Researcher finds bug in Google bug tracker, gains partial access and scores $15,000 in bounties

Channel:
Tech Feed
Subscribers:
1,110
Published on ● Video Link: https://www.youtube.com/watch?v=TPz_Ar_3DTM


Duration: 2:20
30 views
0

Researcher finds bug in Google bug tracker, gains partial access and scores $15,000 in bounties.
With so many products and services out there, it’s only natural that clever people will eventually discover bugs in Google’s offerings. What’s less common, however, is members of the general populace finding bugs in the company’s internal systems – and in Alex Birsan’s case, it was in Google’s own bug tracker.

The security researcher explained in a blog post how he came across a security flaw in Google’s Issue Tracker, which lists all the bugs and feature requests in the company’s products that have been reported by users and developers, and need to be tackled.

By looking at how the Issue Tracker handled the correspondence about a bug he reported, Birsan figured out that he needed an @google.com email address to access the internal bug database – which he then secured with a crafty little trick. That address didn’t work at the gate, but it did let him access some other areas and even request a ride through Google’s GRide corporate car service.



Other Videos By Tech Feed


2017-11-01Perisc ope Data launches unified platform for data w arehousing and analytics
2017-11-01The 50 best movies of all time, according to critics
2017-11-01Goo gle Docs lockout It's fixed, Goo gle says, but users fret over 'creepy monitoring'
2017-11-01How Elon Musk, CEO of Tesla and SpaceX, makes and spends his $20 billion fortune
2017-11-01Markforged raises $30 million for industrial 3D printing
2017-11-01Microsoft Azure, United Technologies to partner on IoT, field and customer service, smart
2017-11-01Ukraine, on the edge of something and somewhere
2017-11-01Fuller Razer phone specs have leaked, and it's time to get excited
2017-11-01Hello Aibo, goodbye Alexa Sony turns robot dog into AI assistant
2017-11-01Kano makes build your own computer kits for kids — and just got $28 million to take on the US
2017-11-01Researcher finds bug in Google bug tracker, gains partial access and scores $15,000 in bounties
2017-11-01iPhone X is priced even higher in Korea
2017-10-31Android’s new Fast Pair feature will connect to Bluetooth gear quicker
2017-10-31Companies are cashing in on chat apps
2017-10-31Microsoft 365 Business launches out of preview
2017-10-31World of Final Fantasy is coming to PC via Steam
2017-10-31Waymo dumped partial self driving features after discovering people sleeping while driving
2017-10-31Tesla is struggling to build the Model 3 — and that could be great news for the Chevy Bolt
2017-10-31The Tower at Tortenna’s mystery hides in a puzzle of a still life city
2017-10-31Facebook also showed Russia linked ads on other websites FB
2017-10-31Hillary Clinton could have been president if not for robots, a new study says


Tags:
Researcher finds
bug in Google bug tracker
gains partial access and scores $15
000 in bounties
Researcher finds bug in Google bug tracker