A potential security threat has been identified in Google. And two Indian ‘ethical hackers’ got ‘bug bounty’ by finding that lump. A $22,000 cash reward was awarded for finding a major security flaw in the Google Cloud Program (GCP) project. They are Sriram KL and Srivanesh Ashok.
They have given a detailed explanation of those faults on their blog. At the same time, they also explained the way to solve the problem. And Google has honored the role of these two young men. The amount of money received by them is about 18 lakh Taka.
Program researchers are challenged to find security flaws in tech giants’ new software programs. If someone succeeds in that task, he is rewarded by this tech giant. A general monetary award is given. Sriram KL and Srivanesh Ashok got a huge reward in this connection.
They told the Indian news media the Sangbad Pratidin that SSRF bug or server side request forgery is a huge problem. By exploiting this security loophole, hackers can gain access to the server and breach the user’s privacy. Users can easily take over the entire system by sending a link to hack the server.
In this context, Srivanesh said, “If there is no proper security, anyone can enter this program and take control of the system.”