Security News > 2020 > July > Exclusive: Any Chingari App (Indian TikTok Clone) Account Can Be Hacked Easily

Any Chingari User Account Can Be Hijacked in Seconds The Chingari app for iOS and Android asks users to register an account by granting basic profile access to their Google accounts, which is a standard part of OAuth-based authentication.

Chingari Patch Update To Be Released Today Kumar responsibly disclosed the issue to the makers of Chingari earlier this week, and the company in response acknowledged the vulnerability.

The Hacker News also reached out to Sumit Ghosh, founder of Chingari, who confirmed to the publication that the issue will be patched with Chingari version 2.4.1 for Android and 2.2.6 for iOS, that's expected to be rolled out to millions of its users via Google Play Store and Apple app store starting today.

To protect users who don't update their app on time, the company has decided to disable access to the back-end APIs from older versions of the app.

If you are a Chingari user, it's highly recommended that you update the app as soon as the latest version is available to avoid potential misuse.

News URL

http://feedproxy.google.com/~r/TheHackersNews/~3/LcIt2IQtjDk/hack-chingari-app-account.html