Uber ‘ignored’ bug that allows hackers to bypa ss two factor authentication

Channel:
Tech House
Subscribers:
957
Published on ● Video Link: https://www.youtube.com/watch?v=NB6lrSQmurc


Duration: 1:42
74 views
0

Uber ‘ignored’ bug that allows hackers to bypa.ss two-factor authentication.
Ride-hailing app Uber has reportedly ignored a security flaw – discovered by a New Delhi-based security researcher – that can allow an attacker to hack into user accounts via bypassing its two-factor authentication feature.

“Two-factor authentication is a vital part of protecting online accounts that adds a second layer of security on top of your username and password – which can be be stolen – by sending a code by text message to your phone which only you would have access to,” tech website ZDNet reported late on Sunday.

“That two-factor code can be bypassed, making the second layer of security protection effectively useless,” security researcher Karan Saini was quoted as saying by ZDNet. The security bug works by exploiting a weakness in how the app authenticates a user when they log in to the platform, thereby letting the user log in to an account and easily defeat the two-factor prompt, without entering the correct code.

Uber reportedly said the security bug ‘is not a particularly severe’ issue. “This isn’t a particularly severe report and is likely expected behaviour,” Rob Fletcher, Security Engineering Manager at Uber, said in his correspondence with Saini about the bug report. Uber began testing two-factor authentication on its systems in 2015 but the company has yet to widely push the security feature to its users.



Other Videos By Tech House


2018-01-22Consortium to build subsea cable system linking Hong Kong, US
2018-01-22Some iPhone 6 Plus owners may be upgraded to an iPhone 6s Plus for free
2018-01-22Electronic skin tattoo lets hand gestures control physical and virtual objects
2018-01-22Apple to Axe iPhone X After Slow Sales Report
2018-01-22Hacker j ailed for DDoS a ttacks against Skype and Goo gle
2018-01-22Hotel bans bloggers following feud with YouTuber over free stay
2018-01-22Amazon’s high tech automated grocery store of the future is also super creepy
2018-01-22Facebook plans European AI investment and digital training programs amid growing regulatory
2018-01-22Shares in a telecoms company jumped 130% after it pivoted to blockchain
2018-01-22Amazon’s grocery store of the future, ‘Go’, set for public opening today
2018-01-22Uber ‘ignored’ bug that allows hackers to bypa ss two factor authentication
2018-01-22Iconoclasts review — a mechanic’s guide to saving the world
2018-01-21Facebook to open digital training hubs in Europe
2018-01-21Privacy Foundation Trusting government with open data a 'recipe for pain'
2018-01-21IBM shows growth after 22 straight quarters of declining revenues, but has it turned the corner
2018-01-21HP's latest gear puts multimedia and gaming in focus
2018-01-21Apple officials meet Commerce and Industry minister Suresh Prabhu
2018-01-21AMD Announces 12nm 2nd Generation Zen, 7nm Vega, 2018 Roadmaps
2018-01-21Megaport unveils virtual cloud router
2018-01-21How to turn off Instagram’s new feature that tells others when you were last online
2018-01-21Techstars launches insurance tech accelerator in North Carolina


Tags:
Uber
‘ignored’
bug
that
allows
hackers
to
bypa.ss
two-factor
authentication
Uber ‘ignored’ bug that allows hackers to bypa.ss two-factor authentication