Explorer

Hundreds Of Rapido Users Were Left Exposed To Security Breach Due To THIS Vulnerability, Fixed Now

Over 1,800 feedback responses with email addresses and phone numbers were recorded in the exposed portal before it was finally made private by Rapido.

Rapido users were highly vulnerable to a security breach in which their personal information (including that of both users as well as of autorickshaw drivers) could have been exposed to hackers. Security researcher Renganathan P was the first to identify a vulnerability in Rapido’s system that potentially allowed hackers to access personal details, including full names, email addresses, and phone numbers. The vulnerability has been fixed now, and as per reports, the data is safe.

The flaw was linked to a website form designed to gather feedback from Rapido’s autorickshaw drivers and users. The issue arose from an API used by a third-party service to retrieve data from the feedback form, leaving the information unprotected. However, Rapido has since resolved the security issue that put the personal information of its users and drivers at risk.

ALSO READ | Viduthalai Part 2 Full Movie Leaked Online On Tamilrockers, Telegram: From Rs 2 Lakh Fine To Phishing Scams, Here Are The Risks You Face If You Download

According to a report by the TechCrunch, over 1,800 feedback responses with email addresses and phone numbers were recorded in the exposed portal before it was finally made private by Rapido.

TechCrunch quoted Renganathan as saying, “This could have led to a big scam involving scammers or hackers, who may have ended up calling drivers and performing a large-scale social engineering attack, or simply these phone numbers and other data could have been exposed on the dark web if reached in the wrong hands.”

Rapido Responds

In response to the security breach, Rapido CEO Aravind Sanka reportedly said, “As a standard operating procedure, we are in the process of soliciting valuable feedback from our stakeholder community on our services."

Sanka added, "While this is being managed by external parties, we have come to understand that the survey links have reached some unintended users from the public.”

Top Headlines

Asus Pad Coming To India Soon: Launch Date, Features And What To Expect
Asus Pad Coming To India Soon: Launch Date, Features And What To Expect
Gigabyte Gaming A16, Its First Made-In-India Gaming Laptop, Debuts With AMD Ryzen Power
Gigabyte Gaming A16, Its First Made-In-India Gaming Laptop, Debuts With AMD Ryzen Power
UP Plans Robotics, AI And Deep Tech Push; Noida To Host India's Largest Advanced Manufacturing Hub
UP Plans Robotics, AI And Deep Tech Push; Noida To Host India's Largest Advanced Manufacturing Hub
Will OnePlus Walk Out Of India Amid Oppo Overhaul? What US, Europe Exit Signals
Will OnePlus Walk Out Of India Amid Oppo Overhaul? What US, Europe Exit Signals

Videos

BIG UPDATE: India Set For Historic Launch Of First Private Orbital Rocket Vikram-1 From Sriharikota
SPACE UPDATE: India’s Private Rocket Mission Marks Historic Leap As Vikram-1 Reaches New Frontier
LATEST UPDATE: Wangchuk Protest Continues At Jantar Mantar As Supporters Gather After Hospital Shift
Global Update: Iran-US Tensions Escalate As Tehran Claims Fresh Strikes On American Bases
BREAKING NEWS: Aamir Khan Reportedly Targeted, Security Review After Threat Claim

Photo Gallery

25°C
New Delhi
Rain: 100mm
Humidity: 97%
Wind: WNW 47km/h
See Today's Weather
powered by
Accu Weather
Embed widget