A security researcher identified a critical parameter tampering vulnerability in TNSCTC's Android application that allowed manipulation of bus ticket prices during booking. The bug was responsibly dis
closed to IndGov, highlighting significant security concerns in a government transport system that serves millions and generates billions in revenue.
Reasons to Read -- Learn:
real-world example of how parameter tampering vulnerabilities can impact government applications handling financial transactions, demonstrated through a clear proof-of-concept that reduced a ₹750 ticket to ₹1
practical application of security testing tools like Burp Suite and Genymotion in identifying vulnerabilities in Android applications, with specific steps on setting up the testing environment
responsible disclosure practices in government vulnerability disclosure programs, including how to report critical security issues without revealing sensitive technical details
4 min readauthor: Karthikeyan.V
0
What is ReadRelevant.ai?
We scan thousands of websites regularly and create a feed for you that is:
directly relevant to your current or aspired job roles, and
free from repetitive or redundant information.
Why Choose ReadRelevant.ai?
Discover best practices, out-of-box ideas for your role
Introduce new tools at work, decrease costs & complexity
Become the go-to person for cutting-edge solutions
Increase your productivity & problem-solving skills
Spark creativity and drive innovation in your work