Home » News » General » Gaana.com hacked, user details now in the open [UPDATED]

Gaana.com hacked, user details now in the open [UPDATED]

By Nikhil Pradhan | Updated on 28-May-2015
Gaana.com hacked, user details now in the open [UPDATED]
Nikhil Pradhan Nikhil Pradhan
28-May-2015
HIGHLIGHTS

Hacker uses SQL injection to access Gaana.com’s user details and back-end admin panel.

[UPDATE]: The hacker has removed the ability to access Gaana.com's user details from his website after the Times Internet CEO reached out to him. There's still no word on how many users' details were accessed when people were still able to do so. Satyan Gajwani, the CEO of Times Internet, has claimed on Twitter that on account of the hack, Gaana.com will be resetting all its users' details.

 

 

[ORIGINAL STORY]: Gaana.com, the popular online music streaming service run by Times Internet, has been hacked and the service’s user details are now visible for all to see. The hacker whose Facebook profile states that he’s from Lahore, Pakistan, apparently hacked Gaana.com with the help of a SQL injection. Gaana.com is currently offline and trying to access the website displays a maintenance message.

The hacker has posted a link on his Facebook page using which anyone can get view a Gaana user’s personal details (for obvious reasons we won’t post the link in this story). Fortunately, it doesn’t appear that hack has revealed any payment info of premium Gaana users but it has made passwords vulnerable. So, if you use Gaana and have used the password on other websites as well, we’d suggest you change those passwords immediately.

The hacker has also apparently been able to gain access to Gaana’s backend admin panel as screenshots on The Next Web attest. The vulnerability appears to have been patched out by Gaana’s security team and in response, the hacker has posted a reply on his website, “The vulnerable parameter I was using here, has been patched by the Admin. Now the question is, Was this the only vulnerable parameter I had .. ? ;).”

Shockingly, Gaana.com has yet to send out an email or any kind of notification warning its users of the hack and the fact that their information has been leaked online. For a service that proudly claims to be “India’s Favourite Music App” and boasts of over a million users, it appears that informing users about this vulnerability is low on its list of priorities.

via The Next Web

Nikhil Pradhan

Nikhil Pradhan

https://plus.google.com/u/0/101379756352447467333 View Full Profile

New Mobiles
Motorola Razr 50Vivo T3 UltraMotorola G45Google Pixel 9 Pro Fold
Top-10s
Best Motorola Smartphones in IndiaBest Gaming Phones under ₹10,000 in IndiaBest Quad Camera Mobile Phones in IndiaBest Samsung Mobile Phones
Latest News
Flappy Bird’s original creator clarifies he’s not involved in the re-releaseiOS 18 out now: New features, eligible iPhones, and how to downloadRising OTP scams in India: Cert-In issues warning, asks users to be follow these rulesWhatsApp to enable cross-platform messaging, big Move for EU Compliance
Digit

Digit.in is one of the most trusted and popular technology media portals in India. At Digit it is our goal to help Indian technology users decide what tech products they should buy. We do this by testing thousands of products in our two test labs in Noida and Mumbai, to arrive at indepth and unbiased buying advice for millions of Indians.

Follow us : logo logo logo logo logo logo
Company About Us Contact Us Advertise with us Regulatory Terms & Conditions Privacy Policy Disclaimer Complaint Redressal
Copyright © 2024 Bennett, Coleman & Company Limited All Rights Reserved.
Digit.in
Logo
Digit.in
Logo