Introduction

Recent reports have raised alarm bells by revealing that the Aadhaar data of a staggering 815 million Indians is available for sale on the dark web. This data breach is nothing short of a national security concern. Your biometric data, including Aadhaar and passport information, names, phone numbers, and addresses, may now be at risk. In this comprehensive guide, we will take you through the process of locking your biometric data, a crucial step in safeguarding your privacy and personal information.

The Disturbing Data Breach

A severe data breach recently exposed personally identifiable information of a vast number of Indian citizens—815 million to be precise. A cybersecurity report from Resecurity, a US-based firm, disclosed that Aadhaar and passport details, along with names, phone numbers, and addresses, were made available for sale on the dark web. The breach’s extent and the sensitivity of the compromised information suggest that it may be linked to the Indian Council of Medical Research (ICMR) database.

The Dark Web Trade

The breach’s gravity came to light when an individual, operating under the alias “pwn0001,” posted a chilling message on BreachForums, a darknet crime forum, offering access to a repository containing information on “Indian Citizen Aadhaar and Passport.” Another ominous incident occurred in August this year when a threat actor known as “Lucius” attempted to sell a 1.8 terabyte data leak connected to an unnamed “Indian internal law enforcement organisation.”

The Enormity of Aadhaar

The Unique Identification Authority of India (UIDAI) introduced the Aadhaar system in 2009, and it has since issued approximately 1.4 billion Aadhaar cards. This initiative ranks among the world’s largest biometric identification projects. 

To protect against such breaches, Sanjay Kaushik, the managing director of Netrika Consulting, emphasized the importance of implementing measures such as encryption, multifactor authentication, and access controls. He also underscored the significance of regular security audits and updates to effectively combat emerging threats.

Locking Your Biometric Data: An Essential Safeguard

Amidst the concerning backdrop of these breaches, you, as an Aadhaar holder, have the ability to lock your biometric data—a crucial protective measure to prevent data breaches and maintain your privacy. The Unique Identification Authority of India (UIDAI) offers a service for biometric locking and unlocking.

What Biometric Data Can Be Locked?

The service allows you to lock and temporarily unlock your biometric data. The biometric modalities that can be locked include fingerprints, iris scans, and facial recognition. Once locked, you cannot use these modalities for Aadhaar authentication.

Understanding the Implications of Locked Biometrics

Biometric locking ensures that you, as an Aadhaar holder, cannot use fingerprints, iris scans, or facial recognition for Aadhaar authentication. This robust safety feature prohibits any entity from performing biometric-based Aadhaar authentication on your behalf.

Who Can Lock Biometrics and When?

Aadhaar holders with registered mobile numbers are eligible to lock their biometrics. This service is designed to bolster the privacy and confidentiality of residents’ biometric data. If you have locked your biometrics and an entity attempts biometric authentication, it will result in a specific error code “330” indicating that biometrics are locked, thereby preventing unauthorized access.

How to Lock Your Biometric Aadhaar Data

1. Visit the UIDAI website and log into your profile.

2. Click on the “menu” button.

3. Select “Biometrics settings.”

4. Tick the “Enable Biometric Lock” option.

5. Confirm by tapping “OK.”

6. An OTP will be sent to your registered mobile number.

7. Enter the OTP, and your biometric details will be securely locked.

Unlocking Your Biometric Aadhaar Data

To unlock your biometric data, you can visit the UIDAI website, an enrolment center, an Aadhaar Seva Kendra (ASK), or use the m-Aadhaar application. A crucial requirement for availing this service is a registered mobile number. If your mobile number is not linked to your Aadhaar, visit the nearest enrolment center or mobile update endpoint.

Conclusion

In an era of increasing digital threats and data breaches, locking your biometric data is a vital step in protecting your privacy and personal information. By following these steps, you can ensure that your Aadhaar data remains secure and shielded from unauthorized access. As technology advances, your vigilance in safeguarding your biometric data is an essential aspect of maintaining your digital security and privacy. 

For further insights and support, please explore the UIDAI website.