tech2 News Staff 10. October 2019 16:38:08 IST
JustDial a local Indian search app, was affected by a bug that allowed hackers access to the accounts of one of its 156 million users in India. The error reportedly involved JustDial web, mobile site, app and voice platforms.
Security researcher Ehraz Ahmed first discovered the vulnerability found in the Register API of JustDial is used for filing applications. MoneyControl first reported the problem .
Ahmed has shared a video on YouTube showing how a hacker can use the phone number of a JustDial user as a username and access the error through the error Account can receive. He also noted that the bug even allowed hackers to change the account details for the JustDial – JD Pay payment option, which allowed them to redirect all the money in the account , In particular, the bug could not allow them to send money because an additional PIN is required.
JustDial recognizes the bug in your app but you have not been reported to have lost any data or money. JustDial also confirmed that the bug has been fixed.
JustDial said in a statement, "We of JustDial take security seriously." There was a bug in one of our APIs that could possibly be accessed by an experienced hacker We have worked with various security researchers to strengthen our platform and would like to thank Ehraz Ahmed for bringing this to our attention. "
Visit our dedicated # Chandrayaan2TheMoon domain for our entire collection of stories, in-depth analysis, live updates, videos and more about Chandrayaan 2 Moon Mission.