Cyber-criminals have allegedly stolen data of thousands of people in India, including health workers, from a government server (that has even been indexed in Google Search), which includes name, mobile number, address and Covid test results.

The data of over 20,000 Indians are available on the Raid Forums website on the Dark Web, and the hacker claims that they are directly coming from a government CDN (content delivery network) server.

Zomato hacking
Reuters

The same documents are also available freely on Google Search as "List of Beneficiaries Enrolled for Covid Vaccine" with keywords like RT-PCR results.

"PII including Name, MOB, PAN, Address etc of #Covid19 #RTPCR results & #Cowin data getting public through a Govt CDN. #Google indexed almost 9 Lac public/private #GovtDocuments in search engines. Patient's data is now listed on #DarkWeb. Need fast deindex," cyber security researcher Rajshekhar Rajaharia Rajaharia said in a tweet.

The most pressing concern is that the data of thousands of health workers (available in PDF files) have been exposed online in Google Search that contains PAN numbers, Aadhaar and other personal details like mobile numbers, address, age, gender etc.

ransomware attack
Creative Commons

The IT Ministry or the Indian Computer Emergency Response Team (CERT-IN) is yet to react to the alleged leak.

"I am not reporting any #Vulnerability here. I am asking people to #Beware for any Fraud #calls/#offers/#treatment etc related to pre/post #Covid19. The data is already up for sale on a #DarkWeb Forum," Rajaharia said in another tweet.

Last year, the Health Ministry and security researchers had denied the breach of Covid-19 vaccination data of 150 million Indians, after news of the hack spread online.

The data leak allegedly happened on the CoWin portal, which is used for vaccination.