Good news ! Hackbusters community is waiting for you !  https://discuss.hackbusters.com
KnowBe4 has been running the HackBusters site for a few years now, providing you with trending IT security news. We are expanding it and have launched a new exciting online community! The forum is divided into four main topics or categories: Social Engineering, Ransomware, Phishing and Security Awareness Training. You are invited to be one of the first to join us at: https://discuss.hackbusters.com.

Hacking Uber – Experts found dozen flaws in its services and app

Uber-promo-codes-hack
Researchers discovered more than a dozen flaws in Uber app and websites, many of them allow hackers to access driver and passenger info.

Security experts from the Integrity firm have found more than adozen flaws in the Uber website that could be exploited by hackers to access driver and passenger data. The researchers discovereda total of security 14 issues, four of which cannot be disclosed.

One of the vulnerabilitiesexists in the promotion codes, the riders.uber.com website did not implement security mechanisms to defeat brute-force attacks, allowing attackers to tryall possible combinations of strings until the promotion codes haven’t been discovered.

The researchers also found a $100 ERH (emergency ride home) code that could be applied on top of other promo codes.

“Uber also gives an option to customize promotion codes, and since all the default codes began with the word “uber”, it was possible to drop the time of the brute force considerably allowing us to find more...(continued)

View All Trending Stories