The bug even allowed ‘the hacker’ to view a user’s family members’ details including names, birth dates, phone numbers, and live locations, as per the report. Also Read - Truecaller on Android can now clean up your SMS inbox spam with one tap The hackers could intercept the API’s request, and change the phone number to get access to a user’s account. This account takeover allowed hacker to add themselves as a trusted contact on another user’s profile. Prakash notes that the bug was found in the app’s “Log in with Truecaller API” which means miscreants would had have full control over the user’s account by simply using their phone number for log-in. Also Read - Top 10 free apps on Google Play store in India in August 2021: Meesho, Instagram, Snapchat, moreĪs per a TNW report, security researcher Anand Prakash discovered a vulnerability within the Guardian app and informed Truecaller about the issue on March 4.
While some had just begun testing the app, a major bug was discovered soon after it was announced which could have cost users to lose their credentials to hackers. Truecaller just last week launched a new Guardian app that’s designed for users to share their location and other important details with family for safety.
