A cyber threat analysis company, CloudSEK, has released a report stating that threat actors have access to various credentials belonging to health workers that they may have used to break into the CoWIN site.
However, they do not have access to the entire portal or the backend database.
The report found that the threat actors were able to obtain the health worker credentials through various means, including phishing attacks and password spraying.
Once they had obtained the credentials, the threat actors were able to use them to access the CoWIN site and gain access to the personal information of Indian citizens who had registered for vaccines.
The report also found that the threat actors were able to sell the personal information on the dark web.
The personal information that was sold included names, addresses, phone numbers, and Aadhaar numbers.
The government has stated that the CoWIN app and database are safe and that there is no need for concern. However, the CloudSEK report raises serious questions about the security of the CoWIN system.