MUST READ
Pause slide

Uber ‘ignored’ bug in its two-factor authentication

Ride-hailing app Uber has reportedly ignored a security flaw — discovered by a New Delhi-based security researcher — that can allow an attacker to hack into user accounts via bypassing its two-factor authentication feature.

Written by IANS
San Francisco
Updated:
uber, uber India, uber bug, uber cabs, uber tax, ride-hailing application, uber authentication, uber security, uber partner, uber case, uber security flaw, uber code
Uber reportedly said the security bug "is not a particularly severe" issue. (Reuters)

Ride-hailing app Uber has reportedly ignored a security flaw — discovered by a New Delhi-based security researcher — that can allow an attacker to hack into user accounts via bypassing its two-factor authentication feature.

“Two-factor authentication is a vital part of protecting online accounts that adds a second layer of security on top of your username and password — which can be be stolen — by sending a code by text message to your phone which only you would have access to,” tech website ZDNet reported late on Sunday.

“That two-factor code can be bypassed, making the second layer of security protection effectively useless,” security researcher Karan Saini was quoted as saying by ZDNet.

Also Read
Internet Equalisation, Scheme, MSME, June, India, Self Reliance, Government
Centre looks to rejig MSME schemes
Internet Equalisation, Scheme, MSME, June, India, Self Reliance, Government
MSME exporters are worst hit due to increased freight charges and doubled turnaround time
sartup, start up taxes, startup india, sme
Start-ups face more tax heat, to move court
payu, digital payments, visa, yes bank, digitisation of small business, merchants, expenses, payment aggregator, payment gateways, Business Payment Solution Provider, cash flow, card payments
PayU, Visa, Yes Bank launch new payment solution for merchants to cut costs, boost cash flow, digitise SMBs

The security bug works by exploiting a weakness in how the app authenticates a user when they log in to the platform, thereby letting the user log in to an account and easily defeat the two-factor prompt, without entering the correct code.

Uber reportedly said the security bug “is not a particularly severe” issue.

“This isn’t a particularly severe report and is likely expected behaviour,” Rob Fletcher, Security Engineering Manager at Uber, said in his correspondence with Saini about the bug report.

Uber began testing two-factor authentication on its systems in 2015 but the company has yet to widely push the security feature to its users.

Get live Share Market updates, Stock Market Quotes, and the latest India News and business news on Financial Express. Download the Financial Express App for the latest finance news.

First published on: 22-01-2018 at 12:14 IST

Stock Market Stats

Market Stats
Top Gainers
Top Losers
Indices Performance
Gold Rate Today
Silver Rate Today
Petrol Rate Today
Diesel Rate Today
Nifty 50
Mutual Funds
IPO

Related News

shorts
Out of the blue, WhatsApp is green now — keep calm, you’re not alone
Out of the blue, WhatsApp is green now — keep calm, you’re not alone
LifeUpdated: April 26, 2024 21:27 IST

WhatsApp is updating its iOS app to switch from blue to green theme, aligning with the brand’s color. It will be mandatory and cannot be opted out.

View all shorts

Photo Gallery

Latest News

Trending Topics

Narendra Modi
GOLD RAte today
nifty 50
Nifty bank
hdfc bank share price
Stock market quotes
stock market Today
bse sensex
Tata Steel share price
yes bank share price
Infosys share price
Stock market today
Financial Literacy
Breaking News
JEE Mains Session 2
Latest News
Lok Sabha Elections 2024
Stock to watch
Lok Sabha Elections 2024 Phase 2

Market Data
Market Data
Today’s Most Popular Stories ×
WEB STORIESNIFTY 50STOCK MARKET STATS