Mobilink under scrutiny as Pakistani security experts highlight security shortcomings
Mobilink under scrutiny as Pakistani security experts highlight security shortcomings |
Back in August 2016, Mobilink – the most popular and the largest cellular service provider in Pakistan & Huawei Pakistan Technologies have collaboratively launched a new service which is ‘New Mobilink Toolbar.’ This app provides data bundles activation and other related facilities to a user without demanding downloading or installing it all happens by popping up that toolbar automatically.They inaugurated this launching in the Marriot Hotel Islamabad and proudly said
The topic of the workshop is quite aligned with the Viplecom’s vision. The slogan of Viplecom is –Excelerate is centered around transformation program across the whole group. I hope that this conference could help more common ground in digital service roadmap and video domain, laying a solid foundation for future cooperation.
After a short span of time, Pakistan’s security experts have found out its shortcomings that this toolbar isn’t properly planned from user safety and privacy perspective.
According to Rafay Baloch who is a one of the top ethical hacker recognized at international level
According to Rafay Baloch who is a one of the top ethical hacker recognized at international level
Mobilink caught injecting javascript into web pages which popups up a toolbar. Since javaScript has complete access to the web page (DOM), anything you type (Credentials, Credit card numbers) can be intercepted by Mobilink.CyberBill should be amended, and a cause should be added whereby any Telecom operator caught injecting traffic to control/modify PTA should heavily penalize the content. ”
He has also declared that Whatsapp, Facebook, and other like apps will not be affected by this toolbar service as these apps use strict transport layer security protocols to avoid vulnerable attacks.
Firstly, this was reported by Noor Qureshi a member of Ethical Hackers Team, and experts are keen to state and then solve this immediately.
Comments
Post a Comment