Partly cloudy

Enter word or phrase

Look for articles in

Last Updated Friday October 18 2019 11:03 PM IST

Kerala youth picks security flaw in IIT-Delhi's web server

Text Size
Your form is submitted successfully.

Recipient's Mail:*

( For more than one recipient, type addresses seperated by comma )

Your Name:*

Your E-mail ID:*

Your Comment:

Enter the letters from image :

Rishi Mohandas Rishi Mohandas

Thiruvananthapuram: A Kerala youth has discovered a serious security flaw in the web server of IIT Delhi, a premier institute in science and technology, higher education and research in India.

Through the security flaw, hackers could gain access to the admin login which gives complete access to the website, usernames and passwords of thousands of students and confidential details of employees including academic staff.

Cyber expert Rishi Mohandas, a Kannur native, spotted the flaw using SQL injection, one of the most common web hacking techniques.

When the flaw was brought to their notice, the institute authorities have temporarily closed three sub-websites. Though the passwords of two students and academic staff were encrypted using MD5 algorithm, they could have been easily decoded.

In the IIT, the students’ login is key to access crucial activities, including exams.

Earlier, Rishi had detected security flaws in the web servers of Kannur and Kerala universities too.

The flaws in the university websites could provide hackers access to exam results and internal marks.

Rishi works as customer support executive in Aster DM Healthcare in Dubai.

Read more Kerala news

The opinions expressed here do not reflect those of Malayala Manorama. Legal action under the IT Act will be taken against those making derogatory and obscene statements.

Email ID:

User Name:

User Name:

News Letter News Alert
News Letter News Alert