Indian researcher discovers Uber bug, bags Rs 4.6 lakh reward

San Francisco, Sep 16 (IANS) Global ride-hailing giant Uber has recently fixed a hacking bug found by Indian cybersecurity researcher Anand Prakash which allowed hackers to log into anyone's Uber account.

The company has paid Anand $6,500 i.e. about Rs 4.6 lakh as a reward for giving information about this bug.

Anand explained that the bug was an account-takeover-vulnerability on Uber that allowed attackers to take over any other user's Uber account, including those of partners and Uber Eats users, inc42 reported.

As per media report, the bug was present in the API request function of the Uber app.

According to Uber, the bug was immediately fixed through the company's bug bounty programme. It also said that over $2 million was paid to more than 600 researchers around the world, including Indian researchers.

Earlier Anand had once removed a bug in Uber, by taking advantage of which anyone could travel for free for a lifetime in an Uber cab.

--IANS

wh/sdr/in

(This story was auto-published from a syndicated feed. No part of the story has been edited by The Quint.)

(The Quint is available on Telegram. For handpicked stories every day, subscribe to us on Telegram)

We'll get through this! Meanwhile, here's all you need to know about the Coronavirus outbreak to keep yourself safe, informed, and updated.