Hi @SetuAarogya,
A security issue has been found in your app. The privacy of 90 million Indians is at stake. Can you contact me in private?
Regards,
PS: @RahulGandhi was right
A security issue has been found in your app. The privacy of 90 million Indians is at stake. Can you contact me in private?
Regards,
PS: @RahulGandhi was right
49 minutes after this tweet, @IndianCERT and @NICMeity contacted me. Issue has been disclosed to them.
To be super clear:
- I'm waiting a fix from their side before disclosing publicly the issue. Putting the medical data of 90 million Indians is not an option.
- I have a very limited patience, so after a reasonable deadline, I will disclose it, fixed or not.
- I'm waiting a fix from their side before disclosing publicly the issue. Putting the medical data of 90 million Indians is not an option.
- I have a very limited patience, so after a reasonable deadline, I will disclose it, fixed or not.
To people who want to teach me how to do a responsible disclosure.
I received hundreds of messages. I will answer donât worry, I just need time
