A bug in Truecaller’s Guardian app could let hackers track user’s family
By MYBRANDBOOK
Truecaller has launched its Guardian app that has been designed to share location and important details with ‘guardians’ of user’s choice in cases of emergency. The app is supposed to be able to get users aid as quickly as possible at the location users are in. Soon after the app was announced, a major bug was discovered that could let hackers take full control over users’ accounts and track them.
According to a report, security researcher Anand Prakash discovered a vulnerability in the Guardian app and informed Truecaller about it. It was fixed on the same day.
The bug discovered by Prakash was in the app’s “Log in with Truecaller API”. This meant that a hacker could use user’s phone number to log into their account on the Guardian app. They could then intercept the API’s request and change the phone number to get access to user’s account and control it.
This account takeover could let hackers add themselves or pretty much anyone else as a trusted contact on another person’s profile. This bug also allowed the hacker to view your family members’ details like name, birth dates, phone number and live location.
Truecaller said in a statement that that the bug was a development configuration that made its way to the final roll by mistake.
“In this case, the issue pointed out by Anand was due to a development configuration being rolled out by mistake during the launch phase. Our engineers were already rolling out a fix at the time of his submission to ensure user safety,” Truecaller said.
Singapore to remove One-Time Passwords from Bank Accounts
According to the Monetary Authority of Singapore, clients who utilise secur...
Is 375 million Airtel subscribers database breached?
When a hacker claims to have accessed and put up for sale a customer databa...
The government of India intends to construct a single portal f
A single portal will be launched by the Indian government to list all of it...
OpenAI offers GPT-4o, a faster model available to all users at
GPT-4o, a faster and more sophisticated AI model, is made available to all...
Icons Of India : B.V.R. Subrahmanyam
A 1987 batch (Chhattisgarh cadre) Indian Administrative Service Office...
Icons Of India : Dilip Asbe
At present, Dilip Asbe is heading National Payments Corporation of Ind...
Icons Of India : Anil Kumar Lahoti
Anil Kumar Lahoti, Chairman, Telecom Regulatory Authority of India (TR...
RailTel Corporation of India Limited
RailTel is a leading telecommunications infrastructure provider in Ind...
BEL - Bharat Electronics Limited
BEL is an Indian Government-owned aerospace and defence electronics co...
NPCI - National Payments Corporation of India
NPCI is an umbrella organization for operating retail payments and set...
Indian Tech Talent Excelling The Tech World - PADMASREE WARRIOR, Founder, President & CEO - Fable
Padmasree Warrior, the Founder, President, and CEO of Fable, is revolu...
Indian Tech Talent Excelling The Tech World - Vinod Dham, Founder & Executive Managing Partner, IndoUS Venture Partners
Vinod Dham, known as the “Father of the Pentium Chip,” has left an...
Indian Tech Talent Excelling The Tech World - ANJALI SUD, CEO – Tubi
Anjali Sud, the former CEO of Vimeo, now leads Tubi, Fox Corporation...