Highlights
Fake DigiLocker Applications Advisory
The Indian Ministry of Electronics and Information Technology, known as MeitY, has issued a critical public advisory about counterfeit versions of the official DigiLocker application. These misleading apps are currently found on Google’s Play Store and Apple’s App Store, and they are designed with the intent to steal sensitive personal documents from users.
DigiLocker’s Importance in Digital India
DigiLocker serves as a vital component of the Digital India programme, acting as a secure digital wallet for storing verified government documents such as driving licences, vehicle registration certificates, and academic records. The platform is developed and managed by the National e-Governance Division (NeGD), playing a crucial role in facilitating paperless governance and reducing document forgery.
Risks of Counterfeit Applications
MeitY has confirmed that cybercriminals are distributing malicious replicas of the application. These counterfeit versions feature remarkably similar names and branding, aimed at confusing users. The advisory stresses that anyone who installs and uses these fraudulent applications risks significant data breaches, which could lead to identity theft and financial fraud due to the compromise of their sensitive data.
Public Safety Measures
To safeguard the public, Digital India has provided specific instructions. Users are advised to practice extreme caution when looking for the app. The only reliable way to verify authenticity is by checking the developer’s information; the genuine application is solely attributed to the National e-Governance Division of the Government of India. Citizens are strongly encouraged to download the app exclusively through official links available on the government’s dedicated website, avoiding the dangers associated with third-party app store searches.
Actions for Potential Victims
Further guidance has been issued for individuals who may have already been affected. If a suspicious version of the application has been installed, users are instructed to remove it immediately. Afterward, it is crucial for users to change all associated passwords for government services and linked accounts. The government urges citizens to rely solely on the authentic application to protect their important digital assets and documentation.
