Vulnerable Mobile Application in Google Store, Spoofs your identity & makes fake calls
By MYBRANDBOOK
Cybersecurity Researchers, GIS Consulting says, during their examination of several android mobile applications found that there are some free applications available on google play and app store which provide the facility to establish free calls over internet to users. Anyone possessing an android mobile phone can download this application for free and make free calls.
An application called "Call India - IntCall" provides the same service, and this application is available on google play as well as app store. Now, you might be thinking, what's strange in that. But this application has a very serious and dangerous flaw in it.
Application Does Not Require Any User Authentication Permission
As per Mr. Naveen Dham CEO & Founder of GIS Consulting, any person can simply download this application from google play store or app store, after getting downloaded, the application asks for registration, in which we can simply register by entering anyone’s phone number whom you want to spoof.
This is where the biggest flaw exists. As this application does not require any user permission from the owner of the phone number, a person can enter any 10-digit mobile number of anyone and get registered successfully without entering any OTP or any verification code.
.
The application can be used to make fraud calls to anyone using someone else’s caller identity number, as one can use any valid or invalid number to call someone without getting caught.With this the criminals can spoof your phone number to call your family members, friends, colleagues, employees, employers or bankers etc. to extort money or get critical information pertaining to you.
These type of applications should have been thoroughly checked by Google before putting them on play store which raises a big question on Google’s procedures followed to allow any new application to get uploaded on play store.
The strange thing is that the application is still not reported by anyone and freely available on internet.The application developers should implement OTP based authentication or any other type of user verification which verifies that the user is genuine.
This application can be used by not only hackers but also by fraudsters, extortionists and terrorists etc. for their benefit and can harm the society.
Immediate actions should be taken to remove this app from Google Store and remediation actions to be taken to restrict these kind of applications to be uploaded on play store.
BREAKING NEWS
TECHNO TRENDS
Nazara and ONDC set to transform in-game monetization with ‘
Nazara Technologies has teamed up with the Open Network for Digital Comme...
Jio Platforms and NICSI to offer cloud services to government
In a collaborative initiative, the National Informatics Centre Services In...
BSNL awards ₹5,000 Cr Project to RVNL-Led Consortium
A syndicate led by Rail Vikas Nigam Limited (abbreviated as RVNL), along wi...
Pinterest tracks users without consent, alleges complaint
A recent complaint alleges that Pinterest, the popular image-sharing platf...
E-Magazine
TECHNOTAINMENT
Netflix adds 'Moments' feature for saving, sharing scenes from
Netflix has introduced a new “Moments” feature on its mobile app, whic
Jacqueline Fernandez come together with YouTuber Mr. Beast for
Jacqueline Fernandez has partnered with American YouTuber Mr. Beast to b
MOVERS & SHAKERS
Visa elevates Rishi Chhabra as new Country Manager for India
Rishi holds a Master’s in Industrial Engineering from The Ohio State Univ
Genesys welcomes Albert Nel as Senior VP and Regional Sales Le
Genesys continues to deepen its investment in the APAC region. Earlier this
OPEN YOUR EYES
INTERVIEWS
Alcatel-Lucent Enterprise Carrying a 100 year legacy ahead
A good amount of R&D works and global support services are operated out of
Bolstering its commitment to help build a truly self-reliant B
CP PLUS is dedicated to spreading a sense of security to every corner of In
HOT PICK
SonicWall Launches TZ80: A Powerful Solution for Remote Office
SonicWall announced today the launch of the TZ80, a groundbreaking securit
Gigabyte X3D Turbo: A Gaming Revolution
GIGABYTE X3D Turbo Mode is a cutting-edge feature that unifies cores distr
MAKE IN INDIA BRANDS
BHARAT ELECTRONICS LTD.
TECHROUTES NETWORK PRIVATE LIMITED
WIPRO LTD.
HAVELLS INDIA LTD.
EMINENT CIO'S OF INDIA
ICONS OF INDIA
ICONS OF INDIA : SOM SATSANGI
With more than three decades in the IT Sector, Som is responsible for ...
Icons Of India : Dilip Asbe
At present, Dilip Asbe is heading National Payments Corporation of Ind...
Icons Of India : Bhavish Aggarwal
Indian entrepreneur Bhavish Aggarwal is the CEO of Ola, India’s larg...
PARTNER SPEAKERS
PSU
PFC - Power Finance Corporation Ltd
PFC is a leading financial institution in India specializing in power ...
HPCL - Hindustan Petroleum Corporation Ltd.
HPCL is an integrated oil and gas company involved in refining, market...
ECIL - Electronics Corporation of India Limited
ECIL is distinguished by its diverse technological capabilities and it...
VIDEOS
Top 25 Brands
Global Indian industry
Indian Tech Talent Excelling The Tech World - George Kurian, CEO, Netapp
George Kurian, the CEO of global data storage and management services ...
Indian Tech Talent Excelling The Tech World - Steve Sanghi, Executive Chair, Microchip
Steve Sanghi, the Executive Chair of Microchip Technology, has been a ...
Indian Tech Talent Excelling The Tech World - AJAY BANGA, President - World Bank
Ajay Banga is an Indian-born American business executive who currently...
STARNITE AWARDS 2024
ITFORUM 2024
CMO of the Year
WOMEN LEADERSHIP
IMAGE GALLERY
TRENDS IN TECHNOLOGY
MORE VIDEOS
ADVERTISEMENTS
TECHNOLOGY DISRUPTION
UNICORNS REVOLUTIONISING
