In a response to an RTI, the UIDAI stated that 210 government websites had leaked Aadhaar data online. leaked data included name, address, other details and Aadhaar numbers for information of general public. Earlier, in May 2017, a study published by the CIS had showed that just 4 government websites had leaked data of 130 million Aadhaar holders.
In the response to the RTI, the UIDAI had said that the websites had removed the data after the breaches were reported.
“UIDAI has a well-designed, multi-layer robust security system in place and the same is being constantly upgraded to maintain highest level of data security and integrity,”
Was the assurance in this instance (less than two months before we’d discover that users with admin access to the Aadhaar database could add other admin users without any restrictions to the point that admin access to the Aadhaar database was being sold for Rs. 500)