Subscribe Us

Cyber-security Bug bounty Researcher Ron Chan Disclose a serious security vulnerability in the LINE app, that allow any member in a certain Group

Cyber-security Bug bounty Researcher Ron Chan Disclose a serious security vulnerability in the LINE app, that allow any member in a certain Group .'This was triggered by problems with mutual recognition and/or problem-free guessing, combined with a lack of authentication, which led to a request being made that gave administrative rights to this LINE legal account' He said.

Ron Chan found that the LINE accounts are impaired by an intense defensive weakness. The vulnerability of an IDOR (Insecure Direct Object Reference), as stated in the Hacker One computer virus database, enables an adversary to benefit from administrators accessing a qualified LINE account.

Ron Chan Reported the bug on  September 2019 to  HackerOne bug bounty . This worm mainly resulted in a privilege increase and a vitality ranking of 9-10. Line worked on a patch to fix the flaw after his record.Line Cooperation  gifted Chan with a reward of $4,750 for reporting vulnerability 

Recently Line discovered a surge of unauthorized account login affecting a number of Japanese users risk more than 4000 users. As an advisory, inquiries have revealed that in the context of the hacking campaign attackers have exploited the compromised accounts for permanently hiding LINE debt by spamming and phishing messages. After the accident, LINE resets the affected cash passwords among other security measures.

Search Results

Web resul provided Chan with $4,750 for vulnerability reporting

Post a Comment

Previous Post Next Post