• About
  • Contact
Tuesday, May 17, 2022
  • Login
Next Big Brand
  • .
  • News
  • Marketing
  • Tech
  • Insight
  • Interviews
  • Internet
  • Startup
  • OTT
  • Industries
  • FMCG
  • CRYPTOCURRENCY
  • Retail
No Result
View All Result
Next Big Brand

Personal Data Of 2.8 Lakh WhiteHat Jr. Teachers and Students Leaked

Pritish raj by Pritish raj
November 25, 2020
in News
Reading Time: 2 mins read
A A
0
WhiteHat Jr Ads- Next Big Brand

WhiteHat Jr Ads- Next Big Brand

Personal details of 2.8 Lakh students and teachers enrolled on the online coding platform WhiteHat Jr operated by BYJU’S was reportedly exposed until mid-November for an undetermined period due to multiple vulnerabilities of the company’s server. After it was alerted, WhiteHat Jr allegedly patched the vulnerability, but it is still unknown if any of the user information was compromised when the bug was not fixed.

The BYJU’S-owned company was using Amazon Web Services (AWS) servers and the S3 buckets where data is stored were left open, allowing access to directories containing documents, files, data, and images, according to a cybersecurity researcher, who spoke to The Quint anonymously. Usually, these folders are stored only with a username and a password accessible by approved company staff.

WhiteHat Jr told Quint, “We reviewed our setup and patched the identified vulnerabilities based on the information received from responsible disclosures made to WhiteHatJr about possible security vulnerabilities… We always strive to enhance our customer experience and application performance, and we use different industry-validated tools and software to support this.”

Inc42 reached out to WhiteHat Jr and AWS to check the authenticity of this study and if in the period before the vulnerability was patched any user data may have been compromised. The article will be revised to include both companies’ replies.

The personal records of thousands of children, their parents, and guardians, as well as teachers, along with documents relating to WhiteHat Jr, which is currently involved in many court proceedings, were included in the database that was left open. Also, internal company records related to employee compensation and hundreds of captured videos of the classes being taught on the website of WhiteHat Jr.

WhiteHat Jr. had told the publication in response to data collection questions that the organization stores basic customer information such as name, contact information, project, and curriculum-related information, and photographs. With the appropriate consent of the individual concerned, the data collected is processed. The company stressed that no other personal identifiable information (PII) of its clients, staff, providers collected/processed on our applications by WhiteHatJr is available here.

On October 26, the researcher had reached out to WhiteHat Jr but received no response. On November 19 and 20, the researcher then sent CTO Pranab Dash to the company and received a reply on November 21. “On November 21, I received a reply from CTO Pranab Dash of the company who acknowledged the vulnerabilities and informed me that they had been taken care of the researcher told The Quint, who first mentioned this progress.

Meanwhile, WhiteHat Jr was also found to have leaked personal data through its API (Application Programming Interface), according to DINGG’s founder Santosh Patidar’s queue management app, where one user could access the data of another, including transaction information. Later on, this weakness was patched.

Previous Post

Elon Musk’s Wealth Rises As Market Value Of Tesla Crosses $500 Billion

Next Post

Publishing Platform Pratilipi Acquires Podcast Company IVM Podcasts

Pritish raj

Pritish raj

Pritish Raj is a content writer at Next Big Brand. Hailing from the diversified state of Bihar, he is an engineer by education who chooses the way of poetry, photography, and writing to kick off his career. Highly enthusiastic about brands and startups, he aims to be a travel content creator.

Related Posts

Smytten Founders
News

D2C Sampling Startup Smytten Raises Rs 100 Crore in Pre-Series B Led By Fireside Ventures

May 17, 2022
paytm mall
News

Jack Ma Exits Paytm Mall, Sells 43% For Rs 42 Crore Valuation Down To Rs 100 Crore

May 17, 2022
Zerodha Team
News

After Meesho, Nearly 950 of Zerodha’s 1100 Employees Will Work From Home Permanently

May 16, 2022
Elon Musk Twitter
News

Elon Musk Puts On Hold $44 Billion Twitter Acquisition Deal

May 13, 2022
Dineout Founders
Food

Swiggy Acquires Times Internet Backed Dineout For $200 Million

May 13, 2022
Ather Founder
News

Ather Energy Raises $128 Million Investment Led By Hero MotoCorp, India’s Sovereign Wealth Fund

May 12, 2022
Next Post
WhatsApp Image 2020 11 25 at 4.04.04 PM

Publishing Platform Pratilipi Acquires Podcast Company IVM Podcasts

Leave a Reply Cancel reply

Your email address will not be published. Required fields are marked *

This site uses Akismet to reduce spam. Learn how your comment data is processed.

BROWSE BY TOPICS

Acquiring amazon Apple brand story BYJU Ravindran Byjus byjus news byjus the learning app Cryptocurrency Edtech Startups Elon Musk facebook fintech news Flipkart funding Good Glamm Group google Indian OTT Platforms Indian Unicorn Indian Unicorns Indian Unicorns of 2021 Mukesh Ambani Netflix NFT NFT Collection Non Fungible Tokens OYO Paytm Reliance Retail Startup Acquisition Startup IPO startup news india Startups startups in india Swiggy Tiktok TikTok India Twitter Unicorns of 2022 Unicorns of India Unicorn Startups Upgrad YouTube Zomato Zomato App

Instagram

Follow Me!

Recent News

  • D2C Sampling Startup Smytten Raises Rs 100 Crore in Pre-Series B Led By Fireside Ventures
  • Jack Ma Exits Paytm Mall, Sells 43% For Rs 42 Crore Valuation Down To Rs 100 Crore
  • After Meesho, Nearly 950 of Zerodha’s 1100 Employees Will Work From Home Permanently

Latest News

Smytten Founders

D2C Sampling Startup Smytten Raises Rs 100 Crore in Pre-Series B Led By Fireside Ventures

May 17, 2022
paytm mall

Jack Ma Exits Paytm Mall, Sells 43% For Rs 42 Crore Valuation Down To Rs 100 Crore

May 17, 2022
  • About Us
  • Privacy Policy
  • Terms and Conditions
  • Disclaimer
  • DMCA Policy
  • Our Team
  • Contact Us
  • Sitemap

© 2019 NBB. All Rights Reserved.

No Result
View All Result
  • .
  • News
  • Marketing
  • Tech
  • Insight
  • Interviews
  • Internet
  • Startup
  • OTT
  • Industries
  • FMCG
  • CRYPTOCURRENCY
  • Retail

© 2019 NBB. All Rights Reserved.

Welcome Back!

Login to your account below

Forgotten Password?

Retrieve your password

Please enter your username or email address to reset your password.

Log In
This website uses cookies. By continuing to use this website you are giving consent to cookies being used. Visit our Privacy and Cookie Policy.