Aadhaar, one of the world’s largest digital identity systems, is now at the centre of a new cybersecurity initiative launched by the Unique Identification Authority of India. The authority has introduced a structured program inviting ethical hackers and cybersecurity experts to identify potential vulnerabilities within the Aadhaar ecosystem. The initiative, announced in New Delhi, marks UIDAI’s first formal bug bounty program aimed at strengthening the protection of Aadhaar-related digital platforms.
Under the program, a panel of 20 experienced cybersecurity researchers and ethical hackers has been selected to test the resilience of key Aadhaar systems. The participants will examine several platforms, including the UIDAI’s official website, the myAadhaar portal and the Secure QR Code application used for identity verification. Their work will involve controlled security assessments designed to detect technical vulnerabilities, software flaws, or other weaknesses that could potentially be exploited by malicious actors.
Researchers will analyse issues across different risk categories, ranging from critical and high-risk vulnerabilities to medium and low-level flaws. Rewards will be given based on the severity and potential impact of the identified issue. The program is being implemented with technical support from ComOlho IT Private Limited, which is assisting in managing the operational and technical aspects of the initiative. Officials say the move reflects ongoing efforts to strengthen the security framework protecting India’s digital identity infrastructure.
The Aadhaar system assigns a unique identification number to residents and supports multiple services including banking, welfare programs, telecommunications and digital transactions. With more than 1 billion identities registered in the database, safeguarding the system remains a major priority. Authorities already conduct regular security audits, vulnerability assessments, penetration testing and real-time monitoring. The new bug bounty program adds an additional layer of defence by inviting independent experts to detect issues that may not appear during internal testing. Experts note that bug bounty initiatives have become a global cybersecurity practice, as organisations increasingly rely on collaboration with ethical hackers to strengthen digital resilience.
Also read: Viksit Workforce for a Viksit Bharat
Do Follow: The Mainstream LinkedIn | The Mainstream Facebook | The Mainstream Youtube | The Mainstream Twitter
About us:
The Mainstream is a premier platform delivering the latest updates and informed perspectives across the technology business and cyber landscape. Built on research-driven, thought leadership and original intellectual property, The Mainstream also curates summits & conferences that convene decision makers to explore how technology reshapes industries and leadership. With a growing presence in India and globally across the Middle East, Africa, ASEAN, the USA, the UK and Australia, The Mainstream carries a vision to bring the latest happenings and insights to 8.2 billion people and to place technology at the centre of conversation for leaders navigating the future
