20 WhatsApp Users’ Data May Have Been Accessed: Prasad on Pegasus
Prasad said the government is committed to protect fundamental rights of citizens, including the right to privacy.
The government on Wednesday, 4 December, said the personal data of 20 WhatsApp users out of the 121 users targeted using Pegasus spyware may have been accessed by the attacker.
Facebook-owned WhatsApp had said that Indian journalists and human rights activists were among those globally spied upon by unnamed entities using Pegasus spyware.
“WhatsApp continues to review the available information. It also mentioned that WhatsApp believes it is likely that personal data within the WhatsApp app of approximately 20 users may have been accessed out of approximately 121 users in India whose devices the attacker attempted to reach,” Ravi Shankar Prasad said in Lok Sabha.
On 20 May, WhatsApp reported an incident to country's cyber security watchdog CERT-In, stating that it had identified and promptly fixed a vulnerability that could enable an attacker to insert and execute code on mobile devices.
WhatsApp also told CERT-In that the vulnerability could no longer be exploited to carry out attacks.
Prasad said the government is committed to protecting fundamental rights of citizens, including the Right to Privacy.
“The government operates strictly as per provisions of law and laid down protocols. There are adequate safeguards to ensure that no innocent citizen is harassed or his privacy breached.”Ravi Shankar Prasad, Union Minister
In response to another question on malicious mobile apps stealing user data, the minister said the propagation of such applications, targeting mobile phones, are being reported globally.
“Such malicious applications could be used for stealing data from infected mobile phones for further misuse by cyber criminals,” Prasad said.
The government has taken several measures to check malicious apps which, including issuing alerts and advisories about threats and vulnerabilities affecting mobile phones, along with counter-measures by the Indian Computer Emergency Response Team (CERT-In), he said.
“Security tips have been published to enable users to secure their mobile and smart phones by CERT-In. Government has operationalised the Cyber Swachhta Kendra (CSK) to enable detection and cleaning of malicious code including from mobile and smartphones,” Prasad added.
Subscribe To Our Daily Newsletter And Get News Delivered Straight To Your Inbox.