Indian developer awarded $30,000 for finding this Instagram bug

An Indian developer has been awarded a bounty of $30,000 by Instagram for flagging a bug that could allow any to view archived posts, Stories, Reels and IGTV without following the user — when the profile of the former is private.

The Indian developer, Mayur Fartade, detailed the issue in a post on Medium. He said this bug could allow a potential attacker to “to regenerate valid cdn url of archived stories and posts. Also by brute-forcing Media ID’s, the attacker was able to store the details about specific media and later filters which are private and archived.”

He also said that the entire timeline — from raising the issue to it getting fixed — was around two months.

Indian developer awarded $30,000 for finding this Instagram bug

More in Newspapers

EaseMyTrip partners with Google Wallet

Adobe to offer India data centre infrastructure for Adobe experience platform customers

BimaPay raises $2 million funding to scale operations, enhance technology

Must Read Articles

Poor Show

Zomato & Swiggy

Regulating Big Tech

Interview with Preetham Uthaiah, EVP – Marketing & Strategy Saankhya Labs

DoT launches portal for centralised RoW approvals

NCAER Working Paper

Real-Time-Bidding of your Data

DoT to get 33 pc stake of Vi for Rs 16,133 cr interest dues

National Data Governance Framework

BSNL 4G

Archives

You may also like

More in Newspapers

Must Read Articles

Archives