A bug in Truecaller’s Guardian app could let hackers track user’s family
By MYBRANDBOOK
Truecaller has launched its Guardian app that has been designed to share location and important details with ‘guardians’ of user’s choice in cases of emergency. The app is supposed to be able to get users aid as quickly as possible at the location users are in. Soon after the app was announced, a major bug was discovered that could let hackers take full control over users’ accounts and track them.
According to a report, security researcher Anand Prakash discovered a vulnerability in the Guardian app and informed Truecaller about it. It was fixed on the same day.
The bug discovered by Prakash was in the app’s “Log in with Truecaller API”. This meant that a hacker could use user’s phone number to log into their account on the Guardian app. They could then intercept the API’s request and change the phone number to get access to user’s account and control it.
This account takeover could let hackers add themselves or pretty much anyone else as a trusted contact on another person’s profile. This bug also allowed the hacker to view your family members’ details like name, birth dates, phone number and live location.
Truecaller said in a statement that that the bug was a development configuration that made its way to the final roll by mistake.
“In this case, the issue pointed out by Anand was due to a development configuration being rolled out by mistake during the launch phase. Our engineers were already rolling out a fix at the time of his submission to ensure user safety,” Truecaller said.
Microsoft to build a new data centre to support Thailand's tec
Microsoft has revealed intentions to construct a regional data centre as w...
SAP launches cloud services to help Indian scaleups innovate m
SAP at SAP unveils now "GROW with SAP for Scaleups," a new cloud service d...
Denodo and Sonata form alliance to unlock data-to-value creati
Denodo and Sonata Information Technology India Limited (SITL) have annou...
Google Play Store will now let users download two apps simulta
Google Play Store now lets users download two apps simultaneously. While a...
INFOSYS TECHNOLOGIES PVT. LTD.
CENTRE FOR DEVELOPMENT OF TELEMATICS
TVS ELECTRONICS LTD.
QUICK HEAL TECHNOLOGIES PVT. Ltd.
Technology Icons Of India 2023: Honorary Prof. N. Balakrishnan
Prof. N. Balakrishnan is an Indian aerospace and computer scientist. H...
Technology Icons Of India 2023: Gautam Adani
Gautam Adani is the Founder and the Chairman of the Adani Group, an In...
Technology Icons Of India 2023: Rajeev Chandrasekhar
Rajeev Chandrasekhar is the Union Minister of State for Electronics an...
NIC bridging the digital divide and supporting government in eGovernance
The National Informatics Centre (NIC) is an Indian government departme...
CSCs enabling rural India digitally empowered
Common service centres (CSCs) are digital access points under the Digi...
GeM maintains transparency in online procurement of goods & services
Created in a record time of five months, Government eMarketplace is a ...
REDINGTON INDIA LIMITED
Redington (India) Limited operates in the IT product distribution busi...
M. TECH SOLUTIONS (I) PVT. LTD.
M.Tech is a leading cyber security and network performance solutions ...
B D SOFTWARE
BD Software is the distributor of IT security solutions in India. The ...