Naukri.com, a leading employment site in India, recently patched a bug that compromised the email addresses of recruiters using its mobile apps. Discovered by security researcher Lohith Gowda, the vulnerability could potentially lead to targeted phishing attacks. Upon verification by TechCrunch, Naukri confirmed the issue was resolved, with a statement from IT head Alok Vij emphasizing ongoing security measures and system updates. Naukri, founded in 1997, remains a vital link between employers and job seekers in India and the Middle East.
The exposed recruiter email IDs can be used for targeted phishing attacks, and recruiters may receive excessive unsolicited emails and spam, Gowda told TechCrunch.
All identified enhancements are implemented, ensuring our systems remain updated and resilient, Alok Vij, IT infrastructure head at Naukri's parent company InfoEdge, told TechCrunch over email.
Collection
[
|
...
]