After an investigation by HuffPost revealed the existence of a software patch that can be used to disable critical security features of the Aadhaar enrolment software, the UIDAI has dismissed the report in a statement.

“No operator can make or update Aadhaar unless the resident himself gives his biometric. Any enrolment or update request is processed only after biometrics of the operator is authenticated and resident’s biometrics is de-duplicated at the backend of UIDAI system,” UIDAI said.

According to the HuffPost investigation, the easy availability and widespread use of the patch has potentially compromised the biometric and personal data of over a billion enrolled Indians.