Bengaluru Techie Wins $6,500 For Finding Critical Uber Bug - hancockhitylo

Bengaluru-founded cybersecurity researcher, Anand Prakash, was awarded $6,500 (around Rs 4.6 lakh) aside ride-hailing giant, Uber, as part of the company's bug bounty program afterwards discovering a critical defect in the flagship app of the San Fransisco-supported firm. Uber has reportedly already fixed the 'account-takeover-vulnerability' that could have potentially allowed attackers to take over any other user's Uber account, including those of partners and Uber Eats users.

The badger was present in the API call for function of the Uber app and, according to the company, was immediately fixed on being reported. The company too said that over $2 million was paid to more than 600 researchers just about the world, including many in India, as part of its bug bounty program over the years. Another Indian researcher, Chennai-based Laxman Muthiyah, had freshly won $30,000 as a part of Facebook's tease bounty plan after spotting a flaw in the company's popular exposure-sharing chopine, Instagram.

Prakash, who started his career as a security railroad engineer in Flipkart in 2022, had earlier revealed another badger in Uber, which reportedly allowed anyone to travel for free for a lifetime in an Uber cab. In 2022, helium founded AppSecure, a cyber security startup, and has been featured in the Forbes' "30 under 30 Asia" list. He had in the first place earned $15,000 as bounty for discovering a Facebook exposure that allowed potential drop hackers to login without an account.

A graduate in computing from Vellore Institute of Technology, Chennai, he had earlier received $5,000 from Uber for booking a free depend upon and $4,700 from Kindling. He has also worked with the Bengaluru-based foodtech inauguration, Freshmenu, to make the political platform more secure. He has also participated in bug bounties for GitHub, Nokia, Soundcloud, Dropbox and PayPal in the sometime.

With inputs from IANS