Live Breaking News & Updates on Defense vulnerability disclosure program

Government Sites Said to Have Critical Vulnerabilities; NCIIPC and CERT-in Step In: Reports
The vulnerabilities reportedly exposed sensitive files, credentials, and police FIRs.
By Shayak Majumder | Updated: 22 February 2021 19:36 IST
Photo Credit: Pexels/ Mati Mango
The critical issues included over 13,000 identifiable information instances
Highlights
US DoD Vulnerability Disclosure Program was involved to raise concerns
NCSC says remedial actions have been taken
Security researchers said they found thousands of critical vulnerabilities in dozens of government-run Web services, more than half of which reportedly belonged to state governments. Most of the services had multiple issues that included exposed credentials, leaks of sensitive files, and existence of known bugs. If exploited, these lapses could reportedly lead to deeper access within the government network, as per the researchers. The issues had been brought under the notice of the National Critical Information Infrastructure Protection Centre (NCIIPC) earlier this month. Now, a top official from the National Cyber Security Coordinator (NCSC) said that “remedial actions” have been taken.

Hindustan , India-general , India , John-jackson , Us-department-of-defense-vulnerability-disclosure-program , Indian-computer-emergency-response-team , Vulnerability-disclosure-program , Team-sakura-samurai , National-critical-information-infrastructure-protection-centre , National-cyber-security-coordinator , Sakura-samurai , Defense-vulnerability-disclosure-program