Instagram bug that could have been exploited to spy on users found and fixed

By Neha KumariSeptember 25, 2020

A coding vulnerability in Instagram which could have given attackers unauthorised access to anyone’s phone contacts, camera and location data was detected by cybersecurity firm Check Point and fixed by Facebook seven months ago. Check Point’s findings on the vulnerability was made public today.

The vulnerability was identified by Facebook’s security team as “Integer Overflow leading to Heap Buffer Overflow” and was caused by a coding error in Mozjpeg, an open source project used by Instagram as their JPEG format image decoder.

It was found that when Mozjpeg tried to decompress an image of certain dimensions and beyond an allocated size, it triggered the bug which crashed the app and gave attackers access over Instagram app.

Instagram bug that could have been exploited to spy on users found and fixed

More in IT

India Inc, not just IT, dangles big bucks for AI specialists. But is it all hype?

OpenAI co-founder Ilya Sutskever departs, Sam Altman says ‘very sad to me…’

Google unveils ‘future of AI assistants’ with Project Astra. Everything you need to know

Must Read Articles

Poor Show

Zomato & Swiggy

Regulating Big Tech

Interview with Preetham Uthaiah, EVP – Marketing & Strategy Saankhya Labs

DoT launches portal for centralised RoW approvals

NCAER Working Paper

Real-Time-Bidding of your Data

DoT to get 33 pc stake of Vi for Rs 16,133 cr interest dues

National Data Governance Framework

BSNL 4G

Archives

You may also like

More in IT

Must Read Articles

Archives