Uber Said to Ignore Bug in Its Two-Factor Authentication

Advertisement
By Indo-Asian News Service | Updated: 22 January 2018 17:12 IST

Ride-hailing app Uber has reportedly ignored a security flaw -- discovered by a New Delhi-based security researcher -- that can allow an attacker to hack into user accounts via bypassing its two-factor authentication feature.

"Two-factor authentication is a vital part of protecting online accounts that adds a second layer of security on top of your username and password -- which can be stolen -- by sending a code by text message to your phone which only you would have access to," tech website ZDNet reported late on Sunday.

Advertisement

"That two-factor code can be bypassed, making the second layer of security protection effectively useless," security researcher Karan Saini was quoted as saying by ZDNet.

The security bug works by exploiting a weakness in how the app authenticates a user when they log in to the platform, thereby letting the user log in to an account and easily defeat the two-factor prompt, without entering the correct code.

Advertisement

Uber reportedly said the security bug "is not a particularly severe" issue.

"This isn't a particularly severe report and is likely expected behaviour," Rob Fletcher, Security Engineering Manager at Uber, said in his correspondence with Saini about the bug report.

Advertisement

Uber began testing two-factor authentication on its systems in 2015 but the company has yet to widely push the security feature to its users.

 

Get your daily dose of tech news, reviews, and insights, in under 80 characters on Gadgets 360 Turbo. Connect with fellow tech lovers on our Forum. Follow us on X, Facebook, WhatsApp, Threads and Google News for instant updates. Catch all the action on our YouTube channel.

Further reading: Uber, Apps, India
Advertisement

Related Stories

Popular Mobile Brands
  1. JioTV Pro Pack With 30 Days Validity Launched in India at This Price
  2. IO Interactive Restructures After Xbox Pulls Funding for Project Fantasy
  3. Google Pixel Watch 5 Price and Other Details Leaked Days Before Launch
  4. Samsung Galaxy Z Fold 8 Official-Looking Renders Surface Before Launch
  5. Samsung Galaxy A18 Appears in Leaked Renders With a Familiar Design
  6. Noise REP Band Launched in India With Screenless Design, Up to 10 Days Battery
  7. Moto G77 Power With a 7,000mAh Battery Arrives in India at This Price
  8. Samsung Galaxy M67 Makes Geekbench Debut With This Chipset
  9. Apple Could Turn to Chinese Memory Maker CXMT for Future iPhones
  10. Nubia Says It Will Unveil Its First Agentic AI Smartphone Later This Month
  1. Google Pixel Watch 5 Will Reportedly Get Pricier, More Details Surface Online Ahead of Launch
  2. Meta Disables Recording on Its Smart Glasses When the Capture LED Is Concealed
  3. Samsung Galaxy Watch 9, Galaxy Watch Ultra 2 Leaked Renders Reveal Design, Colourways
  4. Apple Reportedly Testing DRAM Chips From Blacklisted Chinese Supplier Ahead of iPhone 18 Launch
  5. Samsung Galaxy Z Fold 8 Renders Reportedly Leak Ahead of Galaxy Unpacked; Reveal Shorter, Wider Foldable
  6. Huawei Working on Smaller Version of Flagship MatePad Pro Max Tablet, Tipster Claims
  7. Jio Launches Rs. 55 JioTV Pro Pack in India With Access to Over 1,000 Live TV Channels
  8. Realme Narzo 100x 5G India Debut Confirmed, New Listing Appears on Realme's Website
  9. MiCA-Compliant Euro Stablecoins' Market Cap Grew By 128 Percent Ahead of EU Deadline: Report
  10. Samsung Galaxy M67 Pops Up on Geekbench With Exynos Chip, Android 17
Download Our Apps
Available in Hindi
© Copyright Red Pixels Ventures Limited 2026. All rights reserved.