Friday January 24, 2020
Home India Truecaller Bu...

Truecaller Bug Automatically Created Users Unified Payments Interface (UPI) Accounts with ICICI Bank

Do not share card details/OTP/CVV with anyone to avoid financial loss

0
//
Truecaller, Bug, UPI
The affected users received an SMS from ICICI Bank -- starting from late Monday evening till morning hours on Tuesday -- saying "your registration for UPI app has started. If it was not you, report now to your bank. Pixabay

In a nightmare for thousands of Truecaller users in India, a so-called bug automatecally created their Unified Payments Interface (UPI) accounts with the ICICI Bank without their consent, triggering panic and hacking fears.

The affected users received an SMS from ICICI Bank — starting from late Monday evening till morning hours on Tuesday — saying “your registration for UPI app has started. If it was not you, report now to your bank. Do not share card details/OTP/CVV with anyone to avoid financial loss”.

The message was enough to scare some users who immediatly approached the ICICI Bank customer care, blocking their netbanking and debit cards.

“It was like someone attempting to break into my Internet banking account. The ICICI Bank customer care staff told me there was some suspecious activity in my online account, hence I requested them to immediately block Internet banking and safeguard the funds,” one affected user told IANS.

Truecaller, Bug, UPI
In a nightmare for thousands of Truecaller users in India, a so-called bug automatecally created their Unified Payments Interface (UPI) accounts with the ICICI Bank without their consent. Pixabay

“It was a nightmare for me to wake up and see this message. Since it came from the bank, it was enough for me to believe it. I do not know if my smartphone data has also been hacked,” he added.

The users reported the issue after updating their Android app to the latest Truecaller version 10.41.6.

Later, Truecaller issued a statement, saying it has discovered a bug in the latest update that affected the payments feature, which automatically triggered a registration post updating to the version.

“We’re sorry about this version not passing our quality standards. We’ve taken quick steps to fix the issue, and already rolled out a fix in a new version.

Also Read- Adding Tabletop Device can Improve Restaurant Services and Increase Revenues

“For the users already affected, the new version with the fix will be available shortly, however, in the meanwhile, they can choose to manually deregister through the overflow menu in the app,” said Truecaller which added payments service with the ICICI Bank in 2017.

The ICICI Bank was yet to issue a statement on this.

Truecaller has over 100 million users in India. (IANS)

Next Story

Microsoft Works To Fix Security Bug Issue in Internet Explorer

The vulnerability was found in how Internet Explorer handles memory

0
Microsoft
Overall, Microsoft said all supported versions of Windows are affected by the flaw, including Windows 7, which after this week will no longer receive security updates. Pixabay

 Microsoft has confirmed a security flaw affecting Internet Explorer is currently being used by hackers and it is working on a fix, to be released at a later date.

The vulnerability was first reported by US Homeland Security on Friday evening, although the issue is not limited to American devices. Overall, Microsoft said all supported versions of Windows are affected by the flaw, including Windows 7, which after this week will no longer receive security updates.

The vulnerability was found in how Internet Explorer handles memory. An attacker could use the flaw to remotely run malicious code on an affected computer, such as tricking a user into opening a malicious website from a search query or a link sent by email, TechCrunch reported recently.

“The company is only aware of limited targeted attacks for which it is already working on a fix,” the report quoted a Microsoft spokesperson. The tech giant assigned the bug with a common vulnerability identifier, CVE-2020-0674, but specific details of the bug have yet to be released.

Qihoo 360, a China-based security research team helped Microsoft in finding this flaw and it is believed to be a similar vulnerability as one disclosed by Mozilla, the maker of the Firefox browser.

As per report, neither Qihoo, Microsoft, nor Mozilla said how attackers were exploiting the bug, who the attackers were, or who was being targeted. Microsoft assigned the bug with a common vulnerability identifier, CVE-2020-0674, but specific details of the bug have yet to be released.

Microsoft
Microsoft has confirmed a security flaw affecting Internet Explorer is currently being used by hackers and it is working on a fix, to be released at a later date. Pixabay

Additionally, according to information gathered by PreciseSecurity.com, Microsoft Office products were the most commonly exploited by cybercriminals around the world and nearly 73 per cent of cyber exploits were performed in MS Office products in the third quarter of 2019.

ALSO READ: Tesla Owners Unintentionally Buy Software Updates, Face Troubles in Getting Refunds

MS Office products were followed by Browsers with 13.47 per cent of the total number of exploits by cybercriminals, Android with 9.09 per cent, Java with 2.36 per cent, Adobe Flash with 1.57 per cent and PDF with 0.66 per cent. (IANS)