Chingari responds to being called ‘easily hackable’, shares app updates with security patch | Tech News
Home Tech Tech News Chingari responds to being called ‘easily hackable’, shares app updates with security patch

Chingari responds to being called ‘easily hackable’, shares app updates with security patch

An ethical hacker showed how easily Chingari could be hacked and anyone could get access and take over any user's account irrespective of the device and the OS. 

By: HT TECH
| Updated on: Aug 20 2022, 21:49 IST
Icon
Chingari has a vulnerability that allows it to be easily exploited and anyone can hijack any user account on any smartphone and ‘tamper’ with user information, content and even upload videos.
Chingari has a vulnerability that allows it to be easily exploited and anyone can hijack any user account on any smartphone and ‘tamper’ with user information, content and even upload videos. (HT Tech)
Chingari has a vulnerability that allows it to be easily exploited and anyone can hijack any user account on any smartphone and ‘tamper’ with user information, content and even upload videos.
Chingari has a vulnerability that allows it to be easily exploited and anyone can hijack any user account on any smartphone and ‘tamper’ with user information, content and even upload videos. (HT Tech)

Chingari, the TikTok clone that suddenly got very popular across the country thanks to TikTok getting banned by the Indian government, is allegedly really easy to hack. The app has a vulnerability that allows it to be easily exploited and anyone can hijack any user account on any smartphone and ‘tamper' with user information, content and even upload videos.

This report comes courtesy The Hacker News (THN) that shared a video showing exactly how easily this could be done. New users can register an account on the Chingari app on both iOS and Android by granting the app a basic profile access to their Google accounts, the report states.

While many other apps also do this, Girish Kumar, a cybersecurity researcher at Encode Middle East firm in Dubai, told THN that Chingari uses a randomly generated user ID to fetch profile information of the user along with other data from the server without relying on a secret token for user authentication and authorisation.

Kumar shared a video that shows how easily the user ID can be retrieved and be replaced by a hacker in HTTP requests to gain access to account information. He also told THN that once the victim's account is compromised, the attacker can change any and all information and also upload videos - essentially, the hacker gets full access to the account.

Besides this, Chingari also has another feature that allows users to turn off video sharing and comments and this can be bypassed by changing the HTTP response code allowing pretty much anyone to share and comment on restricted videos.

Kumar informed Chingari about these issues and the company has responded today with a security patch -

“There was a security issue in Chingari (V 2.4.0 and below). The issue was notified to us 24 hours ago has been addressed and patched already by the team. We have pushed updates both on Play Store & App Store with fixes. The old app may not work as we have shut down the vulnerable APIs. It is advisable to update the app to the latest version. Rest assured your sensitive data like email etc are not compromised. No user data was compromised due to this vulnerability,” the company said in a statement today.

Version 2.4.1 for Android and 2.2.6 for iOS comes with the security fix and if you are using Chingari we suggest you update your app immediately.

Catch all the Latest Tech News, Mobile News, Laptop News, Gaming news, Wearables News , How To News, also keep up with us on Whatsapp channel,Twitter, Facebook, Google News, and Instagram. For our latest videos, subscribe to our YouTube channel.

First Published Date: 11 Jul, 19:45 IST
Trending: bored of your instagram explore feed? here’s how you can change, reset it work 6 days a week: samsung hits ‘panic button’ after disappointing financial results how to hide your instagram online status from others ipad air 2024 launch: better camera, mini-led display and what more to expect from apple airtel launches affordable international roaming packs: check plans and availability in different countries google wallet introduces 'linked passes' setting: what is it and how to use the new feature how to change whatsapp font style and font size in chat window uber took 5 months to understand that the name ‘swastika chandra’ has nothing to do with hitler apple now has a new problem with store pickup for online orders- all details about the scam that costs over $400,000 google to launch a new ‘anti-virus’ system for apps, reveals android 15 beta release
NEXT ARTICLE BEGINS

Tips & Tricks

WhatsApp banned
WhatsApp banned my number. What’s the solution? Step-by-step guide to ‘unban’ your account
Consider Tonnage
Don't forget these 5 things while buying ACs online
Productivity
Otter AI: How to use this AI meeting assistant app to automatically take notes, transcripts, more
Pixel 8 Pro's Pro
Know how to master Pro Controls on the Google Pixel 8 Pro - check top 4 tips
ChatGPT Plus
How to edit images generated by DALL-E in ChatGPT: Step-by-step guide

Editor’s Pick

Digi Yatra
Digi Yatra users, delete the old app right now- Here’s how to download the new app and use it at airports
iPhone 15
iPhone 16 leaks summarised: Colours, A-series chip and what more to expect from Apple in 2024
STScI-01HFQ5YXZ04PF608HQB0KRTF3S
10 stellar images shot by NASA’s $10 billion James Webb Space Telescope
HDFC Bank alerts about a few common ‘bad habits’ of smartphone users that make it easy for them to fall prey to hacking attempts and scams.
Online scams: 5 habits of smartphone users that make life easy for hackers, warns HDFC Bank
Moto Edge 50 Pro
Motorola Edge 50 Pro review: Should you buy this new AI smartphone under 35,000?

Trending Stories

Dbrand
MKBHD takes tough stand after Dbrand makes racist comment on Indian customer [Update]
GTA_6
GTA 6 leaks: What we know so far about Grand Theft Auto 6
STScI-01HFQ5YXZ04PF608HQB0KRTF3S
10 stellar images shot by NASA’s $10 billion James Webb Space Telescope
Google Vids
Google Vids- All details about this new AI video app and how to use it
iPhone 13
Apple iPhone 13 available at discounted price of Rs. 52,990 on Amazon- Check details
keep up with tech

Gaming

GTA 6 map may be nearly 3 times larger than Grand Theft Auto 5: All details of the upcoming game
GTA 6 map may be nearly 3 times larger than Grand Theft Auto 5: All details of the upcoming game
Garena Free Fire MAX Redeem Codes for April 24
Garena Free Fire MAX Redeem Codes for April 24: Chance to get 100% bonus diamonds
Garena Free Fire
Garena Free Fire Redeem Codes for April 24: Know how to win every battle with ease
GTA 6: What will be the price and when the game will be available for pre-orders- All details
GTA 6: What will be the price and when the game will be available for pre-orders- All details
Garena Free Fire MAX Redeem Codes for April 23
Garena Free Fire MAX Redeem Codes for April 23: OB44 update is here! Check what’s new

Best Deals For You

HP Chromebook 14a Laptop
Touch Screen Laptops: Samsung Galaxy Book3 Pro to HP Chromebook 14a, check out the top 10
best headphones under 5000
Best headphones under 5000: From Sony, JBL to CrossBeats, check out the top 5 picks
Oppo Reno 10 5G
Best Oppo phones under 30000: Check out Oppo Reno 11, Oppo A17k, Oppo Reno 8- Top 10 picks
Best feature-filled Oppo smartphones, but on budget.
Best Oppo phones under 15000: Oppo A17, Oppo A38, Oppo A58, more
best laptops for video editing
12 best laptops for video editing: Check out these top picks from ASUS, MSI, HP, Acer to Apple

    Trending News

    MKBHD takes tough stand after Dbrand makes racist comment on Indian customer [Update]
    Dbrand
    GTA 6 leaks: What we know so far about Grand Theft Auto 6
    GTA_6
    10 stellar images shot by NASA’s $10 billion James Webb Space Telescope
    STScI-01HFQ5YXZ04PF608HQB0KRTF3S
    Google Vids- All details about this new AI video app and how to use it
    Google Vids
    Apple iPhone 13 available at discounted price of Rs. 52,990 on Amazon- Check details
    iPhone 13

    Trending Gadgets

    Mobiles Laptops Tablets