A researcher named Robin Justin detailed how he exploited vulnerabilities in India’s Sarathi Parivahan website, accessing the personal identifiable information (PII) of 185 million citizens. He found several insecure endpoints that allowed him to access names, addresses, and driving license numbers. After reporting these vulnerabilities to India’s Computer Emergency Response Team (CERT-IN), he also discovered a weak one-time password (OTP) system for an administrator account. Both issues have been resolved.

HSCC Urges White House to Shift Gears on Health Cyber Regs
The Health Sector Coordinating Council (HSCC) has asked the Trump administration to stop work on a proposed update to the HIPAA security rule and instead