A significant security flaw in the Indian Post Office portal has exposed the sensitive Know Your Customer (KYC) data of thousands of users. This breach, caused by an Insecure Direct Object Reference (IDOR) vulnerability, highlights the urgent need for robust security measures in government-operated digital platforms.
In a report by Gokuleswaran, a Cyber Security Analyst, on February 17, 2025, the vulnerability in the portal’s URL structure, allows unauthorized users to access private KYC records by manipulating the document_id parameter in API requests. This flaw enabled attackers to retrieve confidential information, including Aadhaar numbers, PAN details, usernames, and mobile numbers. The primary entities involved are the attackers exploiting the vulnerability and the unsuspecting users whose data was exposed. This incident underscores the critical importance of implementing proper access controls and validation mechanisms in web applications.
This incident has already been reported to CERT-In by the analyst and are now in the process of taking appropriate actions to counter this issue. Recommended actions include enforcing strict server-side authorization checks, replacing direct identifiers with randomized tokens, and conducting regular penetration testing. By adopting these measures, organizations can enhance their security posture and protect sensitive user data from similar threats.
#CyTech #CyTechNewsRoom #Cybersecurity #CISO #CISOWorkplace™ #CSRM #CIM #VulnerabilityAssessment #DataBreach #IDOR #Vulnerability #India #IndianPostOffice
Leave a Reply