. It’s linked to biometric and demographic data, helping in verifying individuals’ identities in a cost-effective way. Aadhaar facilitates various services like opening bank accounts, getting mobile connections, and availing government benefits.


A recent report by the US cybersecurity firm Resecurity has claimed a massive data breach, with personal data of about 815 million or 81.5 crore Indians being leaked on the dark web. The leaked data, available for sale online, includes names, phone numbers, addresses, Aadhaar, and passport information. The breach was disclosed on 9 October by a threat actor named ‘pwn0001’ on Breach Forums, offering access to the data for $80,000. The Central Bureau of Investigation (CBI) is currently probing the breach. There’s speculation that the compromised data might originate from the Indian Council of Medical Research (ICMR) database.

What Has Been Potentially Leaked:

The breach, carried out by a hacker going by the alias pwn0001, has revealed a broad spectrum of personal information belonging to Indian citizens. The potential compromised data consists of:

  • Name
  • Father’s name
  • Phone number
  • An additional contact number
  • Passport number
  • Aadhaar number
  • Age
  • Gender
  • Residential address
  • District
  • Postal code (Pincode)
  • State

These details paint a near-complete picture of an individual’s identity, which is alarming as it opens doors for various forms of misuse and fraud.

Potential Consequences For Users

Aadhaar is a cornerstone for accessing various services in India, including banking, mobile connections, and government benefits. It’s linked to biometric and demographic data of individuals. If this data falls into the wrong hands, the consequences could be severe:

  1. Identity Theft: Fraudsters could impersonate individuals to open bank accounts, take out loans, or gain employment fraudulently.
  2. Financial Fraud: Access to Aadhaar data could enable unauthorized transactions, leading to financial loss.
  3. Misinformation: Malicious actors could alter or misuse the data to spread misinformation or to defame individuals.
  4. Exploitation: The data could be used to target individuals for scams, phishing, or other cybercrimes.

Also Read

Immediate Next Steps Users Can Take:

  1. Monitor Accounts: Keep a close eye on your financial accounts for any unusual activity.
  2. Password Change: Change passwords for your important accounts, especially those linked with your Aadhaar number.
  3. Enable Two-Factor Authentication (2FA): Turn on 2FA for added security on your online accounts.
  4. Stay Informed: Follow official advisories from the UIDAI or other relevant authorities regarding the breach.
  5. Check Aadhaar Authentication History: Visit the UIDAI website to check your Aadhaar authentication history for any suspicious activity. 

    “Residents can check his/her Aadhaar Authentication history from UIDAI Website https://resident.uidai.gov.in/aadhaar-auth-history or through mAadhaar App by using his/her Aadhaar Number/VID & enter security code and follow the metioned procedure.

    Note: Registered mobile number is mandatory to avail this service.” 

Here Are Some Other Practical Steps Individuals Can Take To Protect Themselves Overall Online Safety:

  1. Regular Monitoring:

    • Frequently check financial accounts for unauthorized transactions.
  2. Password Management:

    • Use strong passwords, change them regularly, and avoid using the same password across multiple platforms.
  3. Two-Factor Authentication (2FA):

    • Enable 2FA on all possible accounts for an extra layer of security.
  4. Security Software:

    • Install reliable security software on your devices to protect against malware and phishing attempts.
  5. Educate Yourself:

    • Stay informed about the latest cybersecurity threats and learn how to recognize potential scams.
  6. Be Cautious:

    • Be mindful of sharing personal information and verify the authenticity of requests for your data.
  7. Contact Authorities:

    • Report any suspicious activity or unauthorized access to your accounts to the concerned authorities.
  8. Credit Monitoring Services:

    • Consider subscribing to credit monitoring services to be alerted about any suspicious activities related to your financial accounts.
  9. Review Account Settings:

    • Regularly review the privacy and security settings of your online accounts to ensure they are configured for maximum security.
  10. Stay Updated:

    • Keep your software, including security software, updated to benefit from the latest security enhancements.

The disclosure of such a massive amount of personal information is a stark reminder of the digital era’s pitfalls. Adopting a vigilant approach and arming ourselves with knowledge and the right tools can significantly mitigate the risks posed by such data breaches. This incident should serve as a catalyst for individuals and businesses alike to fortify their online safety measures, ensuring a safer digital India.

Shares This:

Leave a comment

Related Articles