Government Sites Said to Have Critical Vulnerabilities; NCIIPC and CERT-in Step In: Reports The vulnerabilities reportedly exposed sensitive files, credentials, and police FIRs. By Shayak Majumder | Updated: 22 February 2021 19:36 IST Photo Credit: Pexels/ Mati Mango The critical issues included over 13,000 identifiable information instances Highlights US DoD Vulnerability Disclosure Program was involved to raise concerns NCSC says remedial actions have been taken Security researchers said they found thousands of critical vulnerabilities in dozens of government-run Web services, more than half of which reportedly belonged to state governments. Most of the services had multiple issues that included exposed credentials, leaks of sensitive files, and existence of known bugs. If exploited, these lapses could reportedly lead to deeper access within the government network, as per the researchers. The issues had been brought under the notice of the National Critical Information Infrastructure Protection Centre (NCIIPC) earlier this month. Now, a top official from the National Cyber Security Coordinator (NCSC) said that “remedial actions” have been taken.