[ad_1]
TechCrunch According to the report, the database of Jio’s COVID-19 tracking tool includes personal data of users who self-test, such as browser version and operating system, profile records, as well as answers to self-test questions asked by the tool. Were. Not only this, it also included the location of those users who had enabled location in their devices.
Security researcher Anurag Sen found on May 1 that the tool’s data was available on the Internet without any password. As soon as Jio was informed about this flaw, they immediately took it offline. However, it is not yet clear whether this data of the database has been accessed by any third party other than the security researcher or not.
Jio spokesperson Tushar Pania told TechCrunch that they have taken immediate action on this problem. This logging server was to monitor the performance of their website. Which was only for the use of a limited number of people who wanted to self-test to see if they had any Covid-19 symptoms or not.
Let us tell you, Jio launched the COVID-19 self-testing tool in late March. Bharti Airtel had also introduced a similar checker along with it. This tool was specially designed so that people can check whether they are at risk of corona virus infection or not. For this test the user has to provide other personal information like his/her gender. Through this tool, users can also test their family members. This tool asks the user about their age, whether they had come in contact with anyone who was Covid-19 positive? She also asks other questions.
[ad_2]