UIDAI Rolls Out Bug Bounty Programme to Boost Aadhaar Cybersecurity

New Delhi — The Unique Identification Authority of India (UIDAI) on Wednesday launched a structured Bug Bounty Programme aimed at strengthening the security of the Aadhaar ecosystem by inviting cybersecurity experts to identify potential vulnerabilities in its digital platforms.

Under the initiative, a panel of 20 experienced security researchers and ethical hackers has been selected to examine key UIDAI digital assets for possible weaknesses, according to an official statement.

The experts will review important platforms including the UIDAI official website, the myAadhaar portal, and the Secure QR Code application. Their task will be to detect vulnerabilities categorised as Critical, High, Medium, and Low risk. Rewards will be offered depending on the severity and impact of the issues discovered.

The programme is being implemented in collaboration with ComOlho IT Private Limited, a cybersecurity solutions provider, the statement from the Ministry of Electronics and Information Technology said.

According to UIDAI, the initiative reflects its ongoing efforts to ensure that Aadhaar-related platforms remain secure and reliable for residents and stakeholders. Similar bug bounty programmes are widely adopted by major technology companies worldwide to strengthen digital security systems.

The authority emphasised that information security is a top priority in today’s digital landscape and said it is continuously upgrading its digital infrastructure to safeguard user interests.

UIDAI already deploys multiple security safeguards, including regular security audits, vulnerability assessments, penetration testing, and continuous monitoring of its systems.

Separately, UIDAI recently announced that over 1.03 lakh schools across India have been covered under a nationwide initiative to facilitate Mandatory Biometric Updates (MBU) for students under Aadhaar. The drive has enabled nearly 1.2 crore children to complete their biometric updates within their school premises.

The mission-mode campaign began in September 2025 after integration with the Unified District Information System for Education Plus (UDISE+) platform of the Department of School Education and Literacy.

With inputs from IANS