I Could Have Hacked All Uber Accounts- But I Chose to Report it Insteadby@appsecure
2,406 reads
2,406 reads

I Could Have Hacked All Uber Accounts- But I Chose to Report it Instead

by Anand Prakash2mSeptember 13th, 2019
Read on Terminal Reader
Read this story w/o Javascript
tldt arrow

Too Long; Didn't Read

This is being published with the permission of Uber under the responsible disclosure policy. The vulnerability detailed in this blog post is being disclosed by Anand Prakash of AppSecure. This was plugged quickly by the security team at Uber. This issue is similar to Facebook’s access token leak which was discovered last year https://techcrunch.com/2018/09/28/facebook-says-50-million-accounts-affected-by-account-takeover-bug/

People Mentioned

Mention Thumbnail

Companies Mentioned

Mention Thumbnail
Mention Thumbnail
featured image - I Could Have Hacked All Uber Accounts- But I Chose to Report it Instead
Anand Prakash HackerNoon profile picture
Anand Prakash

Anand Prakash

@appsecure

Founder PingSafe.

About @appsecure
LEARN MORE ABOUT @APPSECURE'S
EXPERTISE AND PLACE ON THE INTERNET.

Share Your Thoughts

About Author

Anand Prakash HackerNoon profile picture
Anand Prakash@appsecure
Founder PingSafe.

TOPICS

THIS ARTICLE WAS FEATURED IN...

Permanent on Arweave
Read on Terminal Reader
Read this story in a terminal
 Terminal
Read this story w/o Javascript
Read this story w/o Javascript
 Lite
Also published here
L O A D I N G
. . . comments & more!