Election Commission of India Addresses Privacy Vulnerabilities in Citizen Information Retrieval

Election Commission India Rti Portal
India’s federal election commission has fixed flaws on its website that exposed data related to citizens’ requests for information related to their voting eligibility status, local political candidates and parties, and technical details about electronic voting machines. The bugs allowed access to the RTI requests, download transaction receipts, and responses shared by the officials without properly authenticating user logins. Some of the exposed data included the RTI filing date, the questions asked, the applicant’s name and mailing address, the applicant’s poverty line status, and RTI responses. The bugs were fixed earlier this week following CERT-In’s intervention. The Election Commission of India did not respond to a request for comment.