• Send Us A Tip
  • Calling all Tech Writers
  • Advertise
TechStory
  • News
  • Crypto
  • Gadgets
  • Memes
  • Gaming
  • Cars
  • AI
  • Startups
  • Markets
  • How to
No Result
View All Result
SUBSCRIBE
TechStory
  • News
  • Crypto
  • Gadgets
  • Memes
  • Gaming
  • Cars
  • AI
  • Startups
  • Markets
  • How to
No Result
View All Result
TechStory
No Result
View All Result
Home News

Indian Developer Paid $30,000 For His Outstanding Bug spotting By Instagram

Ayushi Mehta by Ayushi Mehta
June 18, 2021
in News
0
Indian Developer Paid $30,000 For His Outstanding Bug spotting By Instagram
215
SHARES
3.6k
VIEWS
TwitterWhatsappLinkedin

You might also like

Top Weekly Business News

Foiled Cybertruck Attack: Man Arrested for Plotting Mass Casualty Event at Elon Musk’s Launch

Telegram’s Recent Update: voice transcription to all users in latest update

A developer from India had been awarded $30,000 for spotting a bug in the system which could give other users the potential to view archived posts, Stories, Reels, and IGTV of the users without following them— even when the user’s profile is private.

The Indian developer who is primarily from Maharashtra gave detailed information regarding the spotted bug in one of his self-written blog posts on an online tech, news, and media platform- Medium. The developer who spotted and resolved the bug is named Mayur Fartade. In the post, he said that the bug can also allow a potential attacker to “regenerate valid CDN URL of archived stories and posts. Also by brute-forcing Media IDs, the attacker was able to store the details about specific media and later filters which are private and archived.”

The Maharashtra-based developer stated that he reported the bug to the security team at Instagram on the 16th of April, 2021. According to his statement, the procedure of the bug getting fixed and resolved ended on June 15th, almost two months after the bug was reported.

Mayur states that he was awarded a prize of $30,000 from the Facebook-backed social media platform- Instagram’s Bug Bounty program for his services in fixing the bug, which is fulfilled through Bugcrowd and HackerOne.

The discovered bug in the system might not look as dangerous as it is at the outset, as it was absolutely required for the attacker to know the exact media ID which was associated with the Image, or the video or any album which was posted either on Feed, or Stories, or Reels or IGTV or kept in the Story Archives, by brute-forcing the identifiers.

Mayur however disclosed that it was indeed possible to create a POST request to a GraphQL endpoint and retrieve and recover these types of sensitive data.

The India-based developer also made a statement saying that yet another endpoint was found that could have exposed the same set of information and data. The Facebook-backed social media company Instagram has however resolved the issues which relate to the discovery of that bug too.

Mayur, in his post on Medium, gave a detailed timeline from the discovering of the bug to solving it. It starts from April 16, when the report was sent to the company’s security team, and ended on June 15, with Mayur receiving an award of $30,000.

 

Tags: androidAppleAppsBusinesse-commerceecommerceeducationentrepreneursentrepreneurshipfacebookfinancefundingIndiaInternetNewsSocial Mediatechtechnology
Tweet54SendShare15
Ayushi Mehta

Ayushi Mehta

Hey! My name is Ayushi Mehta, I'm 19 years old. I am a big time literature and tech enthusiast. A cub Journalist. Thank you for checking out my articles! To connect, email me at- ayushi@connasys.com

Recommended For You

Top Weekly Business News

by Ishaan Negi
December 3, 2023
0
Top Weekly Business News

As the week unfolded, the business landscape witnessed a series of noteworthy developments across various sectors. From the energy sector's visionary goals to sustainable transportation initiatives and entertainment...

Read more

Foiled Cybertruck Attack: Man Arrested for Plotting Mass Casualty Event at Elon Musk’s Launch

by Rounak Majumdar
December 3, 2023
0
Foiled Cybertruck Attack: Man Arrested for Plotting Mass Casualty Event at Elon Musk's Launch

A man has been detained in a terrifying incident for allegedly planning a "mass casualty" attack against Elon Musk's Cybertruck launch event in Texas. Paul Ryan Overeem, 28,...

Read more

Telegram’s Recent Update: voice transcription to all users in latest update

by Anochie Esther
December 3, 2023
0
voice to text transcription

To improve user experience and accessibility, Telegram has recently launched a substantial update for its Android and iOS messaging applications. Released on Thursday, the update brings forth a...

Read more
Next Post
Paytm

Paytm Appoints Goldman Sachs And JP Morgen As Bankers For Upcoming IPO

Leave a Reply Cancel reply

Your email address will not be published. Required fields are marked *

Produce Read-Only or Write Protected USB Flash Drives with Nexcopy USB Duplicator Systems.

Related News

Blooket

How to hack blooket

September 30, 2022
How To Beat Escape from the Castle Claymount

How To Beat Escape from the Castle Claymount

December 2, 2023
How to get Johnny Silverhand arm in ‘Cyberpunk 2077’

How to get Johnny Silverhand arm in ‘Cyberpunk 2077’

August 28, 2023
How to send a gift message on Instagram

How to send a gift message on Instagram

August 18, 2023
Cybertruck in a showroom

Tesla Cybertruck Showroom Locations: Where to See the Electric Beast in Person

November 24, 2023
How to get Santa on ring doorbell

How to get Santa on ring doorbell

August 7, 2022

Techstory

Tech and Business News from around the world. Follow along for latest in the world of Tech, AI, Crypto, EVs, Business Personalities and more.
reach us at info@techstory.in

Advertise With Us

Reach out at info@techstory.in

BROWSE BY TAG

#Crypto acquisition AI amazon android Apple bitcoin Business China cryptocurrency e-commerce electric vehicles Elon Musk entrepreneurship Ethereum facebook flipkart funding Google India Instagram Investment ios iPhone IPO Market Markets Meta Microsoft News NFT Russia Social Media SpaceX startup startups tech Tech news technology Tesla TikTok trending twitter uber whatsapp

© 2023 Techstory Media Pvt Ltd

No Result
View All Result
  • News
  • Crypto
  • Gadgets
  • Memes
  • Gaming
  • Cars
  • AI
  • Startups
  • Markets
  • How to

© 2023 Techstory Media Pvt Ltd

Are you sure want to unlock this post?
Unlock left : 0
Are you sure want to cancel subscription?