Rapido has fixed the problem in the app. Recently, details of users and drivers of ride service providers were leaked online. Due to this problem in the app, full names, email addresses and phone numbers of users and drivers were leaked. A security researcher had reported about this problem. However, the company has now fixed this problem.
Actually, the problem in Rapido was discovered by security researcher Ranganathan P. The security researcher in his investigation found that a website form was available online, in which feedback was being collected from Rapido auto-rickshaw users and drivers. Information like full name, address, mobile number etc. of the users was being filled in that feedback form.
This is how the feedback form became public
A security researcher told tech website TechCrunch that this feedback form had become public due to a problem in Rapido’s API. Rapido had used a third party service for feedback. In this leak, 1800 feedback forms containing information about users and drivers became public, due to which mobile numbers of many people and other personal information became available online.
Rapido CEO Arvind Shanaka said this
Security researcher said that due to this data leak, a big scam can be carried out. Because the information of drivers and users is public, hackers can arrest people digitally. However, Rapido has now hidden the key information of users and service providers. After this big leak, Rapido CEO Arvind Shanaka has said that as a standard operating procedure we take feedback from users. This feedback is managed by a third party company. Due to third party management, personal information of users has been leaked.