Techworm

Realme GT 7 Pro was unveiled in India in November 2024, a few weeks after its launch in China. The phone could soon be joined by a vanilla Realme GT 7 model. Although the company has not yet confirmed the base variant, a new Realme handset, speculated to be the Realme GT 7, has reportedly appeared on several certification sites. from Gadgets 360 https://ift.tt/31dLp2w

Microsoft reportedly fixes Xbox bug that could have leaked user email IDs through gamer tag

Microsoft has patched a bug in the Xbox website that could have led threat actors to link Xbox gamer tags to the real email addresses of the users. According to a report by ZDNet, the vulnerability was reported recently to Microsoft through the company's recently launched Xbox bug bounty program. In an interaction with ZDNet, Joseph 'Doc' Harris, one of the several security researchers who reported the issue to Microsoft, stated that the bug was located on enforcement.xbox.com, the web portal where Xbox users go to view strikes against their Xbox profile and file appeals if they feel they have been unfairly punished for their behaviour on the Xbox network.

Representational Image

As per the report, once users log in to the website, the Xbox Enforcement site creates a cookie file in their browser replete with details about their web session so that the gamer does not have to re-authenticate the next time they visit the site again.

Harris revealed that the portal's cookie file contained an Xbox user ID field that was unencrypted. Harris, subsequently edited the XUID field and replaced it with the XUID of a test account he created and had used for testing as part of the bug bounty program.

A Microsoft spokesperson revealed that the fix was deployed server-side and there are no additional steps that users need to be taken to stay protected.

As per the report, a security analyst working for Microsoft's Security Response Centre, which trials bug reports, revealed that the bug was not covered by the Xbox bug bounty program, but the company still agreed to feature Harris on its Bug Bounty Hall of Fame as a contributor.



from Firstpost Tech Latest News https://ift.tt/36iP6yI

Comments

Popular posts from this blog

Best phones under Rs 15,000 (Jan 2024): Poco X5 5G, Motorola G54 5G to Realme Narzo 60X 5G

Racial slurs on Twitter increased by 500 per cent after Elon Musk took over, platform blames trolling campaign

Apple pays Russia a fine of $13.7 million, imposed for abusing its dominant position on the App Store