A security lapse from Reliance Jio’s end has exposed its Covid19 self-test symptom checker’s database to internet users, the Indian Express quoted a report by TechCrunch. Jio had rolled out an app that helped users identify Covid19 symptoms. The feature was available on the company’s MyJio app.
The exposed database was brought to the notice by security researcher Anurag Sen. The data that was left exposed included details of those who took the test as well as those who created the profile.
A Reliance spokesperson was quoted by the newspaper as saying that the logging server was for monitoring performance of our website and intended for the limited purpose of people doing a self check to see if they have have any Covid19 symptoms
The spokesperson, however, did not clarify if Jio had informed the users about the breach or not, the report said. The company pulled the system offline after it was notified of the breach. It is suspected that location records of users may have also been exposed due to the security lapse.