Two Twitter users’ observed a serious data privacy breach in the DU admit card 2020 download portal on Thursday. The portal only requires a student’s name, roll number, and ‘gateway password’ and anyone with this information has complete access to the private data of the students.
While any student from a college can easily access the roll number of another student of the same college from the previous semester results, the gateway ‘password’ is the same for everybody- that is the college code.As there is a single password for all students, any student can easily get his/her hands on another student’s private information.
This utter and absolute blunder is being widely criticized as almost 2000 students’ data became public.
The students are in distress. Many worried students have complained against receiving strange texts and calls after their information was leaked. Students were found actively venting their anger and anguish online on various social media handles.
Rashi Sahu, a student at Kirori Mal College in Delhi University, told ABP News that "I was already worried about online exams but now new trouble has surfaced. Our personal information is public on the university's portal. On opening the portal, we are seeing our private information very easily, due to which I am getting many fake calls. The university is requesting that this information be removed from the website as soon as possible.”
Students studying in the Faculty of Law, whose information also became public through the portal, said that "I gave my phone number, home address to the university with confidence; they have no right to make it public!
According to sources, this is not the first time that the University of Delhi is accused of leaking data. Worries and accusations on the matter have been raised several times in the past as well.