Recently there were incidents where the scamsters withdrew money from bank accounts of victims bypassing all forms of authentication without triggering any alertness of the victim or banking system. They simply used the UID (Aadhaar) of the victim. How did they do it? You may think, Aadhaar is such a powerful tool and very much protected and can’t be hacked.
Well, the system can’t be hacked, but it can be tricked. But before I go into details, let me point out one thing, in case you don’t know.
Have you ever heard of Aadhaar Enabled Payment Service (AePS)? AePS is usually used by people in rural and small towns to withdraw money. In this system, you provide your fingerprint and Aadhaar card to withdraw money. This service is generally provided by “Customer Service Points” (CSP) authorised by banks. These are like small shops and run by agents of the bank.
Now, coming back to as to how the system can be tricked. Let’s say you use AePS. Unknown to you, this one CSP is colluding with one of the scamsters. They exploited the AePS machine utilizing silicon replicas to extract biometric data. And now they have your biometric data and definitely your Aadhaar number. Now, it’s easy for them to use both these data to make fraudulent transactions without your knowledge.
You may say, so what? I don’t use CSPs. Mind you, this is not about the case where CSP using AePS. This is about anybody using biometric scanners to verify your identity. Nowadays, you verify your KYC through one these scanners when opening a bank account or applying for a credit card.
Now the question is, how to protect yourself from these kinds of fraud. Well, there are at-least two ways to protect yourself.
1) Locking your Aadhaar: Many may not have heard about this feature let alone using it. You can lock your Aadhaar from the comfort of your home. That way, no one can exploit your biometrics even if they’ve all the details. When you need your identity to be verified, you can unlock it for few minutes. After that, it will automatically lock itself off.
Sounds good! Right? Then how do you do it? Follow the below-mentioned steps.
Step 1: Visit the official website: To lock your Aadhaar, you need to visit the official website of the Unique Identification Authority of India (UIDAI). You can do this using any device with an internet connection, such as a computer, smartphone, or tablet.
Step 2: Find the “Lock/Unlock Biometrics” option: Once you’re on the UIDAI website, look for the “Lock/Unlock Biometrics” option. You can usually find it under the “Aadhaar Services” or “My Aadhaar” section. Click on it to proceed.
Step 3: Enter your Aadhaar details: On the next page, you’ll be asked to enter your Aadhaar number, full name, and the security code displayed on the screen. Take your time and make sure you enter the information correctly.
Step 4: Receive an OTP: After entering your details, you’ll receive an OTP on your registered mobile number.
Step 5: Enter the OTP: Carefully enter the OTP you received in the designated field on the website. Double-check to ensure you’ve entered it correctly.
Step 6: Lock your Aadhaar biometrics: Once you’ve entered the OTP, you’ll see an option to lock your Aadhaar biometrics. By selecting this option, you prevent anyone else from using your fingerprint or iris scans for authentication purposes.
You can also download “mAadhaar” app from app stores and use the same process to lock and unlock your Aadhaar.
2) Using VIDs: This method is more beneficial for people who are not so tech-savvy, though I recommend everyone to use this method also. VID or Virtual Identity is a temporary, revocable 16-digit random number mapped with the Aadhaar number. VID can be used in lieu of Aadhaar number whenever authentication or e-KYC services are performed. Authentication may be performed using VID in a manner similar to using Aadhaar number. Regenerating your VID will automatically invalidate the previously generated VIDs.
Using this method, the exposure can be minimised, although the risk is still there. How do generate these VIDs? Follow the steps mentioned below:
Step 1: Visit the UIDAI website: To create a Virtual Aadhaar Number, start by visiting the official website of the UIDAI.
Step 2: Find the “Virtual ID (VID) Generator” option: Once you’re on the UIDAI website, look for the “Virtual ID (VID) Generator” option. It is usually located under the “Aadhaar Services” or “My Aadhaar” section. Click on it to proceed.
Step 3: Enter your Aadhaar details: On the VID generation page, you will be prompted to enter your 12-digit Aadhaar number, along with the security code displayed on the screen.
Step 4: Receive an OTP: After entering your Aadhaar details, you will receive an OTP on your registered mobile number.
Step 5: Enter the OTP: Carefully enter the OTP you received in the designated field on the website.
Step 6: Generate your Virtual Aadhaar Number: Once you’ve entered the OTP, you’ll be given the option to generate a Virtual Aadhaar Number. By selecting this option, a temporary 16-digit VID will be generated for you.
Step 7: Note down your VID: Make sure to note down or remember your Virtual Aadhaar Number (VID) for future use. This VID can be shared instead of your actual Aadhaar number during authentication processes.
Creating a Virtual Aadhaar Number adds an extra layer of privacy and security when sharing your Aadhaar details for verification purposes. It allows you to keep your actual Aadhaar number confidential while still fulfilling necessary authentication requirements.
Remember to protect your Virtual Aadhaar Number (VID) just like you would to protect your Aadhaar number itself. Avoid sharing it with unauthorized individuals or on unsecured platforms. If you have any questions or encounter any issues during the VID generation process, consider reaching out to the UIDAI helpline or seeking assistance from someone you trust.
