A researcher named Robin Justin detailed how he exploited vulnerabilities in India’s Sarathi Parivahan website, accessing the personal identifiable information (PII) of 185 million citizens. He found several insecure endpoints that allowed him to access names, addresses, and driving license numbers. After reporting these vulnerabilities to India’s Computer Emergency Response Team (CERT-IN), he also discovered a weak one-time password (OTP) system for an administrator account. Both issues have been resolved.
Week in review: Stealth-patched FortiWeb vulnerability under active exploitation, Logitech data breach
Here’s an overview of some of last week’s most interesting news, articles, interviews and videos: The tech that turns supply chains from brittle to unbreakable
